$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: +EIg9QY1FWOpXi6qGujMjvK5o0MokiQmg0Qjc50iCg8= Subject key identifier: 4B:1F:58:3D:20:EF:30:F8:8C:DC:B8:67:D8:69:80:E6:0F:1E:8A:F8 Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 34C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 34B9 Signing time: Mon 04 Aug 2025 14:51:58 +0000 Manifest this update: Mon 04 Aug 2025 14:51:58 +0000 Manifest next update: Mon 11 Aug 2025 14:51:58 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: 2Q7c7fcW+LTks4XUs73XRJm39ea/N1izGvivA1oZkAQ=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: 5UVYc1gM3pcN5MyLC+3d2F4QJ6pH7wnclugT6lLmPzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13509 (0x34c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: Aug 4 14:51:58 2025 GMT Not After : Aug 11 14:51:58 2025 GMT Subject: CN=6890c90e-4265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c5:57:4e:9e:ea:e3:ff:fd:79:6e:9f:71:de: b4:c1:d3:e5:ae:6d:d9:55:92:d0:81:8c:7b:92:f4: 15:83:7d:ca:fc:96:a4:ad:49:f8:3e:a7:f3:54:33: 6a:a7:91:89:29:6e:21:9a:30:c7:03:cb:34:7c:22: ce:c2:e9:77:d9:c2:2f:b0:33:37:fb:a9:ce:fe:95: a0:07:51:7c:aa:6f:33:6f:5f:50:b3:36:5e:72:75: 17:d1:8d:86:f2:ca:fe:83:19:76:9c:28:73:a1:f5: 97:79:34:a1:4d:2b:42:21:3b:09:57:35:16:1f:51: 88:0b:00:19:68:51:81:70:9d:de:96:79:b2:d7:4f: 34:a9:d5:36:74:99:17:51:6b:02:67:3c:90:17:d1: ef:25:22:04:68:50:2e:24:55:da:dc:45:74:73:db: 9c:e2:eb:d3:2c:6e:ee:dc:79:aa:8c:8c:c7:b0:7f: 7c:4a:bc:a6:97:35:38:e4:82:2b:dc:8b:c8:cf:d7: 44:4d:01:cd:d8:79:17:1a:50:de:af:f4:bd:0b:90: 19:c1:0c:de:07:e6:c4:b9:46:01:3a:e8:b1:38:56: 79:2f:bf:e4:73:03:51:2f:aa:be:0f:76:33:35:d0: 70:de:2e:61:b9:21:da:48:65:45:3c:40:52:b6:a2: 32:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1F:58:3D:20:EF:30:F8:8C:DC:B8:67:D8:69:80:E6:0F:1E:8A:F8 X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:aa:ba:58:ce:27:85:5e:51:a2:e7:32:f3:28:75:c4:92:12: f5:98:a1:2c:cd:76:df:46:35:0c:ed:e7:84:df:fd:5e:53:23: 72:48:7d:55:5d:92:1e:14:13:72:34:d2:5e:43:20:cb:2b:3c: 1b:79:7d:9b:65:57:6c:76:dd:50:fa:e8:00:72:d0:cb:55:67: 3b:d9:ea:ec:27:93:8b:01:5e:b9:67:46:c1:53:ad:fc:a2:be: 05:23:0d:46:f4:f9:f7:95:d1:cf:48:e9:f7:b6:ba:02:83:fe: 30:a4:ae:13:86:e6:27:02:19:53:e0:bd:a7:25:42:9c:31:da: d2:30:01:bc:59:ce:31:7c:c2:77:d3:37:94:84:98:b8:2e:b8: 89:2c:4e:3c:4c:1e:f8:78:a2:92:72:4d:49:ac:d8:d4:5b:a3: 57:2c:0c:3a:28:04:8e:2c:15:4c:8a:03:2b:59:0d:db:33:51: 43:46:a1:2e:35:1f:77:8c:72:d0:1d:85:2b:d1:15:0e:38:f6: 8e:e6:fe:69:79:1d:5b:af:7c:db:8c:67:0b:ea:8b:b8:65:37: 1b:0c:1d:19:a7:65:56:9e:47:81:1c:8b:12:c1:27:05:52:27: 56:68:6e:5d:ab:66:ff:60:4b:4f:cc:37:4d:45:a8:e8:ee:32: a5:d8:c1:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjUwODA0MTQ1MTU4WhcNMjUwODExMTQ1MTU4WjAYMRYwFAYD VQQDEw02ODkwYzkwZS00MjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk8VXTp7q4//9eW6fcd60wdPlrm3ZVZLQgYx7kvQVg33K/JakrUn4PqfzVDNq p5GJKW4hmjDHA8s0fCLOwul32cIvsDM3+6nO/pWgB1F8qm8zb19QszZecnUX0Y2G 8sr+gxl2nChzofWXeTShTStCITsJVzUWH1GICwAZaFGBcJ3elnmy1080qdU2dJkX UWsCZzyQF9HvJSIEaFAuJFXa3EV0c9uc4uvTLG7u3HmqjIzHsH98SrymlzU45IIr 3IvIz9dETQHN2HkXGlDer/S9C5AZwQzeB+bEuUYBOuixOFZ5L7/kcwNRL6q+D3Yz NdBw3i5huSHaSGVFPEBStqIyQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsfWD0g 7zD4jNy4Z9hpgOYPHor4MB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3qrpYzieFXlGi5zLzKHXEkhL1mKEszXbfRjUM7eeE3/1eUyNySH1V XZIeFBNyNNJeQyDLKzwbeX2bZVdsdt1Q+ugActDLVWc72ersJ5OLAV65Z0bBU638 or4FIw1G9Pn3ldHPSOn3troCg/4wpK4ThuYnAhlT4L2nJUKcMdrSMAG8Wc4xfMJ3 0zeUhJi4LriJLE48TB74eKKSck1JrNjUW6NXLAw6KASOLBVMigMrWQ3bM1FDRqEu NR93jHLQHYUr0RUOOPaO5v5peR1br3zbjGcL6ou4ZTcbDB0Zp2VWnkeBHIsSwScF UidWaG5dq2b/YEtPzDdNRajo7jKl2MFl -----END CERTIFICATE-----Generated at Wed Aug 6 00:34:48 2025 by rpki-client