$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: bsdVf3PxfGwDjUSddrq+h8YGyhTkvM5X6zqAOQ1knw8= Subject key identifier: B6:44:C0:D9:A9:0F:B7:76:6E:0E:9F:14:AD:4A:34:6B:EB:F6:D0:7B Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 3491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 3485 Signing time: Thu 24 Apr 2025 14:49:49 +0000 Manifest this update: Thu 24 Apr 2025 14:49:49 +0000 Manifest next update: Thu 01 May 2025 14:49:49 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: ooOV6y1lm61b+djw6hPjua8jo9omdG4Y1J0TStvd9NM=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: 5UVYc1gM3pcN5MyLC+3d2F4QJ6pH7wnclugT6lLmPzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13457 (0x3491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: Apr 24 14:49:49 2025 GMT Not After : May 1 14:49:49 2025 GMT Subject: CN=680a4f8d-763e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:07:9f:d1:1d:e6:5c:47:1d:15:7e:26:84:59: 5c:2c:d1:19:a1:37:bc:04:5f:96:65:52:ef:fd:41: 9a:03:78:a8:83:70:7d:4b:07:5b:f8:08:e5:73:1a: 14:9c:18:e0:b2:79:51:b1:55:6e:60:6c:3e:79:19: f6:13:a2:55:d4:04:a9:51:b6:38:97:cf:fd:59:b8: 30:9e:46:2e:ca:08:65:ea:74:0b:e2:91:cf:b7:d3: f8:80:db:77:79:34:a9:6b:65:e5:6d:ff:77:e0:17: 80:66:6c:d4:dc:06:49:97:ba:2b:3e:67:cb:e8:fb: b6:59:d3:4b:e7:f4:2b:af:05:d0:ab:41:ca:ac:30: da:a1:79:1a:31:8a:1d:c1:6f:02:19:3f:15:b2:ec: fc:a4:8a:49:50:6d:e2:ff:2d:0d:77:79:e6:80:66: 45:d0:e8:b0:d3:4a:ba:a4:1d:b3:99:ee:d0:09:35: e5:a5:88:77:e9:c9:38:41:fb:68:5d:b7:6c:cf:62: b5:64:97:2f:c0:cf:93:92:69:ea:0c:75:df:64:18: a1:8f:57:0a:60:21:ab:1c:c9:38:32:ff:a8:20:57: a4:e3:d6:ff:b1:b1:cb:87:33:31:72:0c:59:46:84: e4:70:b9:0f:f4:5f:1c:51:16:68:f1:a6:99:88:6c: 25:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:44:C0:D9:A9:0F:B7:76:6E:0E:9F:14:AD:4A:34:6B:EB:F6:D0:7B X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:2c:8c:03:60:ea:0d:c5:73:e7:07:e8:3e:cb:7a:fb:1b:0b: 9e:60:80:c5:76:92:ad:8e:52:78:bb:a1:61:cc:1f:f7:8d:e1: 75:51:fb:70:1b:54:39:0c:e7:32:e5:27:b0:68:92:ab:b6:4f: 27:0a:d3:2b:46:47:10:80:a1:e0:3d:35:fa:79:41:00:11:ce: 9c:fd:8d:b1:ec:fe:e1:b9:87:d4:e3:b4:c6:ca:4c:8b:53:27: 34:71:65:83:29:3e:d1:13:92:5b:d1:41:44:4d:d3:bb:63:0c: da:93:22:e7:3f:bf:b4:b3:fd:19:d4:b0:45:8f:8f:fc:f1:df: cf:2f:f5:6b:23:a2:21:a8:6b:76:da:28:28:5d:c8:82:07:7d: f0:ab:a5:68:8b:46:9c:f7:41:16:d3:c4:d9:2b:ad:49:41:0e: 79:ff:f0:97:45:43:37:7d:b1:32:42:5e:6a:49:13:ad:58:43: d0:38:ff:64:46:41:b2:dc:e9:7c:96:9c:f8:a0:33:3f:fc:5d: 18:53:ac:e5:78:7f:ab:ff:29:42:e6:fd:ad:12:18:fa:df:08: 09:00:2c:99:45:e5:5b:86:7a:90:96:eb:62:d7:01:57:fd:f0: 39:66:7c:59:68:b0:64:a1:44:58:ee:73:45:83:f2:08:bc:ae: 72:b2:fa:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjUwNDI0MTQ0OTQ5WhcNMjUwNTAxMTQ0OTQ5WjAYMRYwFAYD VQQDEw02ODBhNGY4ZC03NjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAef0R3mXEcdFX4mhFlcLNEZoTe8BF+WZVLv/UGaA3iog3B9Swdb+AjlcxoU nBjgsnlRsVVuYGw+eRn2E6JV1ASpUbY4l8/9WbgwnkYuyghl6nQL4pHPt9P4gNt3 eTSpa2Xlbf934BeAZmzU3AZJl7orPmfL6Pu2WdNL5/QrrwXQq0HKrDDaoXkaMYod wW8CGT8Vsuz8pIpJUG3i/y0Nd3nmgGZF0Oiw00q6pB2zme7QCTXlpYh36ck4Qfto Xbdsz2K1ZJcvwM+TkmnqDHXfZBihj1cKYCGrHMk4Mv+oIFek49b/sbHLhzMxcgxZ RoTkcLkP9F8cURZo8aaZiGwlCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZEwNmp D7d2bg6fFK1KNGvr9tB7MB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3LIwDYOoNxXPnB+g+y3r7GwueYIDFdpKtjlJ4u6FhzB/3jeF1Uftw G1Q5DOcy5SewaJKrtk8nCtMrRkcQgKHgPTX6eUEAEc6c/Y2x7P7huYfU47TGykyL Uyc0cWWDKT7RE5Jb0UFETdO7YwzakyLnP7+0s/0Z1LBFj4/88d/PL/VrI6IhqGt2 2igoXciCB33wq6Voi0ac90EW08TZK61JQQ55//CXRUM3fbEyQl5qSROtWEPQOP9k RkGy3Ol8lpz4oDM//F0YU6zleH+r/ylC5v2tEhj63wgJACyZReVbhnqQluti1wFX /fA5ZnxZaLBkoURY7nNFg/IIvK5ysvrP -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:05 2025 by rpki-client