$ rpki-client -vvf rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft File: LDTzNZTMO-PAfo54N2v8QzJjFUg.mft (raw, json) Hash identifier: cHeuwYGCZe4SZGir5P+pS8zAyIlCtesz7FjcCyJyZE0= Subject key identifier: D7:E9:7D:E7:56:08:34:B6:68:83:87:9C:91:87:1F:A0:7F:B3:A9:4E Authority key identifier: 2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 Certificate issuer: /CN=A914ADD8/serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Certificate serial: 3486 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft Manifest number: 3485 Signing time: Sat 31 May 2025 14:28:43 +0000 Manifest this update: Sat 31 May 2025 14:28:42 +0000 Manifest next update: Sat 07 Jun 2025 14:28:42 +0000 Files and hashes: 1: LDTzNZTMO-PAfo54N2v8QzJjFUg.crl (hash: djaEcJT1ptw5ggUFoL5hq9D8PCRsbOZzB61MmL1tewU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13446 (0x3486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ADD8, serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Validity Not Before: May 31 14:28:42 2025 GMT Not After : Jun 7 14:28:42 2025 GMT Subject: CN=683b121a-959f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f9:17:a4:ca:eb:e2:e5:3e:53:60:8f:9f:5a: 20:c5:8d:3c:e2:ba:a2:cc:27:07:a1:7d:00:62:dd: dd:a1:77:2f:2b:30:c0:3f:46:b8:fd:f1:b4:71:d8: 16:38:9f:ad:c4:c8:14:c9:bf:9a:8d:52:ef:9d:18: e4:85:b9:cc:3f:85:9c:85:08:6d:ff:6a:5f:e7:6e: 3f:df:97:03:8c:5a:64:ae:48:77:66:85:a6:c1:d1: f4:a3:42:2a:9a:c3:68:d0:9b:41:ba:08:cb:31:6c: b1:f9:bb:b4:f2:82:0e:87:0b:21:15:38:68:00:e3: da:94:4c:90:45:30:3a:66:8c:3f:09:bb:7f:5b:db: ce:68:ec:6a:b7:c5:de:ae:1c:78:b6:7f:cc:89:67: 15:1e:7a:4c:4f:27:fa:0b:23:41:9d:1d:a9:ac:ca: 10:1e:17:2e:64:30:fa:3b:af:6f:23:6e:bb:b8:56: 61:ab:e5:ed:b9:c8:ad:d0:08:0b:a5:f3:6e:c8:58: 49:10:48:c3:d1:9b:0e:09:9e:a9:d6:ed:ed:c8:55: 0d:aa:02:e0:38:ab:a7:b3:85:8c:38:85:ea:ac:e5: c0:e9:2a:fb:a2:a6:a2:fd:cc:da:89:96:60:c5:9c: 9c:c9:a1:94:ab:02:ac:d4:69:07:bb:a7:06:43:dd: 22:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E9:7D:E7:56:08:34:B6:68:83:87:9C:91:87:1F:A0:7F:B3:A9:4E X509v3 Authority Key Identifier: keyid:2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:ac:8b:3e:af:97:86:e6:3d:bd:1f:bd:2b:33:92:46:af:9f: fe:6b:b4:3b:e3:a2:2c:cc:68:8c:8c:38:b5:92:1b:a3:d4:69: 29:74:1b:9b:fa:f8:fe:f0:1b:63:c2:e8:dd:31:23:98:18:cf: 84:7d:94:43:55:2d:99:8f:15:d6:41:5e:d0:1a:ed:ae:78:6b: a9:88:28:99:52:4e:14:03:c2:2c:37:16:f4:72:23:5e:4e:de: 67:a9:88:57:0c:c6:54:4b:1f:f0:59:b1:22:fc:de:73:02:df: 76:fe:b8:30:ab:02:b8:65:2f:d5:a7:17:ef:8d:ee:58:6f:fb: ab:8a:68:2f:e3:84:09:c1:ed:53:56:71:8d:2a:d3:02:ac:74: 55:00:17:7e:7d:83:85:7f:56:23:48:f0:09:05:94:1b:27:4a: dc:dd:c8:3d:80:6c:6a:6f:ac:78:17:cf:dd:f1:71:dd:bc:9d: e8:cf:b5:78:40:ca:0e:12:ad:4a:4b:b3:22:46:52:8b:9d:e7: e8:67:5b:89:d5:85:0a:34:14:a0:bd:a5:9d:eb:d5:2f:e2:a9: 97:de:26:61:01:5a:58:73:f5:e0:1a:61:6c:60:22:b3:9e:f2: 0c:64:23:d3:1e:7e:63:d8:d2:97:22:f7:5f:f4:4b:8d:f3:93: df:24:56:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFERDgxMTAvBgNVBAUTKDJDMzRGMzM1OTRDQzNCRTNDMDdFOEU3ODM3NkJGQzQz MzI2MzE1NDgwHhcNMjUwNTMxMTQyODQyWhcNMjUwNjA3MTQyODQyWjAYMRYwFAYD VQQDEw02ODNiMTIxYS05NTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PkXpMrr4uU+U2CPn1ogxY084rqizCcHoX0AYt3doXcvKzDAP0a4/fG0cdgW OJ+txMgUyb+ajVLvnRjkhbnMP4WchQht/2pf524/35cDjFpkrkh3ZoWmwdH0o0Iq msNo0JtBugjLMWyx+bu08oIOhwshFThoAOPalEyQRTA6Zow/Cbt/W9vOaOxqt8Xe rhx4tn/MiWcVHnpMTyf6CyNBnR2prMoQHhcuZDD6O69vI267uFZhq+Xtucit0AgL pfNuyFhJEEjD0ZsOCZ6p1u3tyFUNqgLgOKuns4WMOIXqrOXA6Sr7oqai/czaiZZg xZycyaGUqwKs1GkHu6cGQ90izwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfpfedW CDS2aIOHnJGHH6B/s6lOMB8GA1UdIwQYMBaAFCw08zWUzDvjwH6OeDdr/EMyYxVI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUREOC9BNEQ4MTA0RTFE ODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8tUEFmbzU0TjJ2OFF6SmpG VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEVHpOWlRNTy1QQWZvNTROMnY4UXpKakZVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUREOC9BNEQ4MTA0RTFEODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8t UEFmbzU0TjJ2OFF6SmpGVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlrIs+r5eG5j29H70rM5JGr5/+a7Q746IszGiMjDi1khuj1GkpdBub +vj+8BtjwujdMSOYGM+EfZRDVS2ZjxXWQV7QGu2ueGupiCiZUk4UA8IsNxb0ciNe Tt5nqYhXDMZUSx/wWbEi/N5zAt92/rgwqwK4ZS/Vpxfvje5Yb/urimgv44QJwe1T VnGNKtMCrHRVABd+fYOFf1YjSPAJBZQbJ0rc3cg9gGxqb6x4F8/d8XHdvJ3oz7V4 QMoOEq1KS7MiRlKLnefoZ1uJ1YUKNBSgvaWd69Uv4qmX3iZhAVpYc/XgGmFsYCKz nvIMZCPTHn5j2NKXIvdf9EuN85PfJFYw -----END CERTIFICATE-----Generated at Sat May 31 17:44:08 2025 by rpki-client