$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: aUmcBWowVC5lF0vFTnsh+vsJgtFZ736gnXyaX/wLy/Y= Subject key identifier: E2:F9:0C:01:F0:89:39:05:FA:E3:32:4A:E2:76:12:34:9C:42:E0:2F Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: 33 Signing time: Sun 19 Oct 2025 11:09:32 +0000 Manifest this update: Sun 19 Oct 2025 11:09:31 +0000 Manifest next update: Sun 26 Oct 2025 11:09:31 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: fz9qcoYc16sO7P2ZNKFj1ZCG6gNEWwim8vyVioghJdI=) 2: 6D182934654D11F0B7A2182FC4F9AE02.roa (hash: OJ6IQsjxs7hA2nKx8jaO6surZfcJ7KSw9HkQoBft87Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Oct 19 11:09:31 2025 GMT Not After : Oct 26 11:09:31 2025 GMT Subject: CN=68f4c6ec-9fd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1f:d4:49:19:a2:3c:cb:7e:a9:a7:af:e5:e0: 16:c6:da:49:7d:23:f5:13:7e:13:10:e1:8e:28:f3: 7b:4b:44:a9:08:76:b4:1f:b2:8b:c2:ec:35:9b:39: e3:7d:24:23:64:8f:20:c9:2d:a5:94:67:da:f3:6b: c1:e0:f2:25:5b:8e:c6:aa:34:df:cc:14:23:15:18: 9b:cf:f3:36:7c:80:0a:3c:47:78:e1:a9:a5:00:14: 93:8d:e4:c7:55:33:78:aa:a6:15:e8:51:4a:6a:ad: 8b:70:08:f5:86:9b:d7:a9:0c:d1:44:c9:29:bf:db: b7:da:ef:4f:3a:49:76:67:d4:f2:45:f1:68:70:d1: 4e:70:8d:07:dc:91:7d:df:ae:84:67:68:1d:87:9d: a9:e4:3f:36:22:84:85:3b:c8:60:f4:3e:3e:13:57: d5:10:c8:d7:44:3a:cc:e7:62:d5:be:fd:31:e1:ca: b8:9a:71:be:19:50:6f:62:05:96:54:c5:af:c6:5b: b6:bd:3c:1b:0f:c8:12:ad:44:a6:f3:21:8c:9f:aa: 54:ef:74:0f:87:b6:2c:e5:62:e6:5e:69:d8:6b:ae: 88:b9:02:f6:5c:53:a0:b1:60:ae:f3:f8:89:06:b6: 2a:c2:40:c8:ec:9e:65:56:4f:40:ed:18:06:2e:d1: e3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F9:0C:01:F0:89:39:05:FA:E3:32:4A:E2:76:12:34:9C:42:E0:2F X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:7e:2d:be:e8:7a:91:78:c6:c5:61:30:74:81:0f:60:28:06: 1d:63:b3:a6:81:44:60:ef:18:39:a3:fe:39:43:7f:fe:8c:88: c1:e2:a8:1d:e0:81:53:b7:83:42:7e:ac:82:cf:c5:e8:f9:06: 58:fe:54:a6:44:5c:86:d7:a2:23:5c:79:3c:5e:90:68:52:06: 5c:3b:c2:19:2f:b5:38:14:b4:1d:ac:f6:1a:46:e4:3d:6f:e1: c7:e1:91:a3:98:1a:0b:fd:82:c7:03:8c:45:59:f4:7e:cc:6a: c1:b5:48:96:22:b0:01:89:ff:a1:20:b8:81:1b:0b:0a:4d:67: fa:77:b2:f4:4d:9d:ad:cd:74:71:15:e5:4f:d1:c5:a9:0a:f0: 47:28:ae:6f:85:f8:e3:8f:ee:10:38:91:f0:80:61:ba:75:30: 56:53:b7:24:f7:3c:51:0d:ee:6b:73:dd:f7:ec:7f:bf:9e:76: 21:df:cb:43:e0:de:ca:08:a9:4b:e9:c0:f1:eb:07:59:6a:a3: 77:37:93:19:e7:c0:af:89:5b:35:df:b8:5b:4f:87:e9:9f:af: 08:45:25:ab:25:bd:76:30:ac:8d:a9:e3:d0:1c:43:e6:56:f9: 05:64:2e:4a:d9:d8:4d:0d:15:fb:a3:28:39:3e:80:79:c6:e5: 0b:14:25:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODIyMTExMC8GA1UEBRMoMkM2N0QyMTY5NkIzQTFDMUJDMkNFNDlGQ0JFMEE3QTUz QTM3RDNBNjAeFw0yNTEwMTkxMTA5MzFaFw0yNTEwMjYxMTA5MzFaMBgxFjAUBgNV BAMTDTY4ZjRjNmVjLTlmZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXH9RJGaI8y36pp6/l4BbG2kl9I/UTfhMQ4Y4o83tLRKkIdrQfsovC7DWbOeN9 JCNkjyDJLaWUZ9rza8Hg8iVbjsaqNN/MFCMVGJvP8zZ8gAo8R3jhqaUAFJON5MdV M3iqphXoUUpqrYtwCPWGm9epDNFEySm/27fa7086SXZn1PJF8Whw0U5wjQfckX3f roRnaB2HnankPzYihIU7yGD0Pj4TV9UQyNdEOsznYtW+/THhyriacb4ZUG9iBZZU xa/GW7a9PBsPyBKtRKbzIYyfqlTvdA+HtizlYuZeadhrroi5AvZcU6CxYK7z+IkG tirCQMjsnmVWT0DtGAYu0eN/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4vkMAfCJ OQX64zJK4nYSNJxC4C8wHwYDVR0jBBgwFoAULGfSFpazocG8LOSfy+CnpTo306Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4MjIxLzMzNTM1Q0IwNjU0 QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTEdmU0ZwYXpvY0c4TE9TZnktQ25wVG8zMDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 MjIxLzMzNTM1Q0IwNjU0QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NH OExPU2Z5LUNucFRvMzA2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGl+Lb7oepF4xsVhMHSBD2AoBh1js6aBRGDvGDmj/jlDf/6MiMHiqB3g gVO3g0J+rILPxej5Blj+VKZEXIbXoiNceTxekGhSBlw7whkvtTgUtB2s9hpG5D1v 4cfhkaOYGgv9gscDjEVZ9H7MasG1SJYisAGJ/6EguIEbCwpNZ/p3svRNna3NdHEV 5U/RxakK8Ecorm+F+OOP7hA4kfCAYbp1MFZTtyT3PFEN7mtz3ffsf7+ediHfy0Pg 3soIqUvpwPHrB1lqo3c3kxnnwK+JWzXfuFtPh+mfrwhFJaslvXYwrI2p49AcQ+ZW +QVkLkrZ2E0NFfujKDk+gHnG5QsUJaI= -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:29 2025 by rpki-client