$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: g0Ir40ru+5SZimiRFxiqfEphP9ujMIzVn7I7teJSuCw= Subject key identifier: 4D:B5:E2:4E:C3:A1:2D:22:B0:8A:1E:83:AF:DF:D7:2D:8C:D6:A5:94 Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 025E Signing time: Sat 23 Aug 2025 02:01:42 +0000 Manifest this update: Sat 23 Aug 2025 02:01:41 +0000 Manifest next update: Sat 30 Aug 2025 02:01:41 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: BY3/GHUYHMaIyPaEwkUMAjW5fcaxlpKB4jKzPvhH/wI=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Aug 23 02:01:41 2025 GMT Not After : Aug 30 02:01:41 2025 GMT Subject: CN=68a92106-228a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:de:16:44:b6:f5:7d:68:8b:46:a4:fe:24: 9a:5e:0f:eb:41:41:a3:23:6a:f0:5c:c8:70:b9:bd: e0:fb:dd:c9:0d:d8:8d:11:f0:92:c8:cc:83:68:f0: 9a:28:b3:c2:d9:4e:b1:1a:fa:7b:45:f0:5f:e9:3f: e7:60:e6:85:0d:be:ef:2e:7b:ee:f7:b4:7b:36:d1: c7:91:f7:24:50:6d:b9:65:46:38:a2:d2:e3:f8:12: ec:10:76:9d:f6:40:82:3f:6a:00:4c:8f:55:cd:30: 44:80:1c:d3:d5:d9:fd:c7:95:1c:d4:ee:e8:58:50: 8e:3c:a1:32:df:20:e2:f0:76:78:f5:d9:4a:b3:0f: 30:06:f6:33:ca:68:f4:aa:83:9f:94:27:d6:bf:07: a6:a3:98:ff:80:60:ce:86:ed:f2:71:00:eb:a6:99: 8a:0e:99:94:94:f7:c6:8b:ae:02:e3:d0:7b:cf:ea: 77:50:b5:0f:d0:47:d0:b2:53:0b:72:ee:34:81:b3: 40:e3:9c:f2:f0:26:0a:95:af:4a:d5:d5:cc:78:fc: 30:df:11:21:fc:2d:12:f4:96:0c:cd:a6:b0:a6:56: 36:d3:46:b6:4c:f0:69:27:2f:e1:f4:84:79:45:92: 04:34:77:dc:4f:96:a9:92:48:89:2f:b4:2b:ca:ad: e9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B5:E2:4E:C3:A1:2D:22:B0:8A:1E:83:AF:DF:D7:2D:8C:D6:A5:94 X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:e9:f6:b4:65:2f:02:a8:1e:c3:4c:86:f7:f6:e8:88:eb:2a: 43:78:71:ca:74:62:05:43:f1:40:c6:f1:e7:a1:be:a0:45:a6: 7f:25:e1:b7:33:fa:14:f4:3d:9e:e2:13:06:b9:1d:04:24:be: 50:f9:69:61:dc:f6:e9:a1:e5:d5:2b:32:20:10:79:bb:cc:25: 2d:bd:b2:9c:5b:f7:d8:64:7a:58:f9:12:89:74:47:28:fc:8a: 8e:44:3c:cc:c7:27:66:2f:6c:6f:32:70:33:4f:90:30:b7:83: 6f:33:dc:9a:71:99:f5:34:6d:44:5d:c5:43:46:3c:04:fa:99: 2e:e4:0b:91:04:db:49:9e:6e:ae:a7:f7:9b:c1:4e:8e:1e:11: 94:3c:fa:e0:62:96:f3:76:86:fa:b9:72:a4:e5:a5:bf:c1:13: 3b:87:e7:ca:14:6e:29:89:4c:f9:f5:31:22:65:d9:fe:94:ea: 91:99:3d:46:b0:b0:27:8c:af:4c:76:72:36:e6:e8:c3:3f:73: e3:c2:88:9f:79:ac:14:6f:e7:07:e9:e2:78:67:44:83:dc:8c: 84:f5:94:8f:b1:ae:10:e1:2c:fe:d2:39:b9:de:85:2a:1c:f9: 57:63:f8:b4:0e:8c:f5:fa:97:f4:b1:c4:ed:6b:fa:cb:3f:5d: f8:da:97:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUwODIzMDIwMTQxWhcNMjUwODMwMDIwMTQxWjAYMRYwFAYD VQQDEw02OGE5MjEwNi0yMjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC3eFkS29X1oi0ak/iSaXg/rQUGjI2rwXMhwub3g+93JDdiNEfCSyMyDaPCa KLPC2U6xGvp7RfBf6T/nYOaFDb7vLnvu97R7NtHHkfckUG25ZUY4otLj+BLsEHad 9kCCP2oATI9VzTBEgBzT1dn9x5Uc1O7oWFCOPKEy3yDi8HZ49dlKsw8wBvYzymj0 qoOflCfWvwemo5j/gGDOhu3ycQDrppmKDpmUlPfGi64C49B7z+p3ULUP0EfQslML cu40gbNA45zy8CYKla9K1dXMePww3xEh/C0S9JYMzaawplY200a2TPBpJy/h9IR5 RZIENHfcT5apkkiJL7Qryq3pMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE214k7D oS0isIoeg6/f1y2M1qWUMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC6fa0ZS8CqB7DTIb39uiI6ypDeHHKdGIFQ/FAxvHnob6gRaZ/JeG3 M/oU9D2e4hMGuR0EJL5Q+Wlh3PbpoeXVKzIgEHm7zCUtvbKcW/fYZHpY+RKJdEco /IqORDzMxydmL2xvMnAzT5Awt4NvM9yacZn1NG1EXcVDRjwE+pku5AuRBNtJnm6u p/ebwU6OHhGUPPrgYpbzdob6uXKk5aW/wRM7h+fKFG4piUz59TEiZdn+lOqRmT1G sLAnjK9MdnI25ujDP3PjwoifeawUb+cH6eJ4Z0SD3IyE9ZSPsa4Q4Sz+0jm53oUq HPlXY/i0Doz1+pf0scTta/rLP1342pcx -----END CERTIFICATE-----Generated at Sun Aug 24 22:16:15 2025 by rpki-client