$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft File: LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json) Hash identifier: 7dRY4UDCysaqULDy96nrGbR9GRDD5GW8lAz6Io8Iqrg= Subject key identifier: EB:50:34:E9:77:D4:5E:FB:07:25:3D:6C:22:A3:84:D3:4C:F6:C5:A6 Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 Certificate issuer: /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft Manifest number: 86 Signing time: Fri 13 Jun 2025 05:29:29 +0000 Manifest this update: Fri 13 Jun 2025 05:29:29 +0000 Manifest next update: Fri 20 Jun 2025 05:29:29 +0000 Files and hashes: 1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: zMBZ3duWQiFK/7Yw6UvDk3wpsg98qkmX3qIyP05hoL0=) 2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: Nz2FGej23dIiDwRtV6Sp50mpW+TP9HnxQFOScAwf8wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58, serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Validity Not Before: Jun 13 05:29:29 2025 GMT Not After : Jun 20 05:29:29 2025 GMT Subject: CN=684bb739-406c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f8:9e:de:4e:c1:73:20:20:aa:69:7f:a3:8f: 8f:ef:b9:17:18:89:33:29:64:1b:d5:c7:bd:50:b2: 05:41:d9:56:fc:5f:33:fb:64:7c:54:ba:47:f1:f8: 3c:86:e6:00:27:87:51:c0:f1:88:59:bc:f5:6a:4d: 08:d4:c4:cf:3e:0c:e1:29:c4:14:bb:b4:c7:70:da: 71:ad:3d:15:45:9a:e8:e0:40:c9:c6:83:58:4b:3b: 7a:4d:73:92:83:a0:49:fb:97:75:15:53:c4:3b:c3: 3f:bd:54:50:bb:40:95:b3:c9:ba:ba:22:ef:8b:09: b5:e6:22:91:c0:05:7c:dc:0d:8d:20:36:33:13:13: e5:e0:a5:9c:e3:e7:92:7e:ce:a1:1f:70:b5:69:09: 47:89:42:52:16:1b:bb:d9:52:0e:11:a6:0c:14:9e: 2c:21:0f:ae:9d:83:19:07:8a:1a:00:57:c4:f0:a6: bb:33:48:a1:76:97:88:a2:57:e7:1c:12:55:a5:e3: 53:3e:d9:f6:3f:f9:b2:34:93:72:0f:35:4a:14:0f: 09:68:4d:f1:ca:1f:13:f7:18:84:67:d4:aa:80:19: b5:7d:2c:9d:55:68:67:11:43:e9:46:66:df:e1:ee: d5:fb:df:72:20:11:95:c4:56:88:18:6b:5a:54:a0: 5c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:50:34:E9:77:D4:5E:FB:07:25:3D:6C:22:A3:84:D3:4C:F6:C5:A6 X509v3 Authority Key Identifier: keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:e6:65:90:9b:59:86:07:27:66:8b:7c:47:4c:8c:49:37:d7: 9b:80:3a:b4:47:35:e4:5c:3f:66:bd:1a:ea:1b:00:5e:9f:b6: 9f:d1:4f:f2:d5:a0:eb:37:f8:4f:13:86:70:cf:23:f1:22:38: 0c:28:bc:57:ab:7f:16:06:95:d4:97:31:7b:b4:68:65:3d:85: 02:79:84:e5:01:f2:82:d9:2b:2e:c5:fc:5d:4d:b5:e6:23:2f: 22:52:7f:bc:5e:42:9e:b7:82:81:1b:99:d4:d0:04:b9:f1:c7: 3c:54:7c:a8:2d:4e:af:48:2c:8d:20:31:c3:f0:18:26:aa:24: e4:17:be:58:b2:c4:92:18:d6:19:4a:97:ce:21:28:61:3b:63: da:c7:da:84:17:ff:24:29:48:07:fd:e7:da:bd:7b:d2:74:03: c5:61:75:d3:a3:44:85:dc:aa:38:51:2b:e5:f9:87:10:5c:16: eb:9a:59:c5:fe:91:9c:b9:48:17:29:d4:2e:4c:54:51:15:3e: 24:5e:12:5f:c5:2a:b2:e0:76:dd:2e:b5:7b:e9:25:23:54:d5: 21:c0:ff:87:a1:db:8a:1a:00:62:4c:39:a1:9f:2e:d9:fb:af: b2:76:2c:ac:5c:66:00:fa:c5:62:c2:92:8d:41:e6:a4:91:99: 07:5c:79:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBNTgxMTAvBgNVBAUTKDJEMTgwNkJCNzlGN0VDNkE2OTdDQjBBNjVBMjFFNUNC MTIyRkRFNzYwHhcNMjUwNjEzMDUyOTI5WhcNMjUwNjIwMDUyOTI5WjAYMRYwFAYD VQQDEw02ODRiYjczOS00MDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/ie3k7BcyAgqml/o4+P77kXGIkzKWQb1ce9ULIFQdlW/F8z+2R8VLpH8fg8 huYAJ4dRwPGIWbz1ak0I1MTPPgzhKcQUu7THcNpxrT0VRZro4EDJxoNYSzt6TXOS g6BJ+5d1FVPEO8M/vVRQu0CVs8m6uiLviwm15iKRwAV83A2NIDYzExPl4KWc4+eS fs6hH3C1aQlHiUJSFhu72VIOEaYMFJ4sIQ+unYMZB4oaAFfE8Ka7M0ihdpeIolfn HBJVpeNTPtn2P/myNJNyDzVKFA8JaE3xyh8T9xiEZ9SqgBm1fSydVWhnEUPpRmbf 4e7V+99yIBGVxFaIGGtaVKBciwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtQNOl3 1F77ByU9bCKjhNNM9sWmMB8GA1UdIwQYMBaAFC0YBrt59+xqaXywploh5csSL952 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUE1OC9ERjY5NEJBNjdC RkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdHcHBmTENtV2lIbHl4SXYz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xSZ0d1M24zN0dwcGZMQ21XaUhseXhJdjNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUE1OC9ERjY5NEJBNjdCRkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdH cHBmTENtV2lIbHl4SXYzblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL5mWQm1mGBydmi3xHTIxJN9ebgDq0RzXkXD9mvRrqGwBen7af0U/y 1aDrN/hPE4ZwzyPxIjgMKLxXq38WBpXUlzF7tGhlPYUCeYTlAfKC2SsuxfxdTbXm Iy8iUn+8XkKet4KBG5nU0AS58cc8VHyoLU6vSCyNIDHD8BgmqiTkF75YssSSGNYZ SpfOIShhO2Pax9qEF/8kKUgH/efavXvSdAPFYXXTo0SF3Ko4USvl+YcQXBbrmlnF /pGcuUgXKdQuTFRRFT4kXhJfxSqy4HbdLrV76SUjVNUhwP+HoduKGgBiTDmhny7Z +6+ydiysXGYA+sViwpKNQeakkZkHXHll -----END CERTIFICATE-----Generated at Sun Jun 15 05:03:37 2025 by rpki-client