$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: XbcMsykHEi0gMXoybJgBvfcnpycmDEX0+IhMrcN8zEo= Subject key identifier: 39:F3:56:DC:58:6D:01:EF:FD:E4:9D:15:53:80:92:D7:7C:59:63:01 Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 021D Signing time: Fri 13 Jun 2025 01:27:48 +0000 Manifest this update: Fri 13 Jun 2025 01:27:47 +0000 Manifest next update: Fri 20 Jun 2025 01:27:47 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: mWa617l99lTt8GXZr7FHd3aRGh0rMjWqDdRYF3B6crY=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: hw3e3hTzsjowGN0Wxe4NUA2TCLqWrlYb3yFyRPFsovQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC, serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: Jun 13 01:27:47 2025 GMT Not After : Jun 20 01:27:47 2025 GMT Subject: CN=684b7e94-9b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2e:f8:70:4d:99:ed:eb:8e:db:f1:17:80:b5: 96:d9:03:16:b0:88:49:44:fc:29:55:d0:92:d8:7f: 6d:e9:e0:6a:19:a3:8e:ca:93:c7:0b:d5:bc:ce:52: 76:17:df:7b:e7:6a:17:7c:ef:66:12:36:3f:d2:f3: 2d:7e:50:8e:ce:02:19:b7:8d:1f:fd:54:82:01:b1: 32:c8:5b:c2:5c:51:5b:a4:e1:63:ee:8e:10:c0:49: ff:00:2b:86:6c:16:10:f1:b0:7a:c7:45:3e:c8:1e: 23:6a:d4:e4:84:c2:b5:ff:d6:15:ee:e3:95:ae:c8: ad:35:14:20:bb:a6:6a:85:4b:7b:0e:68:20:e2:8f: b8:cc:20:6a:ba:51:cb:d8:fc:1e:3f:25:60:e0:d3: b8:c5:f5:33:9d:6f:e5:ce:c0:3d:26:03:f4:91:df: 65:6b:a2:52:13:ef:4b:2b:81:a5:96:97:f5:b1:7c: ea:c2:46:3c:d6:e9:e1:eb:ba:4d:33:5a:13:45:62: ad:c4:b1:13:02:a2:6c:54:af:a1:48:8e:c1:28:26: 63:42:2f:9d:aa:95:2e:37:12:9a:6b:1b:d7:0c:95: 2f:6c:6c:83:bd:1d:77:fb:5e:e3:f1:a1:a3:25:c1: 60:d9:2b:08:c8:aa:75:c2:a9:3e:44:ce:57:c2:c1: ba:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F3:56:DC:58:6D:01:EF:FD:E4:9D:15:53:80:92:D7:7C:59:63:01 X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:73:f0:78:6c:87:36:cc:a4:44:6c:0f:66:32:44:3c:5b:b2: 54:c8:62:81:52:ce:b6:67:5e:d3:88:9a:91:26:e5:90:6f:ba: 64:d9:a4:74:71:87:94:c1:bd:1f:d7:8e:fc:f4:81:fd:a2:ca: a1:1d:51:07:ba:b0:23:82:29:1f:60:de:3d:96:e4:86:d8:10: b5:a9:c1:6b:df:5a:d9:39:d6:19:08:82:ed:d3:45:f6:97:dc: c8:11:68:22:72:82:2e:e8:d7:44:5b:9e:f8:07:08:44:ea:f1: ed:1f:5e:99:84:5e:52:35:3a:97:98:7d:fe:0d:80:ea:a0:1d: f5:cb:d4:ac:de:ec:ac:ab:52:26:1d:7a:e3:b3:0d:ae:4e:d9: 91:10:db:ab:85:cf:4c:1d:b2:13:de:be:07:d2:5b:07:b7:88: ee:c5:0b:ac:fe:1b:63:04:0a:fe:c1:be:51:7d:31:31:c9:8f: 52:d7:fa:74:55:64:b4:8d:0f:6d:d9:c6:95:34:7f:49:6e:8d: bb:6f:65:4b:d2:af:73:fa:0f:64:50:29:a0:55:97:a9:c5:e2: 12:51:0a:b2:21:3b:dc:f9:ee:44:93:51:08:3a:12:01:be:a6: dc:c7:c7:d1:98:ca:90:3f:70:c4:8b:89:88:2f:14:bc:0d:09: 6b:ad:8c:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjUwNjEzMDEyNzQ3WhcNMjUwNjIwMDEyNzQ3WjAYMRYwFAYD VQQDEw02ODRiN2U5NC05YjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC74cE2Z7euO2/EXgLWW2QMWsIhJRPwpVdCS2H9t6eBqGaOOypPHC9W8zlJ2 F99752oXfO9mEjY/0vMtflCOzgIZt40f/VSCAbEyyFvCXFFbpOFj7o4QwEn/ACuG bBYQ8bB6x0U+yB4jatTkhMK1/9YV7uOVrsitNRQgu6ZqhUt7Dmgg4o+4zCBqulHL 2PwePyVg4NO4xfUznW/lzsA9JgP0kd9la6JSE+9LK4Gllpf1sXzqwkY81unh67pN M1oTRWKtxLETAqJsVK+hSI7BKCZjQi+dqpUuNxKaaxvXDJUvbGyDvR13+17j8aGj JcFg2SsIyKp1wqk+RM5XwsG6vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnzVtxY bQHv/eSdFVOAktd8WWMBMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3c/B4bIc2zKREbA9mMkQ8W7JUyGKBUs62Z17TiJqRJuWQb7pk2aR0 cYeUwb0f14789IH9osqhHVEHurAjgikfYN49luSG2BC1qcFr31rZOdYZCILt00X2 l9zIEWgicoIu6NdEW574BwhE6vHtH16ZhF5SNTqXmH3+DYDqoB31y9Ss3uysq1Im HXrjsw2uTtmRENurhc9MHbIT3r4H0lsHt4juxQus/htjBAr+wb5RfTExyY9S1/p0 VWS0jQ9t2caVNH9Jbo27b2VL0q9z+g9kUCmgVZepxeISUQqyITvc+e5Ek1EIOhIB vqbcx8fRmMqQP3DEi4mILxS8DQlrrYwl -----END CERTIFICATE-----Generated at Sat Jun 14 19:17:26 2025 by rpki-client