$ rpki-client -vvf rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft File: LTKZEtaZA7hQCX-MbthXHaxxBa0.mft (raw, json) Hash identifier: s2z8iTzfYZpKNEZ4GgHz1TnTIY3h8fz8zZWTFb6r2MY= Subject key identifier: 42:8D:79:7D:FA:EE:61:00:F5:B2:8E:C8:50:3C:B5:6D:9A:21:88:D0 Authority key identifier: 2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD Certificate issuer: /CN=A916708F/serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Certificate serial: 0CCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft Manifest number: 0CC4 Signing time: Sun 20 Jul 2025 18:09:35 +0000 Manifest this update: Sun 20 Jul 2025 18:09:35 +0000 Manifest next update: Sun 27 Jul 2025 18:09:35 +0000 Files and hashes: 1: LTKZEtaZA7hQCX-MbthXHaxxBa0.crl (hash: jvN4/md3U7LGOOe5RZsyeMfRwK3zFgDZDyFK/u+4+bc=) 2: 8174C3BEF16411E980D2F667C4F9AE02.roa (hash: hN5uWTMLKihaDnB2GMrlEkHThQZGD2la1832Pp7TIb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:09:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916708F, serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Validity Not Before: Jul 20 18:09:35 2025 GMT Not After : Jul 27 18:09:35 2025 GMT Subject: CN=687d30df-0300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a9:8c:3b:58:43:a2:91:2a:1f:20:81:9e:4a: 0e:02:3b:11:2c:13:01:4f:a7:e4:e9:d7:c5:7f:6a: de:d6:a8:87:a3:f7:e7:7e:79:27:1e:64:3f:c0:56: 01:eb:60:15:74:e6:a4:32:9c:f6:d8:73:d4:68:20: bc:cc:67:9b:02:1d:8d:55:8f:e7:b1:c0:fa:3d:a8: df:84:0d:e1:f8:84:08:05:de:7c:95:99:19:c1:18: f0:83:82:81:1d:d2:10:9c:55:d0:3c:0b:00:7d:f3: a5:72:79:be:c2:63:f9:b1:ff:56:85:3b:fd:34:43: 9c:fd:ca:0e:89:26:2c:34:91:68:e8:50:92:6d:74: 7e:99:17:8c:8b:dc:f7:30:46:a5:4c:29:b4:cd:64: 2b:55:61:0d:6a:d8:25:e3:1f:c7:01:79:0a:24:64: 11:3d:17:11:06:2b:d2:10:8e:0a:1f:97:ad:9c:bb: 30:35:0f:ae:64:be:ef:9f:96:de:bd:de:b2:0a:b0: fc:93:d6:67:7e:51:10:a3:0f:9c:bc:42:1c:03:5e: c4:eb:0e:9d:20:9d:17:dd:58:a1:a2:29:62:56:8a: 75:f4:d9:c3:1b:17:7e:db:63:d5:ca:e1:d4:37:5b: 93:17:d9:2c:cc:ba:b7:ee:a2:c5:fb:27:06:9c:48: 2e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8D:79:7D:FA:EE:61:00:F5:B2:8E:C8:50:3C:B5:6D:9A:21:88:D0 X509v3 Authority Key Identifier: keyid:2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:bd:ec:23:2d:36:7a:e2:22:9b:07:cb:c0:81:13:17:39:1e: 43:38:8e:4c:b5:6b:f7:bc:e5:e6:7b:cd:27:76:dc:12:94:1b: 09:d4:49:ee:32:39:cc:2e:cf:a1:80:7b:24:4c:6a:fb:d8:6a: 74:9d:f3:bf:20:68:7f:82:7f:27:2e:ee:33:57:46:f9:5b:25: 3f:95:94:0c:b3:00:b6:52:a7:91:2e:4b:42:14:a3:82:31:ae: bc:bb:88:07:55:07:10:b7:3f:0c:1c:02:ff:71:66:54:10:23: 7c:fb:9b:5b:e4:ea:48:d8:af:4b:f8:20:22:d2:06:47:3b:66: db:44:42:1d:ac:7b:ee:0a:75:07:d3:eb:0c:6e:48:ea:8c:07: 5e:18:f8:14:0f:ab:11:63:1b:75:67:df:dd:5b:c4:33:44:93: b1:ee:e1:db:d9:e4:60:ac:bd:98:c6:dd:19:43:e7:bf:9c:56: a9:e6:be:1d:40:f7:b5:db:5b:6f:ef:fc:49:48:ac:83:60:4d: d4:2e:b7:ad:4c:88:b2:22:54:f3:e7:6b:b9:68:fa:3f:8d:af: cc:dd:ea:60:4f:33:ab:57:4e:0e:47:4b:4f:7a:70:fd:da:fd: 5e:f6:de:88:ae:ff:31:bb:2d:c9:41:9a:ee:ab:9c:e7:92:ee: 3c:c5:89:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwOEYxMTAvBgNVBAUTKDJEMzI5OTEyRDY5OTAzQjg1MDA5N0Y4QzZFRDg1NzFE QUM3MTA1QUQwHhcNMjUwNzIwMTgwOTM1WhcNMjUwNzI3MTgwOTM1WjAYMRYwFAYD VQQDEw02ODdkMzBkZi0wMzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KmMO1hDopEqHyCBnkoOAjsRLBMBT6fk6dfFf2re1qiHo/fnfnknHmQ/wFYB 62AVdOakMpz22HPUaCC8zGebAh2NVY/nscD6PajfhA3h+IQIBd58lZkZwRjwg4KB HdIQnFXQPAsAffOlcnm+wmP5sf9WhTv9NEOc/coOiSYsNJFo6FCSbXR+mReMi9z3 MEalTCm0zWQrVWENatgl4x/HAXkKJGQRPRcRBivSEI4KH5etnLswNQ+uZL7vn5be vd6yCrD8k9ZnflEQow+cvEIcA17E6w6dIJ0X3VihoiliVop19NnDGxd+22PVyuHU N1uTF9kszLq37qLF+ycGnEgumQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKNeX36 7mEA9bKOyFA8tW2aIYjQMB8GA1UdIwQYMBaAFC0ymRLWmQO4UAl/jG7YVx2scQWt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzA4Ri81NkRCMEYyNEYx NjMxMUU5OURCRURGNjVDNEY5QUUwMi9MVEtaRXRhWkE3aFFDWC1NYnRoWEhheHhC YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUS1pFdGFaQTdoUUNYLU1idGhYSGF4eEJhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzA4Ri81NkRCMEYyNEYxNjMxMUU5OURCRURGNjVDNEY5QUUwMi9MVEtaRXRhWkE3 aFFDWC1NYnRoWEhheHhCYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKvewjLTZ64iKbB8vAgRMXOR5DOI5MtWv3vOXme80ndtwSlBsJ1Enu MjnMLs+hgHskTGr72Gp0nfO/IGh/gn8nLu4zV0b5WyU/lZQMswC2UqeRLktCFKOC Ma68u4gHVQcQtz8MHAL/cWZUECN8+5tb5OpI2K9L+CAi0gZHO2bbREIdrHvuCnUH 0+sMbkjqjAdeGPgUD6sRYxt1Z9/dW8QzRJOx7uHb2eRgrL2Yxt0ZQ+e/nFap5r4d QPe121tv7/xJSKyDYE3ULretTIiyIlTz52u5aPo/ja/M3epgTzOrV04OR0tPenD9 2v1e9t6Irv8xuy3JQZruq5znku48xYkm -----END CERTIFICATE-----Generated at Mon Jul 21 12:34:15 2025 by rpki-client