$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: CTkXz7y132xQHlQqPd4Mk8+JP+AxgKLM7qsKxI5FE5c= Subject key identifier: 6D:32:07:7C:0A:7C:33:3D:44:D5:E9:37:70:CB:B0:4E:62:11:0C:26 Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: 3B Signing time: Wed 05 Nov 2025 07:44:54 +0000 Manifest this update: Wed 05 Nov 2025 07:44:54 +0000 Manifest next update: Wed 12 Nov 2025 07:44:54 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: YBtYEJ8FzIuvY7S3ASb+Y2LAKn4U8KMpf6Sx93e6ivQ=) 2: 6D182934654D11F0B7A2182FC4F9AE02.roa (hash: OJ6IQsjxs7hA2nKx8jaO6surZfcJ7KSw9HkQoBft87Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Nov 5 07:44:54 2025 GMT Not After : Nov 12 07:44:54 2025 GMT Subject: CN=690b0076-6ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2d:3b:7d:c3:62:1c:63:c4:b6:15:fc:a3:a3: 96:5b:67:06:68:49:d1:09:4f:8d:42:01:69:00:43: 3a:60:7f:d2:a6:1f:2d:3a:c2:42:43:73:10:bf:4c: 85:39:48:e5:7f:a1:b9:46:b0:41:33:b1:94:9a:72: 83:ea:95:70:47:9a:b2:06:fd:1f:e3:ef:4f:a8:5c: c5:8a:bc:db:e0:1b:bd:2a:98:5f:dc:61:82:48:22: 85:db:29:c3:74:08:01:bb:59:11:a2:ea:80:92:a5: 6c:31:54:e3:f2:86:90:d9:a8:91:45:34:2e:88:2e: 1b:6f:e7:6a:70:be:b4:45:25:56:99:a6:c7:68:b5: 62:8a:3a:9f:96:a6:fc:08:f3:9f:d3:fd:45:98:43: 3b:9c:68:7a:39:e6:ec:62:dc:92:16:27:9a:fc:80: f1:89:a0:0c:3c:93:97:5a:66:08:3a:67:0d:ea:6a: 05:d3:80:9f:78:42:86:17:b1:89:92:34:41:f3:cd: 56:b5:82:8c:c0:63:63:5b:c5:78:9e:ac:90:a8:1e: 7c:9f:ca:56:87:8a:5e:c2:37:b1:b2:74:02:3e:98: 87:84:4a:a8:ae:a5:55:96:c7:cd:26:7a:7d:5f:66: 27:46:1c:4a:6f:fb:d9:d0:91:7e:73:b0:cd:fb:a2: f4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:32:07:7C:0A:7C:33:3D:44:D5:E9:37:70:CB:B0:4E:62:11:0C:26 X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:3d:64:ea:6d:3f:32:21:f1:15:a5:a1:98:93:ab:7f:5f:1f: d4:8a:24:79:3d:4f:d3:4e:a0:87:54:52:9f:7d:77:cd:ed:b8: 2e:a6:c4:e1:40:ec:99:41:90:63:55:d0:19:4f:a9:bd:82:bf: 36:4e:ef:02:30:04:49:7d:5b:c8:68:46:37:14:3b:7b:db:0c: 09:a6:8a:57:bc:24:86:64:e1:28:2d:7f:58:69:eb:86:2d:7f: cb:dc:0a:59:5d:14:0b:66:18:74:cc:13:22:69:18:b7:11:9b: 88:23:a3:91:de:b5:75:e9:4b:e7:01:95:33:3d:e9:59:01:1a: 79:e1:4b:a2:e8:1c:1d:ed:53:92:3a:2b:fa:76:1b:20:a7:02: b7:1f:a3:d3:b0:3f:36:4b:ab:8c:8e:95:c7:d5:22:5d:e5:5d: 1c:01:08:b5:7b:4b:c9:81:f7:35:35:97:0d:3f:a7:0c:b9:44: 8a:a3:73:dc:83:b5:94:57:ff:22:23:d4:14:eb:51:cf:6b:5d: 55:78:21:f7:1f:bf:a4:43:46:8c:d7:22:51:e5:22:f2:73:97: fa:d9:39:6d:76:3c:a8:5a:69:28:25:b2:f1:89:76:af:36:23: f3:f0:25:54:89:25:ce:74:c4:be:60:52:b0:0f:f5:84:cb:34: 9c:31:db:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODIyMTExMC8GA1UEBRMoMkM2N0QyMTY5NkIzQTFDMUJDMkNFNDlGQ0JFMEE3QTUz QTM3RDNBNjAeFw0yNTExMDUwNzQ0NTRaFw0yNTExMTIwNzQ0NTRaMBgxFjAUBgNV BAMTDTY5MGIwMDc2LTZhYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0LTt9w2IcY8S2Ffyjo5ZbZwZoSdEJT41CAWkAQzpgf9KmHy06wkJDcxC/TIU5 SOV/oblGsEEzsZSacoPqlXBHmrIG/R/j70+oXMWKvNvgG70qmF/cYYJIIoXbKcN0 CAG7WRGi6oCSpWwxVOPyhpDZqJFFNC6ILhtv52pwvrRFJVaZpsdotWKKOp+WpvwI 85/T/UWYQzucaHo55uxi3JIWJ5r8gPGJoAw8k5daZgg6Zw3qagXTgJ94QoYXsYmS NEHzzVa1gozAY2NbxXierJCoHnyfylaHil7CN7GydAI+mIeESqiupVWWx80men1f ZidGHEpv+9nQkX5zsM37ovQhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbTIHfAp8 Mz1E1ek3cMuwTmIRDCYwHwYDVR0jBBgwFoAULGfSFpazocG8LOSfy+CnpTo306Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4MjIxLzMzNTM1Q0IwNjU0 QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTEdmU0ZwYXpvY0c4TE9TZnktQ25wVG8zMDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 MjIxLzMzNTM1Q0IwNjU0QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NH OExPU2Z5LUNucFRvMzA2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABs9ZOptPzIh8RWloZiTq39fH9SKJHk9T9NOoIdUUp99d83tuC6mxOFA 7JlBkGNV0BlPqb2CvzZO7wIwBEl9W8hoRjcUO3vbDAmmile8JIZk4Sgtf1hp64Yt f8vcClldFAtmGHTMEyJpGLcRm4gjo5HetXXpS+cBlTM96VkBGnnhS6LoHB3tU5I6 K/p2GyCnArcfo9OwPzZLq4yOlcfVIl3lXRwBCLV7S8mB9zU1lw0/pwy5RIqjc9yD tZRX/yIj1BTrUc9rXVV4Ifcfv6RDRozXIlHlIvJzl/rZOW12PKhaaSglsvGJdq82 I/PwJVSJJc50xL5gUrAP9YTLNJwx2wI= -----END CERTIFICATE-----Generated at Wed Nov 5 12:27:43 2025 by rpki-client