$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: zeybF4jZxpre9mZwUMj7Zi9SwNgxM9nGyRfjsgJvIq4= Subject key identifier: D2:E1:68:AA:B0:FF:77:CD:DE:85:08:09:1E:38:26:0F:D7:19:35:6C Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 0286 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 0282 Signing time: Mon 03 Nov 2025 01:34:38 +0000 Manifest this update: Mon 03 Nov 2025 01:34:38 +0000 Manifest next update: Mon 10 Nov 2025 01:34:38 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: 4b+ZcUouAFb7mcefTPGrhyiieEZBe+C8O/HtYP2ZXmg=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 646 (0x286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Nov 3 01:34:38 2025 GMT Not After : Nov 10 01:34:38 2025 GMT Subject: CN=690806ae-7c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cb:c1:12:b7:ad:6d:a5:43:5d:25:22:30:f3: 3d:e3:e3:1b:4d:90:2f:52:51:8d:45:cb:9a:40:66: 5f:ae:cd:de:b0:61:1b:38:1f:8c:c1:32:a2:ed:48: d9:16:30:5c:99:00:fd:67:d1:b2:4c:30:d6:1a:4d: db:1a:1c:34:2e:b1:57:df:76:f7:2d:b7:d7:2f:8b: f2:65:89:ee:62:54:b3:f4:c0:32:15:8f:58:50:ca: 31:c0:92:bb:b0:37:fa:0e:59:fa:5a:09:a0:6f:2f: 63:7e:78:2a:44:96:89:c2:4a:c9:97:bf:2b:5e:b1: 18:0f:ce:10:70:49:69:18:7b:ff:c3:47:21:62:80: 59:c5:9e:4d:30:2d:a8:6b:98:5a:4a:44:07:4b:68: 2b:a6:63:84:33:37:71:06:46:24:c7:08:79:98:e7: e9:a2:d9:52:33:e9:fa:cc:66:0b:b6:d1:34:11:10: d1:af:f9:75:02:0a:48:0a:ce:b1:e2:a7:c8:6f:07: e9:8d:68:f0:35:9f:53:4e:f0:c8:23:a3:e8:14:70: 3d:1a:45:9d:19:a3:1d:21:ad:94:d4:b0:4e:5e:15: a5:ba:19:47:da:2f:1b:d6:e0:f2:0f:3d:ee:eb:78: 3b:d2:77:ca:ba:4f:1d:57:89:e9:17:da:d3:50:25: 76:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E1:68:AA:B0:FF:77:CD:DE:85:08:09:1E:38:26:0F:D7:19:35:6C X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:52:ca:13:a1:a8:af:4a:f0:3d:f7:79:8a:91:47:0a:0a:d6: cb:cc:42:45:a4:f9:2b:f3:a0:5f:13:1a:46:be:7d:9f:e7:24: 42:75:e0:ff:8e:a0:df:fd:a5:3c:b4:44:cd:38:38:77:87:5e: ea:48:66:80:8d:e4:2e:dd:8a:ae:d8:fd:05:f5:36:fd:10:c7: 02:94:e3:e8:db:9f:e8:30:2b:eb:1d:bf:8a:d5:bf:b7:7b:7d: c4:c7:fa:8c:8c:b1:ad:da:f3:6a:96:bb:47:34:6c:0e:53:eb: 5f:e3:31:7b:ea:1a:b9:7b:4b:bd:0e:80:0e:65:ce:cf:9a:38: 2d:07:b3:37:54:7c:b0:86:4a:6b:63:d5:fa:bb:a9:b2:32:a6: 19:a2:a5:63:dc:63:68:0c:1f:44:ad:70:53:64:0f:28:0f:25: de:4d:e5:65:16:03:4d:90:3c:c2:86:ac:d6:d7:87:26:e4:8f: f4:90:7d:38:a2:6f:06:9c:36:98:2c:fd:9f:a6:c4:b4:d3:65: 91:e6:e5:e6:81:25:9c:6b:e2:f5:b2:11:fc:e4:d3:2d:4f:b9: b4:3d:c1:e4:4e:ec:6a:63:c4:a7:73:2c:0e:36:17:58:b4:d4: 9d:cc:44:4b:71:3c:e9:06:89:d2:0e:13:5f:c2:3c:26:8e:98: 15:c2:90:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUxMTAzMDEzNDM4WhcNMjUxMTEwMDEzNDM4WjAYMRYwFAYD VQQDEw02OTA4MDZhZS03YzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMvBEretbaVDXSUiMPM94+MbTZAvUlGNRcuaQGZfrs3esGEbOB+MwTKi7UjZ FjBcmQD9Z9GyTDDWGk3bGhw0LrFX33b3LbfXL4vyZYnuYlSz9MAyFY9YUMoxwJK7 sDf6Dln6Wgmgby9jfngqRJaJwkrJl78rXrEYD84QcElpGHv/w0chYoBZxZ5NMC2o a5haSkQHS2grpmOEMzdxBkYkxwh5mOfpotlSM+n6zGYLttE0ERDRr/l1AgpICs6x 4qfIbwfpjWjwNZ9TTvDII6PoFHA9GkWdGaMdIa2U1LBOXhWluhlH2i8b1uDyDz3u 63g70nfKuk8dV4npF9rTUCV2WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLhaKqw /3fN3oUICR44Jg/XGTVsMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWUsoToaivSvA993mKkUcKCtbLzEJFpPkr86BfExpGvn2f5yRCdeD/ jqDf/aU8tETNODh3h17qSGaAjeQu3Yqu2P0F9Tb9EMcClOPo25/oMCvrHb+K1b+3 e33Ex/qMjLGt2vNqlrtHNGwOU+tf4zF76hq5e0u9DoAOZc7PmjgtB7M3VHywhkpr Y9X6u6myMqYZoqVj3GNoDB9ErXBTZA8oDyXeTeVlFgNNkDzChqzW14cm5I/0kH04 om8GnDaYLP2fpsS002WR5uXmgSWca+L1shH85NMtT7m0PcHkTuxqY8SncywONhdY tNSdzERLcTzpBonSDhNfwjwmjpgVwpAH -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:44 2025 by rpki-client