$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: hrOJm3cIGl9WInZQb6q3288E3rCnev8EknYfyo2++2k= Subject key identifier: 75:B6:66:02:89:C9:CD:85:C6:47:C8:B7:96:E0:60:16:7C:AC:38:2B Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 023B Signing time: Sun 15 Jun 2025 01:35:08 +0000 Manifest this update: Sun 15 Jun 2025 01:35:08 +0000 Manifest next update: Sun 22 Jun 2025 01:35:08 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: 8+zZeTK5wqSms6+23h38W4eW8fP4aGnmNr5ZkwJGm/g=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Jun 15 01:35:08 2025 GMT Not After : Jun 22 01:35:08 2025 GMT Subject: CN=684e234c-cdbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0f:4a:d2:ce:37:68:ee:10:ff:f6:e5:64:6b: c6:21:df:92:d8:89:77:76:ae:48:85:d8:ea:19:35: dd:0a:a3:dc:19:12:d1:ec:85:5c:c2:ca:ae:19:48: 14:62:ff:4d:42:09:dc:91:09:9c:10:3b:80:eb:89: 4b:72:8e:a2:f6:64:69:d6:6f:7c:6c:8d:b6:a1:08: 07:02:99:02:e4:ee:7d:78:ac:74:c8:e1:f1:88:30: 87:41:00:1d:bc:fa:1d:cc:22:d9:22:34:78:a2:08: f6:ea:c6:c5:64:eb:04:8e:30:5b:5c:25:3b:27:bb: a0:9c:9e:02:9a:73:b4:a9:77:8b:81:bc:40:75:d1: 8c:7d:be:d2:47:f3:e9:c5:cb:04:b3:9e:d9:dd:c2: d4:bf:2a:27:fc:bb:4f:47:97:35:a1:e4:c2:52:30: 1e:09:2f:3a:d1:60:f9:51:19:be:2f:47:d4:fb:69: 1c:f0:03:d9:5c:7c:68:ec:59:b3:cb:e1:43:b7:7d: 64:76:97:ed:af:04:54:03:d5:d8:7b:f1:5e:5d:7a: c5:ab:37:58:1b:e6:b0:20:6d:98:0e:77:d1:27:56: 8e:b5:a5:40:b0:43:9d:eb:7b:f4:2e:1d:9b:b9:5d: de:3a:ea:8f:59:76:39:fa:82:a3:24:3d:e4:bc:7e: 15:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B6:66:02:89:C9:CD:85:C6:47:C8:B7:96:E0:60:16:7C:AC:38:2B X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:71:1c:07:4f:c2:79:0a:e8:d3:ea:56:90:36:0f:7e:96:e7: 08:02:01:dd:64:5d:0a:13:ed:c2:3b:e9:52:50:96:41:a0:c9: bb:ee:ba:68:fa:47:c2:7b:db:8b:32:5d:86:e0:0f:83:d8:5f: 8e:83:53:9b:09:a6:be:f1:9a:da:c4:97:7c:f8:dd:6e:e1:7a: bf:8a:44:90:af:73:6c:1d:70:91:b3:4f:5d:64:60:e9:87:44: 3c:3e:cc:64:03:4c:5f:9f:b4:52:a4:01:b8:f9:97:a9:0a:4b: 7d:d3:54:41:5d:db:fb:e5:2f:74:8a:94:d8:0d:36:bb:f5:c7: 47:a0:3c:6e:1c:c7:cc:b7:ef:b5:b7:2e:9e:77:40:f6:e9:d6: fc:46:b8:d1:16:a6:06:ea:10:c0:a4:86:2e:fe:84:a9:74:15: 5a:a6:0d:81:2a:7e:c0:9c:de:75:c7:52:6c:d3:76:18:76:c6: cd:0c:e7:b6:62:b5:50:9a:42:62:a5:e7:29:b8:04:dc:43:eb: e4:fa:ef:28:32:1f:45:50:58:ee:ec:dc:11:26:b0:89:3b:2c: 53:8c:0b:16:d5:83:21:80:41:63:73:d6:97:68:07:ed:28:5e: 95:1b:b6:1f:cb:c8:91:4e:f4:67:c6:e8:0a:d0:c4:79:26:64: 46:51:f8:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUwNjE1MDEzNTA4WhcNMjUwNjIyMDEzNTA4WjAYMRYwFAYD VQQDEw02ODRlMjM0Yy1jZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0A9K0s43aO4Q//blZGvGId+S2Il3dq5IhdjqGTXdCqPcGRLR7IVcwsquGUgU Yv9NQgnckQmcEDuA64lLco6i9mRp1m98bI22oQgHApkC5O59eKx0yOHxiDCHQQAd vPodzCLZIjR4ogj26sbFZOsEjjBbXCU7J7ugnJ4CmnO0qXeLgbxAddGMfb7SR/Pp xcsEs57Z3cLUvyon/LtPR5c1oeTCUjAeCS860WD5URm+L0fU+2kc8APZXHxo7Fmz y+FDt31kdpftrwRUA9XYe/FeXXrFqzdYG+awIG2YDnfRJ1aOtaVAsEOd63v0Lh2b uV3eOuqPWXY5+oKjJD3kvH4VqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHW2ZgKJ yc2FxkfIt5bgYBZ8rDgrMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPcRwHT8J5CujT6laQNg9+lucIAgHdZF0KE+3CO+lSUJZBoMm77rpo +kfCe9uLMl2G4A+D2F+Og1ObCaa+8ZraxJd8+N1u4Xq/ikSQr3NsHXCRs09dZGDp h0Q8PsxkA0xfn7RSpAG4+ZepCkt901RBXdv75S90ipTYDTa79cdHoDxuHMfMt++1 ty6ed0D26db8RrjRFqYG6hDApIYu/oSpdBVapg2BKn7AnN51x1Js03YYdsbNDOe2 YrVQmkJipecpuATcQ+vk+u8oMh9FUFju7NwRJrCJOyxTjAsW1YMhgEFjc9aXaAft KF6VG7Yfy8iRTvRnxugK0MR5JmRGUfhW -----END CERTIFICATE-----Generated at Sun Jun 15 09:55:07 2025 by rpki-client