$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: KTh4vH2nvmqfT6QH89MnAcDO+V27R0CmTJAP0iKTIpg= Subject key identifier: 3A:8C:43:8C:77:C2:F4:30:82:67:DC:32:FB:48:0C:2D:B1:2F:E8:09 Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 0241 Signing time: Sat 23 Aug 2025 02:06:08 +0000 Manifest this update: Sat 23 Aug 2025 02:06:08 +0000 Manifest next update: Sat 30 Aug 2025 02:06:08 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: vRcYW+rDP66S91LpsxfxXIWKy7cYCuzx0t5LwC7P6Mw=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: hw3e3hTzsjowGN0Wxe4NUA2TCLqWrlYb3yFyRPFsovQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC, serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: Aug 23 02:06:08 2025 GMT Not After : Aug 30 02:06:08 2025 GMT Subject: CN=68a92210-9ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:15:0e:5b:3d:9f:26:aa:6d:f3:45:6a:e6:ee: e1:38:29:b6:ab:5b:39:6b:6a:85:69:7f:65:84:74: 70:25:71:9b:a5:5e:7a:9b:73:14:97:48:67:ef:32: c1:bc:d1:1a:de:9b:fc:3c:40:fe:44:c8:6b:71:e2: 3e:2f:d9:33:38:8d:76:98:19:7b:d6:65:93:c4:ea: 82:9f:90:a2:c8:da:c6:79:e0:d9:36:e9:db:46:57: 19:eb:96:13:cf:88:b1:66:17:af:26:cc:25:87:bd: 69:a3:e0:3c:97:2c:a3:4e:c9:c7:dd:e3:d0:3a:91: dc:4d:99:06:ee:40:c3:fa:76:79:ea:1c:db:64:e4: c9:0f:56:18:e0:49:50:74:72:03:e8:dd:5a:00:ce: b7:4e:13:dd:b5:0e:7d:b0:3a:81:0c:71:d3:dc:57: 3e:2e:f2:87:20:1e:72:e8:b6:ce:30:c0:da:9f:9f: 4f:45:69:c8:8c:55:1e:7e:42:70:b9:3e:a1:b3:20: 54:e9:70:aa:35:3d:65:65:98:31:68:61:8f:db:59: 7f:fd:25:d4:7e:8c:f9:dc:d4:c5:e9:cd:27:e7:18: 32:1f:0e:a1:ac:96:93:5a:f9:53:52:19:50:85:18: d4:74:b5:72:89:16:ae:fc:18:12:46:25:c2:59:a8: fa:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8C:43:8C:77:C2:F4:30:82:67:DC:32:FB:48:0C:2D:B1:2F:E8:09 X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a4:33:42:f6:5f:b4:0e:24:b9:0f:cb:0c:7b:d8:0c:06:49: c6:b2:a5:28:9e:10:de:01:ad:52:f0:bf:a4:6b:f5:14:e1:8b: 02:72:db:79:82:4b:91:bb:43:eb:11:01:a1:2b:d3:ab:e1:c7: 56:ca:a6:46:84:56:55:c5:e6:31:13:a2:e5:7d:5c:49:5d:c9: 6a:43:fc:fa:de:3a:9a:3d:ad:27:6e:72:cf:be:bb:4d:55:79: 0a:f1:ae:ca:0e:9d:44:97:64:cf:39:40:85:af:b1:14:1a:ca: 61:55:0a:ad:c2:81:15:f6:a5:c4:86:77:ef:2b:65:4d:4b:39: 8a:a7:e2:96:d6:cb:94:5c:99:a1:b2:88:70:b5:a6:53:7a:d7: 3d:18:8b:f6:bc:43:d3:da:bb:1e:78:75:fb:5c:0a:b1:ed:96: 44:8a:57:f2:f8:cb:4b:55:98:2a:1e:f3:f3:22:1f:93:87:39: 5d:cf:01:9f:c9:76:0f:4e:10:b0:02:1e:f2:49:69:a5:cb:4b: 5c:78:fd:c3:68:ad:b6:6a:b7:96:95:ab:f1:34:27:f4:ca:7a: ac:66:8a:47:b0:bc:32:0e:b4:84:4a:37:70:34:10:75:69:e6: 97:ec:12:9c:54:61:12:67:ce:01:b8:f0:d8:f4:00:d0:ea:1e: 56:f1:ad:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjUwODIzMDIwNjA4WhcNMjUwODMwMDIwNjA4WjAYMRYwFAYD VQQDEw02OGE5MjIxMC05ZWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphUOWz2fJqpt80Vq5u7hOCm2q1s5a2qFaX9lhHRwJXGbpV56m3MUl0hn7zLB vNEa3pv8PED+RMhrceI+L9kzOI12mBl71mWTxOqCn5CiyNrGeeDZNunbRlcZ65YT z4ixZhevJswlh71po+A8lyyjTsnH3ePQOpHcTZkG7kDD+nZ56hzbZOTJD1YY4ElQ dHID6N1aAM63ThPdtQ59sDqBDHHT3Fc+LvKHIB5y6LbOMMDan59PRWnIjFUefkJw uT6hsyBU6XCqNT1lZZgxaGGP21l//SXUfoz53NTF6c0n5xgyHw6hrJaTWvlTUhlQ hRjUdLVyiRau/BgSRiXCWaj6awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqMQ4x3 wvQwgmfcMvtIDC2xL+gJMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKpDNC9l+0DiS5D8sMe9gMBknGsqUonhDeAa1S8L+ka/UU4YsCctt5 gkuRu0PrEQGhK9Or4cdWyqZGhFZVxeYxE6LlfVxJXclqQ/z63jqaPa0nbnLPvrtN VXkK8a7KDp1El2TPOUCFr7EUGsphVQqtwoEV9qXEhnfvK2VNSzmKp+KW1suUXJmh sohwtaZTetc9GIv2vEPT2rseeHX7XAqx7ZZEilfy+MtLVZgqHvPzIh+ThzldzwGf yXYPThCwAh7ySWmly0tceP3DaK22areWlavxNCf0ynqsZopHsLwyDrSESjdwNBB1 aeaX7BKcVGESZ84BuPDY9ADQ6h5W8a08 -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:02 2025 by rpki-client