$ rpki-client -vvf rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft File: LgN_IhyajV_cyIxDyosl1ENrsDk.mft (raw, json) Hash identifier: S7hPD3mbT9A1DxVSzQPmR02yzqoVeMVRAtcFWYKF9oY= Subject key identifier: 71:15:2B:C8:CA:99:CF:F8:79:FC:C6:49:C9:10:FF:73:80:E6:48:AB Authority key identifier: 2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 Certificate issuer: /CN=A9196285/serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft Manifest number: 6F Signing time: Sun 19 Oct 2025 10:14:37 +0000 Manifest this update: Sun 19 Oct 2025 10:14:36 +0000 Manifest next update: Sun 26 Oct 2025 10:14:36 +0000 Files and hashes: 1: LgN_IhyajV_cyIxDyosl1ENrsDk.crl (hash: 4pBWn4TvBPXDPr/onP0fa4lwFWNgFtwRq1a8jDQ4iFA=) 2: D3E69766027B11F0ACFB0B53C4F9AE02.roa (hash: riovgsjK6T9Xk/OVypXbdv81H28kZxqc1J6kqB+epyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196285, serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Validity Not Before: Oct 19 10:14:36 2025 GMT Not After : Oct 26 10:14:36 2025 GMT Subject: CN=68f4ba0d-4489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:80:e2:d4:bb:8f:a1:72:7d:35:39:b2:7f:03: 89:bd:92:41:fe:e4:1f:75:6c:f8:58:b3:59:0d:83: d7:75:80:77:77:a6:a4:fe:5c:2d:fb:35:18:4f:a4: ac:3b:ac:63:a6:a1:9c:b7:da:e8:fd:a0:c8:6d:2f: 61:d7:e3:1c:16:08:77:25:6c:22:f2:68:80:cb:7c: ab:3d:96:c7:08:ed:80:77:72:24:9d:3b:f4:f4:50: 67:0a:4f:ba:e3:0c:eb:8f:2d:ef:eb:cc:2f:e4:e5: 6c:98:eb:4f:ec:4e:f1:ee:77:e3:7a:ab:b1:91:eb: 25:ed:b5:28:6e:63:1d:8e:0f:a9:ec:7f:6e:f6:39: a4:d8:0b:f9:ec:0d:fd:9e:4f:80:0e:02:dc:23:06: 4d:f5:0e:2c:61:0d:16:03:9e:84:82:17:26:96:08: ca:d8:ff:89:43:c4:97:24:4e:2a:41:55:ac:8a:40: 65:df:86:ae:33:2d:78:8c:9b:2d:93:42:6d:ef:10: 4a:17:e4:83:a8:bc:fa:b8:40:27:cb:0f:36:19:21: 9f:d7:d1:c7:28:00:f4:c1:32:21:58:02:2a:c9:39: c0:0b:b4:0a:f1:74:4e:52:5b:f4:89:bb:03:42:a3: c6:72:c4:21:d9:9f:62:00:0d:ed:7e:9f:c7:fe:8c: d5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:15:2B:C8:CA:99:CF:F8:79:FC:C6:49:C9:10:FF:73:80:E6:48:AB X509v3 Authority Key Identifier: keyid:2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:55:7a:96:3c:6e:db:d4:79:a3:98:8a:45:3b:a7:00:3f:5e: 82:dd:b1:2f:3f:fb:ae:d1:44:15:d2:57:a1:df:88:f3:d6:82: d5:23:86:68:eb:e6:4b:9a:98:c6:f9:d7:1b:37:82:86:05:c0: 4f:90:fc:61:31:e4:5a:f3:4f:16:46:6d:6a:cd:97:7d:cd:7a: 23:d6:66:2d:2c:63:a3:5e:95:41:0e:82:84:4d:9a:81:5a:2c: af:32:5f:0c:ea:ce:8d:ef:87:1b:89:e4:65:72:61:25:7a:3a: 64:02:1f:3f:46:d1:d9:d1:a3:fd:89:d1:1c:44:46:50:70:df: 5e:e8:e4:11:41:bc:26:19:ab:b5:ee:c9:01:88:5b:eb:94:3b: 12:6e:36:a1:17:97:a2:40:f0:9f:16:73:ca:01:fe:36:b9:5b: 55:dd:bc:f5:0d:ef:b9:a3:50:65:be:83:45:87:d3:83:67:5a: 85:9e:c4:5b:ea:8b:5b:ce:78:02:4a:3e:37:5e:71:9d:e1:98: 39:cf:57:ad:0f:a2:13:53:e3:29:d8:70:75:23:78:c9:7c:fc: 34:0b:b6:9a:99:e3:0d:ed:76:08:77:66:d0:aa:b2:ab:31:db: 0e:b3:c7:86:42:3f:9e:7d:ca:7b:6c:ee:ec:ce:e6:72:c7:db: 1b:3c:02:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NjI4NTExMC8GA1UEBRMoMkUwMzdGMjIxQzlBOEQ1RkRDQzg4QzQzQ0E4QjI1RDQ0 MzZCQjAzOTAeFw0yNTEwMTkxMDE0MzZaFw0yNTEwMjYxMDE0MzZaMBgxFjAUBgNV BAMTDTY4ZjRiYTBkLTQ0ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDggOLUu4+hcn01ObJ/A4m9kkH+5B91bPhYs1kNg9d1gHd3pqT+XC37NRhPpKw7 rGOmoZy32uj9oMhtL2HX4xwWCHclbCLyaIDLfKs9lscI7YB3ciSdO/T0UGcKT7rj DOuPLe/rzC/k5WyY60/sTvHud+N6q7GR6yXttShuYx2OD6nsf272OaTYC/nsDf2e T4AOAtwjBk31DixhDRYDnoSCFyaWCMrY/4lDxJckTipBVayKQGXfhq4zLXiMmy2T Qm3vEEoX5IOovPq4QCfLDzYZIZ/X0ccoAPTBMiFYAirJOcALtArxdE5SW/SJuwNC o8ZyxCHZn2IADe1+n8f+jNWZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcRUryMqZ z/h5/MZJyRD/c4DmSKswHwYDVR0jBBgwFoAULgN/IhyajV/cyIxDyosl1ENrsDkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2Mjg1LzhDMjU4QjEyMDI3 QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZfY3lJeER5b3NsMUVOcnNE ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTGdOX0loeWFqVl9jeUl4RHlvc2wxRU5yc0RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 Mjg1LzhDMjU4QjEyMDI3QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZf Y3lJeER5b3NsMUVOcnNEay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA1VepY8btvUeaOYikU7pwA/XoLdsS8/+67RRBXSV6HfiPPWgtUjhmjr 5kuamMb51xs3goYFwE+Q/GEx5FrzTxZGbWrNl33NeiPWZi0sY6NelUEOgoRNmoFa LK8yXwzqzo3vhxuJ5GVyYSV6OmQCHz9G0dnRo/2J0RxERlBw317o5BFBvCYZq7Xu yQGIW+uUOxJuNqEXl6JA8J8Wc8oB/ja5W1XdvPUN77mjUGW+g0WH04NnWoWexFvq i1vOeAJKPjdecZ3hmDnPV60PohNT4ynYcHUjeMl8/DQLtpqZ4w3tdgh3ZtCqsqsx 2w6zx4ZCP559ynts7uzO5nLH2xs8Arw= -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:14 2025 by rpki-client