$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft File: LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json) Hash identifier: n9ntLxLWUlovoRY48W5wnEILjsYW6s1XRagLQ/a4/DU= Subject key identifier: C2:7D:B0:39:A1:9F:E9:58:F5:B4:23:37:10:47:3E:B6:FC:DD:B0:CF Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 Certificate issuer: /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft Manifest number: CC Signing time: Mon 27 Oct 2025 07:56:56 +0000 Manifest this update: Mon 27 Oct 2025 07:56:55 +0000 Manifest next update: Mon 03 Nov 2025 07:56:55 +0000 Files and hashes: 1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: mTGXmrn7hew0S1R1wwXto9iB9DXFyOhn+MA1qG5As6A=) 2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: GquKmtZlMDJv9N8EiV5JY0q+tYOnvaRmJYnuHr77saU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58, serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Validity Not Before: Oct 27 07:56:55 2025 GMT Not After : Nov 3 07:56:55 2025 GMT Subject: CN=68ff25c7-e1fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2e:8e:5f:f0:a7:fa:f5:b1:39:96:47:81:bc: 3a:ec:bd:f8:44:a8:45:0b:3c:19:74:fe:9b:f7:8a: 40:76:fa:19:42:30:a3:04:1f:b0:6a:56:f2:5b:de: 1b:36:dd:33:98:d7:fd:08:3b:c0:c8:5d:97:2b:67: 26:95:03:4c:a3:c5:31:b5:8b:8e:90:4f:80:17:20: 5d:e4:d8:9a:07:20:2c:fe:2b:85:d5:ce:df:d6:f2: fe:63:bf:09:58:9c:76:f1:34:0d:0b:58:53:6c:e2: 35:75:c9:1b:62:e6:2a:9e:d6:5a:0f:8e:58:0d:54: cf:96:6a:dd:70:d9:43:6d:ef:88:f3:f1:4e:4f:4a: 2e:96:95:2e:94:17:fa:89:50:c9:f6:34:8a:ed:42: 63:3e:87:19:6f:7a:59:bf:35:52:e0:fc:45:2d:42: 7e:5c:68:e9:56:43:b8:a0:12:4a:af:d3:b9:c7:d6: 39:1d:51:92:7e:b0:4e:ec:f9:12:09:39:22:d8:ed: 1f:0c:9f:40:3a:34:c4:cf:cc:f6:ca:28:f4:ae:e6: b6:81:31:c8:05:86:bc:be:2d:88:92:03:b4:ad:13: a7:d0:a6:9d:50:f6:20:9a:cd:b7:c4:a4:3b:e1:71: 68:1f:7d:91:8f:c2:e1:ed:55:fd:dc:cd:29:e5:72: 67:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:7D:B0:39:A1:9F:E9:58:F5:B4:23:37:10:47:3E:B6:FC:DD:B0:CF X509v3 Authority Key Identifier: keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:14:93:ad:e8:0e:7e:d1:db:e1:c1:3a:f8:9a:68:6b:b0:e7: ab:9d:d8:3d:35:6f:85:6d:56:54:08:e4:88:79:e2:5a:bc:83: 1d:7c:61:e5:2f:c0:18:57:bd:f6:fe:a5:dc:2b:54:5e:8b:fb: 88:05:28:1c:9b:1a:2f:d2:bb:34:95:be:ee:4d:55:9e:27:eb: 47:33:5f:86:42:36:61:65:4c:fa:4c:be:d2:a5:e6:6b:b8:de: b4:f7:84:1b:b4:87:53:1f:eb:49:cc:d3:6b:df:9e:3f:5a:ae: d9:08:ca:3a:2c:49:bf:81:2b:eb:38:20:82:64:60:6e:c4:86: 4b:e0:89:aa:98:17:56:e6:f1:74:fe:f5:00:d4:28:e7:bd:23: e6:af:32:15:27:28:2e:f6:31:86:22:35:1b:2b:b6:4d:f1:dc: 5d:ba:95:f3:1c:b0:da:af:21:05:f8:20:4b:da:f4:88:0c:a2: 01:18:a9:7b:ff:25:30:ee:e6:45:87:87:a4:2a:4f:ee:9a:10: 27:09:34:81:fd:0f:2c:c0:87:3d:51:69:f7:2b:9f:f9:d1:ce: fb:8c:e5:08:ee:e6:07:33:85:d3:97:f6:3e:30:a8:9c:5b:61: 69:f0:e4:9c:c7:a0:b2:2f:31:40:45:f2:93:ef:57:c3:43:c8: 07:4b:7b:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBNTgxMTAvBgNVBAUTKDJEMTgwNkJCNzlGN0VDNkE2OTdDQjBBNjVBMjFFNUNC MTIyRkRFNzYwHhcNMjUxMDI3MDc1NjU1WhcNMjUxMTAzMDc1NjU1WjAYMRYwFAYD VQQDEw02OGZmMjVjNy1lMWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwy6OX/Cn+vWxOZZHgbw67L34RKhFCzwZdP6b94pAdvoZQjCjBB+walbyW94b Nt0zmNf9CDvAyF2XK2cmlQNMo8UxtYuOkE+AFyBd5NiaByAs/iuF1c7f1vL+Y78J WJx28TQNC1hTbOI1dckbYuYqntZaD45YDVTPlmrdcNlDbe+I8/FOT0oulpUulBf6 iVDJ9jSK7UJjPocZb3pZvzVS4PxFLUJ+XGjpVkO4oBJKr9O5x9Y5HVGSfrBO7PkS CTki2O0fDJ9AOjTEz8z2yij0rua2gTHIBYa8vi2IkgO0rROn0KadUPYgms23xKQ7 4XFoH32Rj8Lh7VX93M0p5XJn7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJ9sDmh n+lY9bQjNxBHPrb83bDPMB8GA1UdIwQYMBaAFC0YBrt59+xqaXywploh5csSL952 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUE1OC9ERjY5NEJBNjdC RkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdHcHBmTENtV2lIbHl4SXYz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xSZ0d1M24zN0dwcGZMQ21XaUhseXhJdjNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUE1OC9ERjY5NEJBNjdCRkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdH cHBmTENtV2lIbHl4SXYzblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5FJOt6A5+0dvhwTr4mmhrsOerndg9NW+FbVZUCOSIeeJavIMdfGHl L8AYV732/qXcK1Rei/uIBSgcmxov0rs0lb7uTVWeJ+tHM1+GQjZhZUz6TL7SpeZr uN6094QbtIdTH+tJzNNr354/Wq7ZCMo6LEm/gSvrOCCCZGBuxIZL4ImqmBdW5vF0 /vUA1CjnvSPmrzIVJygu9jGGIjUbK7ZN8dxdupXzHLDaryEF+CBL2vSIDKIBGKl7 /yUw7uZFh4ekKk/umhAnCTSB/Q8swIc9UWn3K5/50c77jOUI7uYHM4XTl/Y+MKic W2Fp8OScx6CyLzFARfKT71fDQ8gHS3tm -----END CERTIFICATE-----Generated at Tue Oct 28 18:39:32 2025 by rpki-client