$ rpki-client -vvf rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft File: LgN_IhyajV_cyIxDyosl1ENrsDk.mft (raw, json) Hash identifier: kvVh94xHahDIsBZ78iXXJJE9ucdigZbc4jCxCgnNMEA= Subject key identifier: CE:7B:3D:B1:C5:D4:1D:31:80:B3:66:31:32:DE:72:96:BA:91:55:4D Authority key identifier: 2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 Certificate issuer: /CN=A9196285/serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft Manifest number: 37 Signing time: Tue 01 Jul 2025 08:21:49 +0000 Manifest this update: Tue 01 Jul 2025 08:21:49 +0000 Manifest next update: Tue 08 Jul 2025 08:21:48 +0000 Files and hashes: 1: LgN_IhyajV_cyIxDyosl1ENrsDk.crl (hash: Ma5Y31ltouQ7V5AITCi1Y7Yun5xcPTWMzydQ0+j6BY0=) 2: D3E69766027B11F0ACFB0B53C4F9AE02.roa (hash: riovgsjK6T9Xk/OVypXbdv81H28kZxqc1J6kqB+epyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196285, serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Validity Not Before: Jul 1 08:21:49 2025 GMT Not After : Jul 8 08:21:48 2025 GMT Subject: CN=68639a9d-14e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d2:26:63:ed:40:ae:86:7a:b7:68:84:a4:2a: 13:52:c4:61:4e:e7:ab:9f:06:01:20:e2:80:e8:ae: bb:f5:01:c0:0d:62:4b:c3:a0:6e:1e:84:d7:57:ad: 94:97:4d:07:29:c2:dd:91:e9:19:f6:eb:5d:a8:6d: df:1d:44:1c:cf:77:91:cb:87:0f:cd:e7:55:ae:1e: ad:ac:aa:99:5f:ed:7f:36:e3:58:5f:9a:b2:e0:86: 8f:66:4c:a3:10:4e:fc:fa:31:4f:6f:64:be:20:90: 29:d5:bc:de:c1:8d:d2:f1:0f:bd:ec:4f:3f:72:b3: 00:1d:61:4f:cf:6a:63:c0:5f:b4:6b:e3:e4:22:90: 9e:9f:47:20:1d:85:a2:55:0d:7f:22:aa:43:27:c1: 1f:e8:49:f2:14:19:dd:bf:c2:c3:9e:84:a7:ed:fa: 65:d5:82:34:4d:c8:a8:18:d0:c7:c9:03:b1:aa:c4: 9a:74:83:10:1e:56:d4:7e:b0:d7:db:c1:c8:13:4c: 53:c5:d9:8b:f7:a9:b7:fe:ca:1a:24:61:89:08:83: f4:b5:39:d3:a0:54:d9:ae:03:b1:76:9a:a3:9e:c3: 2f:69:3c:e1:62:13:cf:2e:3e:4d:e6:be:fc:6b:57: f2:bc:92:7a:73:55:8c:8d:cb:d1:e0:e7:0b:00:dd: f4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7B:3D:B1:C5:D4:1D:31:80:B3:66:31:32:DE:72:96:BA:91:55:4D X509v3 Authority Key Identifier: keyid:2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:de:80:39:b4:31:f0:9f:e1:78:3f:ca:94:da:00:ab:be:47: 02:94:da:fe:aa:ff:27:c8:a6:a6:a0:b3:1e:dd:1c:7c:11:ad: 80:e5:f0:4e:92:f9:ea:26:3a:6f:aa:0e:60:eb:f0:31:c7:dc: 44:b1:ae:35:46:b2:e6:59:f1:29:cd:97:b9:96:8b:a2:ec:96: 8d:9d:50:35:3f:34:bb:71:25:37:6d:f0:a5:63:0e:c1:38:77: b0:56:20:a0:ec:b6:73:bb:9b:f7:78:e7:90:67:88:77:1a:15: 34:ea:e5:42:5a:f1:4f:0a:7e:33:2b:04:16:5d:4c:d0:94:5c: f6:88:9d:d4:25:38:60:a8:a4:9d:ce:40:2a:4e:ef:c2:d7:9b: d1:4f:98:6e:44:98:fb:97:b4:ee:96:bf:5d:ce:9b:9c:fe:22: d1:c5:bc:5f:c3:3c:72:dc:81:7e:4c:7b:18:42:a1:c1:7d:05: 75:2d:b6:22:00:74:aa:87:c0:24:85:8f:11:7a:49:02:ce:e9: c7:40:74:d4:de:e6:80:b4:2e:fd:d2:bd:28:9e:de:88:07:5b: bd:a9:6b:ba:b9:9f:1a:cf:4d:e9:19:ae:ee:34:1f:a5:c0:bf: 85:15:dc:aa:ba:8e:99:44:9f:53:04:f1:83:d4:ac:83:b7:22: 72:3e:04:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NjI4NTExMC8GA1UEBRMoMkUwMzdGMjIxQzlBOEQ1RkRDQzg4QzQzQ0E4QjI1RDQ0 MzZCQjAzOTAeFw0yNTA3MDEwODIxNDlaFw0yNTA3MDgwODIxNDhaMBgxFjAUBgNV BAMTDTY4NjM5YTlkLTE0ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl0iZj7UCuhnq3aISkKhNSxGFO56ufBgEg4oDorrv1AcANYkvDoG4ehNdXrZSX TQcpwt2R6Rn2612obd8dRBzPd5HLhw/N51WuHq2sqplf7X8241hfmrLgho9mTKMQ Tvz6MU9vZL4gkCnVvN7BjdLxD73sTz9yswAdYU/PamPAX7Rr4+QikJ6fRyAdhaJV DX8iqkMnwR/oSfIUGd2/wsOehKft+mXVgjRNyKgY0MfJA7GqxJp0gxAeVtR+sNfb wcgTTFPF2Yv3qbf+yhokYYkIg/S1OdOgVNmuA7F2mqOewy9pPOFiE88uPk3mvvxr V/K8knpzVYyNy9Hg5wsA3fQXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzns9scXU HTGAs2YxMt5ylrqRVU0wHwYDVR0jBBgwFoAULgN/IhyajV/cyIxDyosl1ENrsDkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2Mjg1LzhDMjU4QjEyMDI3 QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZfY3lJeER5b3NsMUVOcnNE ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTGdOX0loeWFqVl9jeUl4RHlvc2wxRU5yc0RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 Mjg1LzhDMjU4QjEyMDI3QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZf Y3lJeER5b3NsMUVOcnNEay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABzegDm0MfCf4Xg/ypTaAKu+RwKU2v6q/yfIpqagsx7dHHwRrYDl8E6S +eomOm+qDmDr8DHH3ESxrjVGsuZZ8SnNl7mWi6Lslo2dUDU/NLtxJTdt8KVjDsE4 d7BWIKDstnO7m/d455BniHcaFTTq5UJa8U8KfjMrBBZdTNCUXPaIndQlOGCopJ3O QCpO78LXm9FPmG5EmPuXtO6Wv13Om5z+ItHFvF/DPHLcgX5MexhCocF9BXUttiIA dKqHwCSFjxF6SQLO6cdAdNTe5oC0Lv3SvSie3ogHW72pa7q5nxrPTekZru40H6XA v4UV3Kq6jplEn1ME8YPUrIO3InI+BMM= -----END CERTIFICATE-----Generated at Thu Jul 3 02:06:48 2025 by rpki-client