$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: PDHyNN3iBCvPjYV1dogVripTxOGOvO3ZBuRiMkCWnNw= Subject key identifier: EC:64:A9:D0:09:15:DC:31:9D:DE:69:23:D8:D8:F2:D6:1D:D2:E1:37 Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 0226 Signing time: Tue 01 Jul 2025 02:38:54 +0000 Manifest this update: Tue 01 Jul 2025 02:38:53 +0000 Manifest next update: Tue 08 Jul 2025 02:38:53 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: UeutIEOt9rGxtqfeJ/6dpZt4ROPmJxgN37ql3d7FPOo=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: hw3e3hTzsjowGN0Wxe4NUA2TCLqWrlYb3yFyRPFsovQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC, serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: Jul 1 02:38:53 2025 GMT Not After : Jul 8 02:38:53 2025 GMT Subject: CN=68634a3d-1356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bb:7c:f8:69:81:d1:7f:cd:a9:41:cd:5b:04: e2:e0:0b:d4:bf:3f:19:8e:5d:38:09:3e:78:d5:de: ec:a8:58:30:28:a7:04:0f:34:1c:67:86:5c:ea:15: e0:a6:57:b7:ec:cd:2e:0a:bd:14:e0:7d:8c:96:7e: 6b:6d:7c:11:55:eb:6b:41:f0:76:9f:5c:3b:01:88: aa:a7:8e:18:1b:3f:28:15:c8:8d:55:78:46:cd:86: 27:e2:ae:69:a1:56:ca:f6:c9:bb:7e:cc:6e:99:54: d6:4a:a0:43:b5:19:40:b3:fe:67:b0:a0:7b:ca:91: 4f:30:63:7a:27:fc:38:d0:25:48:a1:b8:d8:de:2c: e2:54:77:f6:0d:1a:04:a5:38:ae:36:d5:65:17:c0: c5:3f:a4:17:cd:07:12:91:f2:64:9c:24:89:d1:bd: 7f:3b:12:14:2c:ab:5d:ab:28:c0:d4:22:a2:93:b4: 5f:5b:79:fd:ba:6d:9d:08:c8:f3:69:19:1c:f3:bf: f7:33:84:3a:b5:eb:e9:09:b5:a9:85:e9:fd:ce:49: f9:84:fb:4b:04:1c:94:0f:23:08:89:3d:41:e9:ff: 67:62:52:3b:31:8f:4d:3f:d9:1c:ec:d2:e5:fc:5e: 5f:7f:b2:17:92:94:92:27:f8:d4:95:c0:da:fd:27: b0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:64:A9:D0:09:15:DC:31:9D:DE:69:23:D8:D8:F2:D6:1D:D2:E1:37 X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:49:d0:ee:ed:d7:f8:3a:ba:5a:26:51:49:83:be:9d:88:b7: 7a:0b:21:60:e1:02:28:2f:3c:c4:58:1f:94:08:47:de:81:f5: 26:4a:6f:c4:8e:8a:45:02:91:83:85:d4:ca:69:4e:43:0d:3e: 00:60:22:d5:60:a6:fb:26:d5:a0:c3:5b:97:6b:b1:41:68:c8: 2d:97:7c:b0:63:b6:ec:b7:22:e8:a2:e6:d2:f9:de:06:f9:25: e5:0a:d7:3f:ab:9b:70:23:14:5e:e4:5b:52:0c:ae:b6:79:43: 99:0c:6e:ac:6d:a5:42:3e:ce:eb:eb:0b:e0:f9:d7:d7:f0:6e: b7:a0:5e:7c:9c:66:79:5c:65:d6:43:04:df:e1:c4:e4:28:49: bd:45:7e:44:00:9d:93:d6:be:75:c9:fd:b0:cb:cd:d9:9a:60: 64:0b:cc:60:83:49:c0:f2:c9:54:40:78:08:c2:b3:c4:0f:b1: f9:21:c7:65:0a:71:d5:ce:5a:d8:ec:a1:06:7b:4f:cd:ef:25: 06:09:76:8c:ae:16:84:b6:24:77:e6:76:33:99:84:a3:31:f7: c5:58:4a:00:e5:f5:1e:f5:13:32:66:66:50:17:7b:7c:39:bb: fb:17:fb:7c:b3:27:82:b2:3e:d0:26:b5:0e:b8:03:89:5c:37: a8:9d:e9:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjUwNzAxMDIzODUzWhcNMjUwNzA4MDIzODUzWjAYMRYwFAYD VQQDEw02ODYzNGEzZC0xMzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Lt8+GmB0X/NqUHNWwTi4AvUvz8Zjl04CT541d7sqFgwKKcEDzQcZ4Zc6hXg ple37M0uCr0U4H2Mln5rbXwRVetrQfB2n1w7AYiqp44YGz8oFciNVXhGzYYn4q5p oVbK9sm7fsxumVTWSqBDtRlAs/5nsKB7ypFPMGN6J/w40CVIobjY3iziVHf2DRoE pTiuNtVlF8DFP6QXzQcSkfJknCSJ0b1/OxIULKtdqyjA1CKik7RfW3n9um2dCMjz aRkc87/3M4Q6tevpCbWphen9zkn5hPtLBByUDyMIiT1B6f9nYlI7MY9NP9kc7NLl /F5ff7IXkpSSJ/jUlcDa/SewXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxkqdAJ Fdwxnd5pI9jY8tYd0uE3MB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHSdDu7df4OrpaJlFJg76diLd6CyFg4QIoLzzEWB+UCEfegfUmSm/E jopFApGDhdTKaU5DDT4AYCLVYKb7JtWgw1uXa7FBaMgtl3ywY7bstyLooubS+d4G +SXlCtc/q5twIxRe5FtSDK62eUOZDG6sbaVCPs7r6wvg+dfX8G63oF58nGZ5XGXW QwTf4cTkKEm9RX5EAJ2T1r51yf2wy83ZmmBkC8xgg0nA8slUQHgIwrPED7H5Icdl CnHVzlrY7KEGe0/N7yUGCXaMrhaEtiR35nYzmYSjMffFWEoA5fUe9RMyZmZQF3t8 Obv7F/t8syeCsj7QJrUOuAOJXDeonena -----END CERTIFICATE-----Generated at Wed Jul 2 23:19:21 2025 by rpki-client