$ rpki-client -vvf rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft File: LDTzNZTMO-PAfo54N2v8QzJjFUg.mft (raw, json) Hash identifier: itKhIPMbNZFeAs6e/0qsG+4C7YKVxcUw+oe4dGYI6Is= Subject key identifier: 61:63:76:2A:B8:0E:6C:30:32:B3:9A:74:4F:41:2B:2D:BF:29:F8:47 Authority key identifier: 2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 Certificate issuer: /CN=A914ADD8/serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Certificate serial: 34BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft Manifest number: 34BD Signing time: Thu 18 Sep 2025 14:29:12 +0000 Manifest this update: Thu 18 Sep 2025 14:29:12 +0000 Manifest next update: Thu 25 Sep 2025 14:29:12 +0000 Files and hashes: 1: LDTzNZTMO-PAfo54N2v8QzJjFUg.crl (hash: D+DVSzkGSJH0A/JusqdPw+na/9/RBPdZTz8ZvuhFUm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13502 (0x34be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ADD8, serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Validity Not Before: Sep 18 14:29:12 2025 GMT Not After : Sep 25 14:29:12 2025 GMT Subject: CN=68cc1738-28cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a0:c1:b3:46:47:eb:da:4e:21:bf:d9:2d:06: b3:c4:70:91:27:fd:6c:8c:05:86:37:c8:bb:a3:6d: 77:af:b3:13:41:ec:e6:69:16:33:6d:4f:bb:f5:79: 15:ef:2a:70:6a:df:5e:6a:41:42:62:56:6a:7a:70: 64:90:28:59:f5:20:93:da:0b:c8:69:59:1b:31:eb: 92:6c:60:ae:31:51:47:61:8e:49:03:97:d7:27:e8: cc:cd:15:df:f1:ee:a7:5b:86:79:02:1a:6c:1f:9f: f1:ed:0e:d1:3a:33:4e:cc:47:fb:4f:98:48:d4:45: 34:a6:0b:27:54:f0:c2:f2:5d:be:72:05:1b:a8:95: 58:fb:5e:c0:c5:8e:97:38:3a:f5:3b:42:30:b5:85: 81:67:94:f2:55:47:c6:1b:f5:e6:12:77:4a:6c:dd: 78:8a:27:d8:21:a7:c5:e4:7d:db:63:0c:77:df:62: 78:16:38:92:79:25:b1:18:51:b0:de:e9:65:98:9e: 87:51:f3:2e:42:06:ea:59:48:f2:01:9e:ac:0d:84: ce:30:d8:95:5c:17:6c:e4:af:58:9e:a5:70:a7:9b: b1:5a:ab:0a:22:f4:da:5f:e0:e4:85:3a:e6:c0:da: 12:27:73:f0:6f:fd:7d:26:d1:9a:42:3f:5c:2b:7a: 39:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:63:76:2A:B8:0E:6C:30:32:B3:9A:74:4F:41:2B:2D:BF:29:F8:47 X509v3 Authority Key Identifier: keyid:2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:93:da:1e:8a:df:8f:b0:00:f6:84:0c:f5:0d:58:2e:81:68: e1:f4:8a:fb:a5:24:40:46:0a:0f:84:27:d0:11:aa:59:d5:05: 4c:6e:0b:f7:19:0b:93:d2:a7:94:77:f2:e6:f7:cb:73:b6:c6: dd:4b:71:16:17:d9:06:57:1a:2a:cd:3b:fb:01:4b:8e:4f:48: 73:c1:e6:76:ea:39:e0:93:a6:55:6c:33:ca:17:50:2a:a7:35: ca:84:67:ee:12:c7:af:73:43:0a:18:e0:2f:88:ee:5a:61:bd: 2b:bf:45:bd:d7:b9:3f:bc:6e:c4:21:7c:34:c6:76:54:dc:ef: a5:97:8f:9f:e2:1f:47:ca:8e:3a:74:f8:9a:90:58:3a:d4:11: 62:a5:e5:da:e4:b7:7c:b7:3b:0a:8a:59:15:32:69:4c:4a:f3: dc:e9:77:69:15:d8:af:82:e9:07:d7:af:1e:d1:11:2a:12:ed: 9c:86:32:cc:ea:a9:2e:bd:ad:fb:cf:67:0e:8a:d2:a6:fe:c1: 59:8b:92:ee:0f:f2:1a:1c:c6:cf:b6:8a:b9:b6:f7:f4:97:8f: 2f:26:29:25:a6:92:ec:2a:60:28:01:a8:d7:07:e4:db:6d:b9: 11:93:35:dc:42:64:2c:eb:02:4c:97:c1:f0:ad:5c:0e:fe:c8: 55:d5:72:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFERDgxMTAvBgNVBAUTKDJDMzRGMzM1OTRDQzNCRTNDMDdFOEU3ODM3NkJGQzQz MzI2MzE1NDgwHhcNMjUwOTE4MTQyOTEyWhcNMjUwOTI1MTQyOTEyWjAYMRYwFAYD VQQDEw02OGNjMTczOC0yOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqDBs0ZH69pOIb/ZLQazxHCRJ/1sjAWGN8i7o213r7MTQezmaRYzbU+79XkV 7ypwat9eakFCYlZqenBkkChZ9SCT2gvIaVkbMeuSbGCuMVFHYY5JA5fXJ+jMzRXf 8e6nW4Z5AhpsH5/x7Q7ROjNOzEf7T5hI1EU0pgsnVPDC8l2+cgUbqJVY+17AxY6X ODr1O0IwtYWBZ5TyVUfGG/XmEndKbN14iifYIafF5H3bYwx332J4FjiSeSWxGFGw 3ullmJ6HUfMuQgbqWUjyAZ6sDYTOMNiVXBds5K9YnqVwp5uxWqsKIvTaX+DkhTrm wNoSJ3Pwb/19JtGaQj9cK3o51QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFjdiq4 DmwwMrOadE9BKy2/KfhHMB8GA1UdIwQYMBaAFCw08zWUzDvjwH6OeDdr/EMyYxVI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUREOC9BNEQ4MTA0RTFE ODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8tUEFmbzU0TjJ2OFF6SmpG VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEVHpOWlRNTy1QQWZvNTROMnY4UXpKakZVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUREOC9BNEQ4MTA0RTFEODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8t UEFmbzU0TjJ2OFF6SmpGVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmk9oeit+PsAD2hAz1DVgugWjh9Ir7pSRARgoPhCfQEapZ1QVMbgv3 GQuT0qeUd/Lm98tztsbdS3EWF9kGVxoqzTv7AUuOT0hzweZ26jngk6ZVbDPKF1Aq pzXKhGfuEsevc0MKGOAviO5aYb0rv0W917k/vG7EIXw0xnZU3O+ll4+f4h9Hyo46 dPiakFg61BFipeXa5Ld8tzsKilkVMmlMSvPc6XdpFdivgukH168e0REqEu2chjLM 6qkuva37z2cOitKm/sFZi5LuD/IaHMbPtoq5tvf0l48vJiklppLsKmAoAajXB+Tb bbkRkzXcQmQs6wJMl8HwrVwO/shV1XIJ -----END CERTIFICATE-----Generated at Thu Sep 18 20:52:03 2025 by rpki-client