$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: nkPPwfCayx0AbqJiEv8ugLO3uMt9wDgdlGcBzmu5uD4= Subject key identifier: 7E:EA:D8:72:8C:0A:C0:D6:4A:C3:BA:00:BB:E7:F6:D0:2E:06:3E:AD Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 023A Signing time: Sat 09 Aug 2025 02:26:07 +0000 Manifest this update: Sat 09 Aug 2025 02:26:07 +0000 Manifest next update: Sat 16 Aug 2025 02:26:07 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: viDnkujfM+r8mQ49CoSdGdOVdKCTtpMQ2emQjsSERto=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: hw3e3hTzsjowGN0Wxe4NUA2TCLqWrlYb3yFyRPFsovQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC, serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: Aug 9 02:26:07 2025 GMT Not After : Aug 16 02:26:07 2025 GMT Subject: CN=6896b1bf-3835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ee:97:4a:a0:ad:c1:5c:15:d2:31:28:9b:9a: 14:47:fb:35:35:aa:e6:d2:0e:ef:42:fe:72:e3:f9: 7f:fb:28:59:3b:af:0b:00:8a:ba:44:2f:d5:41:90: e6:34:61:4e:c5:29:de:10:ea:67:5b:9c:20:02:8d: 10:d4:8e:4d:22:cd:f7:93:0e:08:9e:f4:3a:d5:34: e5:6d:9b:85:e2:c6:0f:a6:f3:46:07:90:62:cb:a2: d5:a6:bd:ba:dd:0a:96:36:9e:a4:70:49:01:d1:23: 83:75:ce:21:f3:5f:fb:af:24:3b:52:88:61:f9:18: 89:85:6b:87:20:1a:2f:9f:dc:e7:b5:f5:15:d6:8c: eb:8c:9c:1c:f4:4f:96:da:9d:6c:6b:35:18:94:53: aa:9b:1c:0e:b0:df:ee:c5:14:7e:d4:86:9c:8e:28: 3b:fa:a5:84:19:a2:bd:95:66:0d:a8:40:db:0d:30: d0:bf:d4:12:67:3a:90:89:0f:20:33:8b:1e:ae:89: 57:6f:91:96:d9:01:13:46:87:c2:58:07:3f:40:b9: 55:55:a5:4c:66:2d:10:0f:75:fa:69:b9:5c:87:7b: 8e:29:ab:9f:8b:cd:a0:15:ea:03:1a:6b:3c:28:6f: b9:1f:19:77:34:fb:bc:0d:89:f5:11:95:4a:98:3d: 17:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EA:D8:72:8C:0A:C0:D6:4A:C3:BA:00:BB:E7:F6:D0:2E:06:3E:AD X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:d5:90:8a:b9:a7:2c:9e:fb:f1:a9:6b:c4:f0:1a:84:ab:f0: 5c:b3:e6:72:eb:3f:c9:e5:40:30:21:2c:b1:ee:4a:2a:ea:e7: 5b:86:05:73:b0:ba:ff:d1:cd:76:c9:ab:cd:1e:1c:ea:f4:8d: ab:a8:ce:86:de:85:fd:e8:e9:b2:4b:92:af:04:68:4e:d8:88: 63:75:3f:70:e4:85:88:4a:a8:06:24:e8:03:e9:ec:9d:60:0b: 5a:86:f4:4d:1f:f8:f8:d0:b0:c9:13:46:c9:12:58:6c:99:e7: 85:36:f0:a7:de:ef:bf:c9:67:b9:63:3e:46:30:ff:d7:35:ed: dc:f9:d5:41:fb:b9:6b:fe:62:96:18:f8:44:ed:c8:67:87:30: 36:44:44:ca:b2:f3:46:1c:8b:e8:f4:87:86:de:3d:8d:25:a8: fe:1b:38:6c:31:c5:96:c6:f8:d3:09:22:22:31:35:7b:e1:86: 75:26:26:ea:7c:68:7e:3e:1c:ca:d3:0c:4f:03:df:2c:1d:36: 8d:3f:6a:0f:16:bd:e3:19:31:13:db:6f:46:0c:a6:e4:37:d0: cd:c1:c9:6a:cc:23:cd:6c:a6:a4:11:73:99:f2:b2:9b:32:c1: 97:ee:ac:09:b4:33:5e:09:2c:6c:21:e8:67:79:3f:88:a2:d8: 99:0e:18:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjUwODA5MDIyNjA3WhcNMjUwODE2MDIyNjA3WjAYMRYwFAYD VQQDEw02ODk2YjFiZi0zODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+6XSqCtwVwV0jEom5oUR/s1Narm0g7vQv5y4/l/+yhZO68LAIq6RC/VQZDm NGFOxSneEOpnW5wgAo0Q1I5NIs33kw4InvQ61TTlbZuF4sYPpvNGB5Biy6LVpr26 3QqWNp6kcEkB0SODdc4h81/7ryQ7Uohh+RiJhWuHIBovn9zntfUV1ozrjJwc9E+W 2p1sazUYlFOqmxwOsN/uxRR+1Iacjig7+qWEGaK9lWYNqEDbDTDQv9QSZzqQiQ8g M4serolXb5GW2QETRofCWAc/QLlVVaVMZi0QD3X6ablch3uOKaufi82gFeoDGms8 KG+5Hxl3NPu8DYn1EZVKmD0XCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7q2HKM CsDWSsO6ALvn9tAuBj6tMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf1ZCKuacsnvvxqWvE8BqEq/Bcs+Zy6z/J5UAwISyx7koq6udbhgVz sLr/0c12yavNHhzq9I2rqM6G3oX96OmyS5KvBGhO2IhjdT9w5IWISqgGJOgD6eyd YAtahvRNH/j40LDJE0bJElhsmeeFNvCn3u+/yWe5Yz5GMP/XNe3c+dVB+7lr/mKW GPhE7chnhzA2RETKsvNGHIvo9IeG3j2NJaj+GzhsMcWWxvjTCSIiMTV74YZ1Jibq fGh+PhzK0wxPA98sHTaNP2oPFr3jGTET229GDKbkN9DNwclqzCPNbKakEXOZ8rKb MsGX7qwJtDNeCSxsIehneT+IotiZDhih -----END CERTIFICATE-----Generated at Sun Aug 10 13:59:18 2025 by rpki-client