$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: fTrly53Xx7TRqlOM6dqgZNCHM6kcaeJCuECrNLQ3Yik= Subject key identifier: 7E:12:CF:23:F1:DC:1B:19:A9:2F:83:ED:95:E1:0A:9A:D7:96:0C:14 Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: 16 Signing time: Sat 23 Aug 2025 08:16:15 +0000 Manifest this update: Sat 23 Aug 2025 08:16:15 +0000 Manifest next update: Sat 30 Aug 2025 08:16:15 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: fFhoYJ4M5Ibu0RDAmtCDy2qb+9LJ+7g4AprhGNSxdhE=) 2: 6D182934654D11F0B7A2182FC4F9AE02.roa (hash: OJ6IQsjxs7hA2nKx8jaO6surZfcJ7KSw9HkQoBft87Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Aug 23 08:16:15 2025 GMT Not After : Aug 30 08:16:15 2025 GMT Subject: CN=68a978cf-ef05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1a:9d:c4:8f:90:42:ea:3b:23:d2:16:47:e9: 30:a4:71:1a:84:9b:32:66:99:63:b1:1d:a2:10:a8: 46:2e:03:ec:d8:ee:f8:43:20:9a:e5:90:3f:8b:43: 00:f8:1d:d4:e5:ea:ee:05:01:79:49:78:31:75:d7: 49:4b:12:6b:c5:db:a6:22:db:22:9f:38:54:73:02: e0:f1:2f:f7:51:a4:78:05:00:44:6f:46:2a:64:0e: b7:b2:b3:b1:a0:54:c3:a3:a6:fe:38:e6:ed:83:ef: 61:24:23:2d:fa:d6:f5:88:32:b5:03:47:e0:72:cd: 1c:7b:07:0b:f0:b4:08:e8:f0:ee:7b:11:bf:49:12: 0a:46:c2:e3:17:f8:5c:90:2c:36:72:26:31:10:52: b8:82:48:b3:65:ac:d2:e7:67:06:2b:f4:a1:5b:51: 87:f6:49:35:00:c2:c5:86:d5:10:f6:49:6f:39:66: 12:49:02:e7:da:f2:95:7a:52:16:af:72:44:bc:d7: 53:c4:d0:b6:e6:02:f6:f5:a2:b6:2f:0d:15:fe:02: 9e:33:ac:c0:77:0f:9a:b7:c1:fd:c7:58:8f:65:93: 9b:1e:f3:d5:3d:62:17:bd:58:b8:5d:07:f3:04:a4: b2:00:ad:54:4f:de:0a:ee:ec:9b:df:dc:c4:c8:38: 7a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:12:CF:23:F1:DC:1B:19:A9:2F:83:ED:95:E1:0A:9A:D7:96:0C:14 X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:e8:cb:ba:40:c5:c4:02:c7:55:9d:a6:25:ae:19:91:cd:5e: 88:2c:22:74:3d:07:3a:6b:7d:1d:91:39:0b:19:ef:c0:fe:27: 1e:58:90:03:c9:bf:09:f2:c6:45:92:2d:39:02:73:5c:4f:5c: be:d0:a6:a5:a6:a3:14:62:fe:7a:48:d9:d0:c5:62:cb:1f:23: 57:d0:8e:11:30:e5:4e:7a:52:13:46:b2:76:cb:42:79:aa:9d: 00:d0:cb:a0:8f:17:b6:51:ca:77:73:b3:e9:39:62:f4:7b:49: b2:09:89:fb:a2:fe:4f:f4:3b:ba:ef:cf:a9:5d:50:30:5c:3e: 60:73:bb:9a:05:01:c3:c0:1b:b3:79:fe:99:2c:55:86:49:48: 8f:a7:6a:d2:b5:f9:fb:7b:49:36:6c:92:9b:31:ab:47:94:50: 0b:82:8e:8e:97:bd:49:81:cf:16:d1:e0:02:a3:09:a2:65:ec: 8d:29:4c:28:c3:ef:cc:f7:22:64:6d:83:d5:35:27:d5:09:de: b6:21:58:f4:aa:c3:97:e3:a3:f4:9b:8a:23:7e:46:8d:15:a8: 63:c7:4b:46:3f:f9:f9:34:33:2d:a2:1f:f1:a1:f9:df:67:cc: 18:16:fb:fd:a5:da:1e:a4:f6:cd:9b:ab:cf:32:77:f0:4a:f5: 00:bb:6e:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODIyMTExMC8GA1UEBRMoMkM2N0QyMTY5NkIzQTFDMUJDMkNFNDlGQ0JFMEE3QTUz QTM3RDNBNjAeFw0yNTA4MjMwODE2MTVaFw0yNTA4MzAwODE2MTVaMBgxFjAUBgNV BAMTDTY4YTk3OGNmLWVmMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNGp3Ej5BC6jsj0hZH6TCkcRqEmzJmmWOxHaIQqEYuA+zY7vhDIJrlkD+LQwD4 HdTl6u4FAXlJeDF110lLEmvF26Yi2yKfOFRzAuDxL/dRpHgFAERvRipkDreys7Gg VMOjpv445u2D72EkIy361vWIMrUDR+ByzRx7BwvwtAjo8O57Eb9JEgpGwuMX+FyQ LDZyJjEQUriCSLNlrNLnZwYr9KFbUYf2STUAwsWG1RD2SW85ZhJJAufa8pV6Uhav ckS811PE0LbmAvb1orYvDRX+Ap4zrMB3D5q3wf3HWI9lk5se89U9Yhe9WLhdB/ME pLIArVRP3gru7Jvf3MTIOHpNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfhLPI/Hc GxmpL4PtleEKmteWDBQwHwYDVR0jBBgwFoAULGfSFpazocG8LOSfy+CnpTo306Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4MjIxLzMzNTM1Q0IwNjU0 QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTEdmU0ZwYXpvY0c4TE9TZnktQ25wVG8zMDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 MjIxLzMzNTM1Q0IwNjU0QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NH OExPU2Z5LUNucFRvMzA2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAboy7pAxcQCx1WdpiWuGZHNXogsInQ9BzprfR2ROQsZ78D+Jx5YkAPJ vwnyxkWSLTkCc1xPXL7QpqWmoxRi/npI2dDFYssfI1fQjhEw5U56UhNGsnbLQnmq nQDQy6CPF7ZRyndzs+k5YvR7SbIJifui/k/0O7rvz6ldUDBcPmBzu5oFAcPAG7N5 /pksVYZJSI+natK1+ft7STZskpsxq0eUUAuCjo6XvUmBzxbR4AKjCaJl7I0pTCjD 78z3ImRtg9U1J9UJ3rYhWPSqw5fjo/SbiiN+Ro0VqGPHS0Y/+fk0My2iH/Gh+d9n zBgW+/2l2h6k9s2bq88yd/BK9QC7bi4= -----END CERTIFICATE-----Generated at Sat Aug 23 19:41:56 2025 by rpki-client