$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft File: LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json) Hash identifier: QoSYsB8CAlpXW8Vx1NRJptKISED6wck2rhIsWMmgohQ= Subject key identifier: B3:F7:AB:DA:E8:7D:BA:ED:A9:C2:F5:4A:8D:68:81:68:0C:DF:7C:40 Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 Certificate issuer: /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft Manifest number: D1 Signing time: Wed 05 Nov 2025 05:51:26 +0000 Manifest this update: Wed 05 Nov 2025 05:51:26 +0000 Manifest next update: Wed 12 Nov 2025 05:51:26 +0000 Files and hashes: 1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: UVAPptuYQPORxdvkplT5tDZQKtQ2GLXMbpbiABZZ5Cw=) 2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: GquKmtZlMDJv9N8EiV5JY0q+tYOnvaRmJYnuHr77saU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58, serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Validity Not Before: Nov 5 05:51:26 2025 GMT Not After : Nov 12 05:51:26 2025 GMT Subject: CN=690ae5de-ce95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f1:7f:29:48:39:57:97:7a:68:79:25:8f:6a: e0:57:6a:a6:2b:a1:d5:85:c2:e0:c5:50:a6:ba:ba: 8b:aa:cc:7d:03:7e:8e:85:a9:8c:aa:1e:d2:1d:60: 67:96:5d:8c:10:83:f4:a1:77:d9:d1:b1:a1:4e:58: 28:ca:66:b9:17:c8:b5:21:95:6c:ca:e5:49:4f:ff: 57:a2:16:b9:e0:23:84:ac:76:c6:f4:e9:e0:37:82: fa:97:c1:49:07:b5:9b:5f:05:dc:8d:c7:aa:7d:5c: 8e:9a:d5:f4:4c:ad:0b:af:b6:77:8e:9d:ef:4c:a7: 0c:f8:f2:ed:8e:2b:5a:80:30:4e:6c:ea:84:4e:32: 80:57:52:95:a1:64:3f:f6:30:78:e9:9e:cd:e3:5d: ec:af:d2:fd:55:56:ef:8e:3e:81:35:2f:25:59:6a: 14:63:95:f8:46:1b:a0:4d:8f:d4:b0:f2:15:3f:65: 88:e2:e8:55:93:36:d4:9d:d6:4b:51:0c:ae:88:e8: 7a:fb:fb:22:11:73:14:db:7c:a7:be:fe:2a:18:d8: bf:c6:54:6d:4e:19:25:4c:de:00:db:1d:0f:21:83: 5b:28:cf:55:b2:e7:58:22:4b:81:39:89:84:9a:3d: ae:2f:12:d8:22:cd:f5:ad:d0:7a:3e:5e:8d:4a:0f: 13:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F7:AB:DA:E8:7D:BA:ED:A9:C2:F5:4A:8D:68:81:68:0C:DF:7C:40 X509v3 Authority Key Identifier: keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:5e:21:92:f7:75:d2:82:bd:dd:12:ed:6a:18:27:14:53:35: 5a:bb:d1:77:a9:0b:5d:60:4a:c5:d2:5f:77:e7:90:e6:fa:22: 6a:01:3d:4c:c1:70:a1:b9:e2:e6:8b:54:ac:8a:20:92:71:57: 96:12:2e:f6:8e:b5:78:ae:21:9e:1a:f9:b3:8f:a7:d6:47:ca: 38:5c:ef:5d:d0:75:7d:2e:4d:ea:a6:b3:12:d6:7a:bb:0e:fe: 43:86:c2:d9:f0:26:d1:06:2c:29:57:ef:43:d1:d8:7a:23:25: 88:45:ef:87:67:9e:4e:91:a8:d0:eb:6e:ae:c8:78:01:14:45: 91:46:e5:25:aa:67:0e:50:c2:a9:d5:e8:dc:9b:0e:a5:d7:43: 9c:6e:1e:be:15:60:8a:ef:27:f5:74:13:41:57:78:5e:1b:3b: 65:f8:67:42:c2:a2:52:42:34:08:60:ed:6f:e2:ae:f6:78:32: ac:93:25:5e:f2:c4:d4:e2:b4:6e:42:1e:06:f2:3a:db:71:41: 77:2b:ea:aa:43:78:36:27:ca:99:b0:1c:3c:ed:4d:db:da:d3: d1:51:ab:2b:25:69:0e:d5:a7:23:fd:52:42:3d:15:b1:26:9c: 21:fb:48:64:f7:ed:ea:ae:64:67:67:33:bc:e3:39:81:b7:f3: 5e:05:2f:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBNTgxMTAvBgNVBAUTKDJEMTgwNkJCNzlGN0VDNkE2OTdDQjBBNjVBMjFFNUNC MTIyRkRFNzYwHhcNMjUxMTA1MDU1MTI2WhcNMjUxMTEyMDU1MTI2WjAYMRYwFAYD VQQDEw02OTBhZTVkZS1jZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvF/KUg5V5d6aHklj2rgV2qmK6HVhcLgxVCmurqLqsx9A36OhamMqh7SHWBn ll2MEIP0oXfZ0bGhTlgoyma5F8i1IZVsyuVJT/9Xoha54COErHbG9OngN4L6l8FJ B7WbXwXcjceqfVyOmtX0TK0Lr7Z3jp3vTKcM+PLtjitagDBObOqETjKAV1KVoWQ/ 9jB46Z7N413sr9L9VVbvjj6BNS8lWWoUY5X4RhugTY/UsPIVP2WI4uhVkzbUndZL UQyuiOh6+/siEXMU23ynvv4qGNi/xlRtThklTN4A2x0PIYNbKM9VsudYIkuBOYmE mj2uLxLYIs31rdB6Pl6NSg8TVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLP3q9ro fbrtqcL1So1ogWgM33xAMB8GA1UdIwQYMBaAFC0YBrt59+xqaXywploh5csSL952 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUE1OC9ERjY5NEJBNjdC RkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdHcHBmTENtV2lIbHl4SXYz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xSZ0d1M24zN0dwcGZMQ21XaUhseXhJdjNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUE1OC9ERjY5NEJBNjdCRkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdH cHBmTENtV2lIbHl4SXYzblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsXiGS93XSgr3dEu1qGCcUUzVau9F3qQtdYErF0l9355Dm+iJqAT1M wXChueLmi1SsiiCScVeWEi72jrV4riGeGvmzj6fWR8o4XO9d0HV9Lk3qprMS1nq7 Dv5DhsLZ8CbRBiwpV+9D0dh6IyWIRe+HZ55OkajQ626uyHgBFEWRRuUlqmcOUMKp 1ejcmw6l10Ocbh6+FWCK7yf1dBNBV3heGztl+GdCwqJSQjQIYO1v4q72eDKskyVe 8sTU4rRuQh4G8jrbcUF3K+qqQ3g2J8qZsBw87U3b2tPRUasrJWkO1acj/VJCPRWx Jpwh+0hk9+3qrmRnZzO84zmBt/NeBS9N -----END CERTIFICATE-----Generated at Wed Nov 5 11:53:23 2025 by rpki-client