$ rpki-client -vvf rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft File: LgN_IhyajV_cyIxDyosl1ENrsDk.mft (raw, json) Hash identifier: 7V1t4nfVjwuKDIPxQvsjGcP0CIR1DzrB5IiuAAh6t8Y= Subject key identifier: D3:38:63:8D:5D:2F:E9:63:80:0F:E9:2A:18:D8:1F:50:A2:9B:6F:26 Authority key identifier: 2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 Certificate issuer: /CN=A9196285/serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft Manifest number: 52 Signing time: Sat 23 Aug 2025 07:30:09 +0000 Manifest this update: Sat 23 Aug 2025 07:30:08 +0000 Manifest next update: Sat 30 Aug 2025 07:30:08 +0000 Files and hashes: 1: LgN_IhyajV_cyIxDyosl1ENrsDk.crl (hash: YvLTHH/igRSpXgRLm/GJ7CWMw9lo9a/RrQgwgXPS0xY=) 2: D3E69766027B11F0ACFB0B53C4F9AE02.roa (hash: riovgsjK6T9Xk/OVypXbdv81H28kZxqc1J6kqB+epyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196285, serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Validity Not Before: Aug 23 07:30:08 2025 GMT Not After : Aug 30 07:30:08 2025 GMT Subject: CN=68a96e01-ad8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c3:06:e0:6c:66:d5:a4:e9:a8:4d:b4:af:19: 59:6c:9c:9c:ad:41:25:3b:a7:e2:51:fd:de:e9:c5: 0c:75:e2:7c:b1:03:b4:5b:d5:04:cd:5a:62:7e:49: c5:88:74:be:17:c3:8a:9b:44:93:00:77:5e:02:a8: e8:8a:c9:fd:06:e3:35:64:98:b9:9f:7d:c0:2b:60: 73:e3:6c:a5:07:c6:9b:dd:56:3c:53:91:f3:fb:5e: 11:bd:4a:5a:c4:05:94:aa:a6:4f:19:a1:8f:1d:fa: 3d:90:19:29:9d:c2:48:a8:ce:1c:68:f0:bb:a1:f7: c1:87:f6:56:d6:4b:da:bc:8b:43:fb:2d:fe:36:1c: 38:4b:e5:d6:df:40:0e:72:19:cc:60:96:9e:20:3c: 6c:ea:f3:65:b8:07:3c:cb:18:15:58:81:58:66:a4: d6:ff:34:2b:5a:07:b0:86:39:3d:9f:56:32:6a:16: 2a:8b:4b:f5:5b:cd:d2:68:03:4e:2e:74:47:ce:0d: 96:36:95:86:ed:b2:52:04:79:5d:5d:62:b6:26:d1: 98:eb:3c:1f:ac:3c:59:57:2f:dc:cb:ec:3b:61:2d: f4:fe:10:56:1b:df:ab:ad:6b:05:c0:94:ee:74:1c: 8e:6e:88:62:04:c5:23:47:60:31:39:d6:61:55:1b: 2b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:38:63:8D:5D:2F:E9:63:80:0F:E9:2A:18:D8:1F:50:A2:9B:6F:26 X509v3 Authority Key Identifier: keyid:2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:9e:c3:e7:41:0a:0f:fb:5f:4b:6c:01:b4:5e:74:ef:25:62: 97:11:80:6b:92:5c:25:cd:82:5e:26:d4:b7:a5:07:ba:15:86: 4d:3d:20:93:e1:63:43:a3:58:48:35:89:3d:26:10:a1:f3:b9: d6:36:ea:0d:1a:ce:ae:1a:2d:f0:33:59:77:27:d3:87:7a:20: bd:fb:3f:30:22:75:80:6d:20:24:4f:93:06:5f:61:30:39:1e: 89:f7:f8:c7:1c:6e:80:ca:3f:06:79:8f:9d:31:e4:37:c5:db: 9d:7b:8e:74:b4:d5:80:c3:9c:b5:74:68:0a:88:48:b6:93:1a: 08:44:21:44:1e:bb:88:f3:52:22:0f:98:d4:ba:00:59:7c:62: 7d:eb:b2:8a:fe:ba:b1:c0:28:9f:a5:59:8e:1d:d8:27:0b:38: 7b:4e:ec:d2:98:43:0a:d6:5f:70:d6:c6:5b:90:e5:8a:48:b2: 52:07:35:69:84:42:1a:2f:28:83:c4:d7:a7:5e:ee:fe:19:81: 54:94:50:a0:74:c7:5c:ad:80:ca:0e:89:45:ee:6b:80:46:9d: fa:b2:08:f3:af:fb:f4:85:df:62:94:ee:53:c3:aa:ea:50:27: 41:24:56:18:ca:f9:21:3d:cf:eb:ae:e0:a5:98:df:c8:df:e2: ae:b1:8a:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NjI4NTExMC8GA1UEBRMoMkUwMzdGMjIxQzlBOEQ1RkRDQzg4QzQzQ0E4QjI1RDQ0 MzZCQjAzOTAeFw0yNTA4MjMwNzMwMDhaFw0yNTA4MzAwNzMwMDhaMBgxFjAUBgNV BAMTDTY4YTk2ZTAxLWFkOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVwwbgbGbVpOmoTbSvGVlsnJytQSU7p+JR/d7pxQx14nyxA7Rb1QTNWmJ+ScWI dL4Xw4qbRJMAd14CqOiKyf0G4zVkmLmffcArYHPjbKUHxpvdVjxTkfP7XhG9SlrE BZSqpk8ZoY8d+j2QGSmdwkiozhxo8Luh98GH9lbWS9q8i0P7Lf42HDhL5dbfQA5y Gcxglp4gPGzq82W4BzzLGBVYgVhmpNb/NCtaB7CGOT2fVjJqFiqLS/VbzdJoA04u dEfODZY2lYbtslIEeV1dYrYm0ZjrPB+sPFlXL9zL7DthLfT+EFYb36utawXAlO50 HI5uiGIExSNHYDE51mFVGyvxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0zhjjV0v 6WOAD+kqGNgfUKKbbyYwHwYDVR0jBBgwFoAULgN/IhyajV/cyIxDyosl1ENrsDkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2Mjg1LzhDMjU4QjEyMDI3 QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZfY3lJeER5b3NsMUVOcnNE ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTGdOX0loeWFqVl9jeUl4RHlvc2wxRU5yc0RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 Mjg1LzhDMjU4QjEyMDI3QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZf Y3lJeER5b3NsMUVOcnNEay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAECew+dBCg/7X0tsAbRedO8lYpcRgGuSXCXNgl4m1LelB7oVhk09IJPh Y0OjWEg1iT0mEKHzudY26g0azq4aLfAzWXcn04d6IL37PzAidYBtICRPkwZfYTA5 Hon3+MccboDKPwZ5j50x5DfF2517jnS01YDDnLV0aAqISLaTGghEIUQeu4jzUiIP mNS6AFl8Yn3rsor+urHAKJ+lWY4d2CcLOHtO7NKYQwrWX3DWxluQ5YpIslIHNWmE QhovKIPE16de7v4ZgVSUUKB0x1ytgMoOiUXua4BGnfqyCPOv+/SF32KU7lPDqupQ J0EkVhjK+SE9z+uu4KWY38jf4q6xioA= -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:01 2025 by rpki-client