$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft File: LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json) Hash identifier: aQE2fYqcYdolb3mviA3pAD+Ckdh+jma+BhyTDKhhBGU= Subject key identifier: 96:07:AD:40:36:00:4C:42:9B:8B:A1:1F:8B:89:B7:C3:07:48:AD:35 Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 Certificate issuer: /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft Manifest number: 7F Signing time: Sat 31 May 2025 06:13:38 +0000 Manifest this update: Sat 31 May 2025 06:13:38 +0000 Manifest next update: Sat 07 Jun 2025 06:13:38 +0000 Files and hashes: 1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: CQKxfb+71otR64vlH/9XHf+G4eLqo+Edw8F1T9Q8Tho=) 2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: Nz2FGej23dIiDwRtV6Sp50mpW+TP9HnxQFOScAwf8wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58, serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Validity Not Before: May 31 06:13:38 2025 GMT Not After : Jun 7 06:13:38 2025 GMT Subject: CN=683a9e12-11ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ca:2a:82:cb:7d:14:37:62:5d:b9:a8:fd:5e: 2e:80:5e:f1:e7:d8:9d:d4:33:0d:09:89:28:5c:5e: e5:8a:dd:e9:49:81:fa:9c:8a:fe:87:6b:ac:86:92: 1a:a4:4e:26:e2:ee:f7:60:85:0b:b9:99:58:27:95: a5:d7:d8:69:84:21:10:a5:4b:2f:24:bc:cd:e9:ed: b4:e8:35:e0:19:d1:ba:9a:69:fe:ca:20:50:84:23: 37:e6:72:0f:c9:36:05:32:31:2b:79:9c:76:ab:39: eb:b2:fa:da:6b:52:5d:7d:de:44:70:03:7f:1a:77: a9:6f:9d:10:43:2e:8e:48:ca:4a:26:13:88:c7:05: f8:18:20:52:d0:ee:23:2e:22:45:34:2a:33:49:b6: 51:b3:63:c9:35:8e:b8:29:54:48:75:bc:2d:be:6d: 73:aa:38:18:58:e9:84:f7:01:ce:bb:91:48:b8:3d: e9:0b:80:12:c9:19:36:ab:a0:61:26:7f:5b:ce:b2: 5e:dc:8e:a7:8b:52:78:91:62:aa:3a:63:5d:f4:87: b5:1a:27:34:ef:dc:98:a8:a0:05:1d:db:a3:8e:b9: b5:f3:c8:ec:9b:dd:fb:da:ba:e5:14:76:4d:ea:5b: fd:c4:7c:ce:10:61:db:d6:bd:a4:ff:17:ac:8e:f5: 57:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:07:AD:40:36:00:4C:42:9B:8B:A1:1F:8B:89:B7:C3:07:48:AD:35 X509v3 Authority Key Identifier: keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:31:24:54:8c:eb:d1:95:09:f3:d6:4d:8f:03:eb:0c:cc:d2: c1:bf:00:ce:c4:de:0a:33:42:bd:fc:5b:ed:cf:85:06:3c:41: c3:0d:74:4d:7b:fc:60:50:a4:93:86:b5:89:e0:8b:3d:0a:4b: 58:c7:c0:e9:ae:78:0c:a2:7e:13:fe:a8:51:0c:e6:b2:d2:c4: 60:d0:e5:0f:25:9f:38:ed:81:2a:c2:7a:13:d6:2f:02:57:8c: d7:92:20:88:c2:5b:df:c8:a0:2d:71:67:83:68:6b:0b:7b:e2: 79:c8:4f:16:05:a3:23:0f:3c:89:7e:6f:fa:24:19:eb:12:ee: 26:2a:3d:d8:5a:fe:d2:dc:fd:0c:d3:ea:a9:a5:9b:74:f7:6d: 7c:ca:f6:24:d9:69:f4:9a:b3:5f:30:bb:0b:1f:f8:b0:6b:81: 23:1f:f1:4c:93:83:90:55:1f:ee:9a:db:e4:2e:4a:7d:88:c2: 84:56:fc:3b:0c:59:63:95:2d:7d:8e:5f:68:58:87:66:9c:1e: cc:f8:d3:be:09:0b:b0:86:fa:1b:53:9b:63:39:02:fe:fa:da: 25:b4:93:81:49:82:e0:e6:3c:db:b2:c2:d4:63:ad:39:85:22: c9:f2:44:96:95:e0:ca:ba:11:38:18:d4:27:ec:83:65:b3:1e: c1:02:af:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBNTgxMTAvBgNVBAUTKDJEMTgwNkJCNzlGN0VDNkE2OTdDQjBBNjVBMjFFNUNC MTIyRkRFNzYwHhcNMjUwNTMxMDYxMzM4WhcNMjUwNjA3MDYxMzM4WjAYMRYwFAYD VQQDEw02ODNhOWUxMi0xMWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8oqgst9FDdiXbmo/V4ugF7x59id1DMNCYkoXF7lit3pSYH6nIr+h2ushpIa pE4m4u73YIULuZlYJ5Wl19hphCEQpUsvJLzN6e206DXgGdG6mmn+yiBQhCM35nIP yTYFMjEreZx2qznrsvraa1Jdfd5EcAN/Gnepb50QQy6OSMpKJhOIxwX4GCBS0O4j LiJFNCozSbZRs2PJNY64KVRIdbwtvm1zqjgYWOmE9wHOu5FIuD3pC4ASyRk2q6Bh Jn9bzrJe3I6ni1J4kWKqOmNd9Ie1Gic079yYqKAFHdujjrm188jsm9372rrlFHZN 6lv9xHzOEGHb1r2k/xesjvVXoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYHrUA2 AExCm4uhH4uJt8MHSK01MB8GA1UdIwQYMBaAFC0YBrt59+xqaXywploh5csSL952 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUE1OC9ERjY5NEJBNjdC RkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdHcHBmTENtV2lIbHl4SXYz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xSZ0d1M24zN0dwcGZMQ21XaUhseXhJdjNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUE1OC9ERjY5NEJBNjdCRkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdH cHBmTENtV2lIbHl4SXYzblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEMSRUjOvRlQnz1k2PA+sMzNLBvwDOxN4KM0K9/Fvtz4UGPEHDDXRN e/xgUKSThrWJ4Is9CktYx8DprngMon4T/qhRDOay0sRg0OUPJZ847YEqwnoT1i8C V4zXkiCIwlvfyKAtcWeDaGsLe+J5yE8WBaMjDzyJfm/6JBnrEu4mKj3YWv7S3P0M 0+qppZt09218yvYk2Wn0mrNfMLsLH/iwa4EjH/FMk4OQVR/umtvkLkp9iMKEVvw7 DFljlS19jl9oWIdmnB7M+NO+CQuwhvobU5tjOQL++toltJOBSYLg5jzbssLUY605 hSLJ8kSWleDKuhE4GNQn7INlsx7BAq9a -----END CERTIFICATE-----Generated at Sat May 31 16:27:45 2025 by rpki-client