$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: f38QQfoRajdU5WgTRSBTM1sX2UbZXBExIVWQ8tQQZ3c= Subject key identifier: 52:D4:58:6D:E4:59:CF:CD:B8:61:1C:00:FC:BD:5C:8D:6E:C5:6E:55 Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: 0F Signing time: Sat 09 Aug 2025 08:38:52 +0000 Manifest this update: Sat 09 Aug 2025 08:38:51 +0000 Manifest next update: Sat 16 Aug 2025 08:38:51 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: f+RcpusUigNuY1A6Hvr0lXiB4JOw62mCHIffhkUysrw=) 2: 6D182934654D11F0B7A2182FC4F9AE02.roa (hash: OJ6IQsjxs7hA2nKx8jaO6surZfcJ7KSw9HkQoBft87Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Aug 9 08:38:51 2025 GMT Not After : Aug 16 08:38:51 2025 GMT Subject: CN=6897091c-ec00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5d:a0:6e:cb:88:81:fe:bd:be:47:50:66:22: de:0d:34:69:33:a9:9d:e2:bd:26:6a:e1:1b:5b:84: 84:5f:eb:c1:34:70:c4:f2:b9:d5:dd:78:fc:ec:91: 96:8b:12:f1:17:9e:31:19:2e:8b:57:dc:37:db:2d: cc:8f:09:8c:31:c0:df:68:38:67:38:cb:92:33:7c: f9:23:de:08:8b:44:b7:b6:56:27:8f:51:d7:7f:57: 22:71:ef:45:5b:a5:03:f2:e6:58:aa:37:e9:87:bb: 36:ab:fe:f0:b6:92:10:11:b6:0b:9f:53:e0:f9:ec: 72:4f:12:86:16:ff:05:78:a3:15:73:bc:85:2e:eb: 8c:61:fd:29:09:7a:8b:e9:9e:f1:ad:1e:22:5c:a5: 51:13:be:54:8a:5a:f6:7b:22:20:74:ae:2a:f2:34: c4:b6:9a:95:43:33:f3:e5:02:b5:c5:fa:34:07:24: 54:e7:3b:99:43:71:c8:d0:30:0d:47:e4:0a:67:48: bf:fa:8e:8a:d5:83:c8:66:2c:01:66:70:8e:44:9d: e9:40:03:0c:88:f4:88:40:aa:60:56:31:fa:ac:1d: fb:7f:3b:75:0c:b5:9d:45:01:b8:22:e9:02:6f:75: 01:97:63:90:0f:7e:b1:6b:3a:87:b3:59:c9:a5:8a: 24:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D4:58:6D:E4:59:CF:CD:B8:61:1C:00:FC:BD:5C:8D:6E:C5:6E:55 X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:66:3e:d6:89:77:ce:5f:ce:30:a0:38:38:98:3e:02:9b:2a: a1:ac:b5:2a:57:a4:19:06:ff:0b:3f:2e:49:54:a3:33:2b:60: be:ec:e1:a1:d6:30:d4:d5:e4:72:90:d8:05:bd:4f:e1:cb:84: 12:bc:44:34:67:4a:e4:ce:79:aa:26:4f:89:9c:6c:d9:33:13: b1:42:a8:81:43:fd:a0:19:e0:17:82:31:5a:95:3f:1e:63:34: 73:0a:04:16:8c:41:50:4e:45:a6:10:fd:37:9c:f7:03:64:24: 13:a5:ff:44:ec:03:a4:db:2c:f2:41:fd:69:01:13:46:ad:bc: fd:f6:41:45:46:57:48:7d:ec:19:9c:c7:eb:e5:62:e4:f7:eb: 33:b0:37:35:86:f6:f8:b6:e2:17:d3:a9:3b:a2:3e:f3:0e:b8: c4:1a:09:13:36:47:0a:f8:42:53:eb:04:37:88:fd:29:8a:8e: f5:93:6a:28:17:40:0e:92:7e:74:80:19:8c:e2:41:cf:c5:9b: cb:f0:90:6d:71:5b:d6:3a:c1:36:3f:37:11:75:05:0f:d7:9b: d8:8f:38:cd:ef:48:d7:db:fe:b8:4f:97:9f:0b:d7:6e:8c:fc: 49:89:0b:e1:57:ba:d6:85:3c:07:6d:2e:bd:bd:93:8e:13:fa: 48:1c:85:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODIyMTExMC8GA1UEBRMoMkM2N0QyMTY5NkIzQTFDMUJDMkNFNDlGQ0JFMEE3QTUz QTM3RDNBNjAeFw0yNTA4MDkwODM4NTFaFw0yNTA4MTYwODM4NTFaMBgxFjAUBgNV BAMTDTY4OTcwOTFjLWVjMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvXaBuy4iB/r2+R1BmIt4NNGkzqZ3ivSZq4RtbhIRf68E0cMTyudXdePzskZaL EvEXnjEZLotX3DfbLcyPCYwxwN9oOGc4y5IzfPkj3giLRLe2ViePUdd/VyJx70Vb pQPy5liqN+mHuzar/vC2khARtgufU+D57HJPEoYW/wV4oxVzvIUu64xh/SkJeovp nvGtHiJcpVETvlSKWvZ7IiB0riryNMS2mpVDM/PlArXF+jQHJFTnO5lDccjQMA1H 5ApnSL/6jorVg8hmLAFmcI5EnelAAwyI9IhAqmBWMfqsHft/O3UMtZ1FAbgi6QJv dQGXY5APfrFrOoezWcmliiTXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUtRYbeRZ z824YRwA/L1cjW7FblUwHwYDVR0jBBgwFoAULGfSFpazocG8LOSfy+CnpTo306Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4MjIxLzMzNTM1Q0IwNjU0 QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTEdmU0ZwYXpvY0c4TE9TZnktQ25wVG8zMDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 MjIxLzMzNTM1Q0IwNjU0QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NH OExPU2Z5LUNucFRvMzA2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC5mPtaJd85fzjCgODiYPgKbKqGstSpXpBkG/ws/LklUozMrYL7s4aHW MNTV5HKQ2AW9T+HLhBK8RDRnSuTOeaomT4mcbNkzE7FCqIFD/aAZ4BeCMVqVPx5j NHMKBBaMQVBORaYQ/Tec9wNkJBOl/0TsA6TbLPJB/WkBE0atvP32QUVGV0h97Bmc x+vlYuT36zOwNzWG9vi24hfTqTuiPvMOuMQaCRM2Rwr4QlPrBDeI/SmKjvWTaigX QA6SfnSAGYziQc/Fm8vwkG1xW9Y6wTY/NxF1BQ/Xm9iPOM3vSNfb/rhPl58L126M /EmJC+FXutaFPAdtLr29k44T+kgchbk= -----END CERTIFICATE-----Generated at Sun Aug 10 05:50:28 2025 by rpki-client