$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: SLFA08sWDZliEi5ziW4mpVgnQexqmQUT50k29k8PHEA= Subject key identifier: 0B:30:00:EC:98:89:BB:1A:7E:04:41:67:32:46:05:E8:46:31:F2:3B Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 0258 Signing time: Mon 11 Aug 2025 02:04:12 +0000 Manifest this update: Mon 11 Aug 2025 02:04:11 +0000 Manifest next update: Mon 18 Aug 2025 02:04:11 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: PaaTxVfZDBGNfY51LrVff0PNVmGUYGIQL9JuYBKWAlA=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Aug 11 02:04:11 2025 GMT Not After : Aug 18 02:04:11 2025 GMT Subject: CN=68994f9c-5d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cf:69:8e:94:86:e8:74:58:27:c0:4f:1f:ba: bd:08:aa:1f:6a:22:f5:49:d7:c7:f0:bc:0a:28:6d: e3:2b:97:cf:83:c7:e6:79:4b:3c:d3:49:d6:60:4b: d0:81:a5:e5:53:aa:59:80:fb:ca:a1:c7:13:c7:b7: b3:9a:ac:f1:b2:6c:99:54:9c:4c:98:9e:4a:cf:77: 63:2f:bb:28:24:b4:a9:a4:77:40:1e:e7:00:84:32: fe:19:cc:9a:c1:e5:4a:6a:f5:88:c7:cb:9f:e2:2e: 55:18:12:bd:38:fb:f8:57:0f:d9:f6:a5:d7:95:b6: cd:1d:bf:d7:66:79:7d:58:8f:c3:66:08:65:44:fc: 49:16:b0:e5:5a:37:b2:00:e3:99:8e:23:d3:ca:51: 1e:b5:6c:c2:2d:ba:49:79:ad:b7:a5:f5:da:67:71: 85:b2:88:e6:46:5b:89:84:6a:9e:bc:80:47:1e:bd: 3b:1a:65:6e:1e:a7:6b:2a:04:f3:46:22:57:0b:11: d5:4c:53:4a:0b:f5:59:14:d4:d5:f1:ec:14:e3:3a: 24:a2:5f:03:c5:04:b9:72:f2:3d:71:84:50:54:78: f0:2a:d0:a5:f4:c2:3c:cf:98:20:64:f0:16:87:da: c0:e4:ee:0f:7a:d7:dd:84:ba:e5:bd:11:5d:b9:75: a6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:30:00:EC:98:89:BB:1A:7E:04:41:67:32:46:05:E8:46:31:F2:3B X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:10:fe:75:d3:5a:35:02:22:43:35:88:8e:8f:3e:6e:da:5d: 0b:c1:1e:1e:54:3e:5a:c1:82:e4:6d:0a:5e:a9:75:44:65:ce: e1:7b:a0:1c:aa:80:52:d5:83:0b:56:d3:30:40:c8:bf:b9:d0: a8:6f:c5:cc:5d:41:1b:2f:af:28:77:78:81:44:10:51:41:06: 10:1a:86:b1:92:1a:e4:fb:c6:1a:7b:70:76:e2:2d:02:2d:cc: 72:30:16:ee:7d:4e:00:3b:4b:af:e4:2c:cd:3d:76:fb:f4:11: 36:0b:ce:35:5a:76:d5:65:8e:cb:91:61:f5:f3:d1:a0:3e:b9: dc:1d:76:5a:8f:10:71:f9:ce:1e:f6:49:13:30:74:a8:36:dc: 16:6d:78:b1:02:31:22:ce:4a:0d:38:03:7e:75:ec:83:f7:d4: 78:7d:a5:20:07:58:78:5a:9f:e7:90:17:fd:45:8f:45:ad:02: 02:a1:b5:0a:cb:34:f0:5e:3e:de:4c:d3:46:eb:65:ba:03:bc: 92:55:17:e0:bb:b7:26:2b:d7:79:dc:67:45:66:fa:fc:3a:22: 59:1c:06:4a:04:26:a0:44:d0:e5:9d:73:39:25:08:29:9f:09: 8b:1a:e0:a1:36:7b:79:4f:9f:44:20:50:97:ff:6c:07:42:b2: bc:01:54:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUwODExMDIwNDExWhcNMjUwODE4MDIwNDExWjAYMRYwFAYD VQQDEw02ODk5NGY5Yy01ZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3c9pjpSG6HRYJ8BPH7q9CKofaiL1SdfH8LwKKG3jK5fPg8fmeUs800nWYEvQ gaXlU6pZgPvKoccTx7ezmqzxsmyZVJxMmJ5Kz3djL7soJLSppHdAHucAhDL+Gcya weVKavWIx8uf4i5VGBK9OPv4Vw/Z9qXXlbbNHb/XZnl9WI/DZghlRPxJFrDlWjey AOOZjiPTylEetWzCLbpJea23pfXaZ3GFsojmRluJhGqevIBHHr07GmVuHqdrKgTz RiJXCxHVTFNKC/VZFNTV8ewU4zokol8DxQS5cvI9cYRQVHjwKtCl9MI8z5ggZPAW h9rA5O4PetfdhLrlvRFduXWm1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAswAOyY ibsafgRBZzJGBehGMfI7MB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8EP5101o1AiJDNYiOjz5u2l0LwR4eVD5awYLkbQpeqXVEZc7he6Ac qoBS1YMLVtMwQMi/udCob8XMXUEbL68od3iBRBBRQQYQGoaxkhrk+8Yae3B24i0C LcxyMBbufU4AO0uv5CzNPXb79BE2C841WnbVZY7LkWH189GgPrncHXZajxBx+c4e 9kkTMHSoNtwWbXixAjEizkoNOAN+deyD99R4faUgB1h4Wp/nkBf9RY9FrQICobUK yzTwXj7eTNNG62W6A7ySVRfgu7cmK9d53GdFZvr8OiJZHAZKBCagRNDlnXM5JQgp nwmLGuChNnt5T59EIFCX/2wHQrK8AVSQ -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:01 2025 by rpki-client