$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: bwgc/2Wv5b0QS+ckPmjW9kqOA8p5iK+zH2O15TCwp60= Subject key identifier: 1D:00:71:CD:18:D2:6F:7B:D7:3D:E1:45:AC:91:A4:98:47:DD:59:CA Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 020E Signing time: Tue 13 May 2025 01:48:44 +0000 Manifest this update: Tue 13 May 2025 01:48:44 +0000 Manifest next update: Tue 20 May 2025 01:48:43 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: zMEee8ReK6v+MlH+Z9/+ZK0MVxSb40kKFz2/L5UZOv4=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: hw3e3hTzsjowGN0Wxe4NUA2TCLqWrlYb3yFyRPFsovQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC, serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: May 13 01:48:44 2025 GMT Not After : May 20 01:48:43 2025 GMT Subject: CN=6822a4fc-12cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9f:98:5b:65:83:e1:e4:4f:b3:0b:c7:76:13: e3:b6:64:0d:54:b1:5f:32:a0:e2:93:79:45:d6:d8: 1a:93:0e:d8:50:8c:8f:39:c0:d9:48:27:18:9c:15: d5:90:54:6f:25:5c:df:b5:53:df:39:3c:36:fe:a5: 2e:ba:a8:ad:ea:be:84:72:6b:7f:a4:fe:95:72:84: b9:7f:73:b7:42:36:b3:d4:9f:6f:e7:48:d5:14:eb: 0d:98:3c:f4:6e:eb:95:03:74:1e:13:d9:d7:53:0b: d0:8b:af:e9:39:bc:67:b0:fc:2f:7e:7f:cf:9b:35: 8b:d7:ee:68:da:7e:fc:aa:72:89:88:55:1e:9f:de: dd:6d:bc:35:c4:9b:e9:90:0d:74:58:e2:96:0b:82: 93:af:82:8e:2c:91:08:4a:00:eb:1c:d6:e2:53:f3: be:c2:13:07:10:44:b9:5e:85:ba:19:34:46:a4:f2: 16:47:ee:71:b0:af:37:86:d2:75:5d:de:eb:cc:01: 99:70:f1:ec:83:d0:f1:72:90:5d:93:6e:12:0a:69: 8d:40:9c:c5:c5:d5:e2:81:ab:f2:c5:69:3e:30:f0: fe:4b:19:3a:16:21:5b:b5:0c:f3:bc:10:e1:0f:0c: b2:41:6a:4e:c6:c0:96:01:5c:0e:20:48:2f:f6:67: f3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:00:71:CD:18:D2:6F:7B:D7:3D:E1:45:AC:91:A4:98:47:DD:59:CA X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a0:d1:aa:32:59:c9:77:e9:d6:bb:10:75:6c:18:db:ca:b9: 68:ec:65:7b:6b:b4:b0:f4:22:70:7a:55:60:01:cd:58:af:35: 4c:4e:9b:f8:30:58:fc:f1:b7:f2:30:0a:f8:7e:97:18:d7:c4: 32:6c:e0:fb:fe:b4:66:1e:3b:37:c4:41:62:ba:8e:8f:8d:ff: c3:31:7a:f7:c9:da:fe:f1:fa:55:f3:a3:ef:45:b7:03:ea:f2: 20:7c:13:ca:15:78:62:d7:17:da:d9:ba:73:83:3a:b1:ad:ff: 7f:61:a2:14:47:c7:58:6c:0b:e4:f3:86:94:0c:d6:76:84:63: 77:d9:13:02:6f:4e:64:02:3d:dc:be:46:92:5b:7c:fb:3e:79: 1a:30:68:41:31:54:05:b5:e3:6c:68:ef:7d:7a:3f:5b:ab:5d: 64:94:41:37:80:3b:8e:d9:32:e7:9f:68:18:52:30:f4:19:c8: e7:1d:c2:ce:4f:d6:bf:34:fb:e5:d3:9e:a6:87:60:d5:12:a8: 72:4b:4b:03:20:69:a2:65:73:c1:08:fa:be:21:70:bb:b5:98: 5d:19:76:09:a8:ee:e7:b4:6b:29:46:19:66:8b:09:18:d1:a7: 6f:ba:7a:b8:5f:fa:83:b9:b7:3a:b2:01:ad:03:fd:fa:f1:16: 59:0e:98:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjUwNTEzMDE0ODQ0WhcNMjUwNTIwMDE0ODQzWjAYMRYwFAYD VQQDEw02ODIyYTRmYy0xMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZ+YW2WD4eRPswvHdhPjtmQNVLFfMqDik3lF1tgakw7YUIyPOcDZSCcYnBXV kFRvJVzftVPfOTw2/qUuuqit6r6Ecmt/pP6VcoS5f3O3Qjaz1J9v50jVFOsNmDz0 buuVA3QeE9nXUwvQi6/pObxnsPwvfn/PmzWL1+5o2n78qnKJiFUen97dbbw1xJvp kA10WOKWC4KTr4KOLJEISgDrHNbiU/O+whMHEES5XoW6GTRGpPIWR+5xsK83htJ1 Xd7rzAGZcPHsg9DxcpBdk24SCmmNQJzFxdXigavyxWk+MPD+Sxk6FiFbtQzzvBDh DwyyQWpOxsCWAVwOIEgv9mfznQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0Acc0Y 0m971z3hRayRpJhH3VnKMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBboNGqMlnJd+nWuxB1bBjbyrlo7GV7a7Sw9CJwelVgAc1YrzVMTpv4 MFj88bfyMAr4fpcY18QybOD7/rRmHjs3xEFiuo6Pjf/DMXr3ydr+8fpV86PvRbcD 6vIgfBPKFXhi1xfa2bpzgzqxrf9/YaIUR8dYbAvk84aUDNZ2hGN32RMCb05kAj3c vkaSW3z7PnkaMGhBMVQFteNsaO99ej9bq11klEE3gDuO2TLnn2gYUjD0GcjnHcLO T9a/NPvl056mh2DVEqhyS0sDIGmiZXPBCPq+IXC7tZhdGXYJqO7ntGspRhlmiwkY 0advunq4X/qDubc6sgGtA/368RZZDpgA -----END CERTIFICATE-----Generated at Wed May 14 04:33:52 2025 by rpki-client