$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: PDdDBgHL/A+uRRqUihgjCui+Px+nhfai5dNJU50ajxs= Subject key identifier: FF:17:F3:1A:FB:58:9C:00:1E:07:1B:4B:F5:02:8B:93:19:E1:F4:A1 Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 0205 Signing time: Fri 25 Apr 2025 01:48:35 +0000 Manifest this update: Fri 25 Apr 2025 01:48:34 +0000 Manifest next update: Fri 02 May 2025 01:48:34 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: Gyf4m9y+J5zueEjnLlB2ZR4KVomLTnKknSCxNJfgTWk=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: hw3e3hTzsjowGN0Wxe4NUA2TCLqWrlYb3yFyRPFsovQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC, serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: Apr 25 01:48:34 2025 GMT Not After : May 2 01:48:34 2025 GMT Subject: CN=680ae9f2-515b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:75:3d:24:1a:21:a0:f3:ca:f5:46:a0:3e:b1: 96:5a:b4:07:dc:e9:e9:8a:58:1b:ad:9f:3f:c5:e4: 33:40:49:6f:30:37:cd:fc:1e:9d:48:6d:d8:f3:ff: 60:33:2f:f2:3d:6e:4a:4b:4e:16:d7:07:fb:ba:a4: 7b:38:01:6e:9b:19:72:a4:c6:5d:b3:44:13:35:84: a1:95:5e:3a:80:c8:29:42:20:2d:10:a0:7f:2f:fe: 5b:73:a7:37:c8:73:91:4b:16:9e:70:7f:f7:c1:c1: 0a:d2:b2:53:68:54:7d:e7:58:d8:e2:bc:a6:c2:0f: 99:b2:fa:b4:6b:ff:98:fc:67:77:33:e9:7e:d7:e8: b3:7c:07:a9:d3:e3:e4:2d:4b:43:55:7f:65:9b:11: 2c:ea:fb:0b:74:c6:54:79:12:89:92:d1:3d:06:9c: f9:8b:05:cf:e1:4c:20:f2:c3:7a:a1:4c:e7:2b:f5: be:8d:58:4c:39:a9:72:48:78:25:78:c8:84:78:78: cc:46:c8:3c:ce:64:44:ce:f1:67:e3:6b:ea:01:64: 88:f7:19:9f:70:26:c4:21:43:ca:e1:1f:88:c4:d6: b9:ed:63:26:be:0c:e8:47:f9:30:7f:56:2f:cf:41: 37:bc:f9:22:16:98:96:2c:b2:fc:23:8a:3e:32:7e: d1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:17:F3:1A:FB:58:9C:00:1E:07:1B:4B:F5:02:8B:93:19:E1:F4:A1 X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:86:4c:e2:75:21:05:39:16:6f:da:12:35:11:f7:fd:49:7a: 0a:96:1e:4e:0c:a1:5a:1a:23:1d:01:83:6c:6e:ab:f1:b8:55: 64:23:7f:2e:45:8e:92:00:dd:6c:00:21:db:e4:4c:bc:7e:82: 80:ed:e5:5e:a4:d2:3d:c6:e1:88:8a:58:a9:81:30:8b:12:5a: ca:37:f7:05:84:96:0a:34:72:81:17:c8:59:13:e2:e4:0e:c3: 9a:e4:3c:a3:9a:7b:97:4c:6f:6c:bf:f7:04:7b:08:81:83:d9: 62:a4:e9:e9:d1:3f:57:7a:f4:d2:54:b2:74:70:6f:20:48:ae: 4a:08:f2:b2:05:e7:f2:f5:44:8d:53:1d:74:b7:5b:8f:ec:76: e8:23:83:a7:63:36:c8:d2:b0:ff:7d:fd:26:04:f0:b7:7c:3f: aa:90:55:30:5e:85:1b:7e:1a:30:90:6c:c1:fa:18:2f:0f:e6: d5:20:a9:1f:31:e6:83:24:a6:6c:5a:2a:3e:5e:44:7e:bb:2c: 3f:62:e6:30:19:75:6d:b1:46:29:70:47:10:bc:11:46:d9:fe: 7d:3d:e8:56:b7:0d:e4:a3:8f:99:55:3f:d6:b2:57:2a:98:17: fd:4b:e6:cd:10:5c:f6:1f:d4:db:a8:01:9d:85:12:35:ab:d8: 07:99:4e:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjUwNDI1MDE0ODM0WhcNMjUwNTAyMDE0ODM0WjAYMRYwFAYD VQQDEw02ODBhZTlmMi01MTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHU9JBohoPPK9UagPrGWWrQH3OnpilgbrZ8/xeQzQElvMDfN/B6dSG3Y8/9g My/yPW5KS04W1wf7uqR7OAFumxlypMZds0QTNYShlV46gMgpQiAtEKB/L/5bc6c3 yHORSxaecH/3wcEK0rJTaFR951jY4rymwg+Zsvq0a/+Y/Gd3M+l+1+izfAep0+Pk LUtDVX9lmxEs6vsLdMZUeRKJktE9Bpz5iwXP4Uwg8sN6oUznK/W+jVhMOalySHgl eMiEeHjMRsg8zmREzvFn42vqAWSI9xmfcCbEIUPK4R+IxNa57WMmvgzoR/kwf1Yv z0E3vPkiFpiWLLL8I4o+Mn7RuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8X8xr7 WJwAHgcbS/UCi5MZ4fShMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHhkzidSEFORZv2hI1Eff9SXoKlh5ODKFaGiMdAYNsbqvxuFVkI38u RY6SAN1sACHb5Ey8foKA7eVepNI9xuGIilipgTCLElrKN/cFhJYKNHKBF8hZE+Lk DsOa5DyjmnuXTG9sv/cEewiBg9lipOnp0T9XevTSVLJ0cG8gSK5KCPKyBefy9USN Ux10t1uP7HboI4OnYzbI0rD/ff0mBPC3fD+qkFUwXoUbfhowkGzB+hgvD+bVIKkf MeaDJKZsWio+XkR+uyw/YuYwGXVtsUYpcEcQvBFG2f59PehWtw3ko4+ZVT/Wslcq mBf9S+bNEFz2H9TbqAGdhRI1q9gHmU4/ -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:35 2025 by rpki-client