$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: hW61jM0XVJnfwpNDSrz1v2yn0Yv162N9Cwxfq8CEAbI= Subject key identifier: 87:EF:90:24:F1:5B:2E:23:A8:82:DF:00:AC:13:A5:64:7B:C6:6C:55 Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 34CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 34C3 Signing time: Sun 24 Aug 2025 14:50:22 +0000 Manifest this update: Sun 24 Aug 2025 14:50:21 +0000 Manifest next update: Sun 31 Aug 2025 14:50:21 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: t8pN5FuRiHXsjIDPVla/PJv//DFpGZ3YMuY86S+OPWg=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: 5UVYc1gM3pcN5MyLC+3d2F4QJ6pH7wnclugT6lLmPzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13519 (0x34cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: Aug 24 14:50:21 2025 GMT Not After : Aug 31 14:50:21 2025 GMT Subject: CN=68ab26ae-9bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7a:50:1f:8d:44:3e:bb:fc:2b:07:3e:b1:95: 91:e1:1b:aa:75:99:9e:d9:5f:da:b7:9c:e9:39:39: dd:a3:10:b8:fe:e7:3a:ed:c2:e4:62:d7:a3:f8:46: 63:18:d5:ec:3b:5d:55:60:f5:aa:0c:44:1b:da:18: da:ee:c0:cb:2b:a0:98:a3:99:b1:50:d9:42:43:83: 96:3a:31:63:46:2d:18:1d:62:e9:86:7a:0b:9c:55: da:6b:e3:a7:24:3a:6e:84:71:08:f1:f2:13:4a:dc: 92:bd:1d:43:8d:ce:e1:5e:c9:8c:8d:97:e0:42:bb: b7:21:de:b3:5c:4a:ff:54:9d:78:19:9e:4b:5b:65: bf:2f:67:37:92:8a:c3:f1:87:35:4c:3a:fe:f4:39: 39:10:b0:7a:8e:bd:e3:97:22:f9:95:fe:ae:d8:e2: 16:0a:b0:53:ed:75:4f:ed:ee:75:99:8e:e4:e0:fd: 3e:54:ea:d3:89:a8:48:fa:cd:52:46:b0:6f:a2:85: b3:2f:8d:bf:f6:f8:1d:ea:4e:3f:eb:74:76:21:7c: 7e:ea:48:ee:54:c0:cf:be:26:f8:4c:7a:c8:0c:8f: 3c:80:01:7e:13:e2:dd:6e:90:be:b4:c8:05:2d:b8: c1:1a:2c:1c:7b:4a:dd:03:45:24:29:46:08:09:d3: 4d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EF:90:24:F1:5B:2E:23:A8:82:DF:00:AC:13:A5:64:7B:C6:6C:55 X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:22:0c:a3:cc:da:7b:05:8c:99:e6:73:6e:6a:83:84:8d:e0: 1c:55:53:9d:74:9e:34:c4:41:b6:6e:38:ad:87:3e:f1:07:f1: 51:a6:fc:f5:a3:c4:88:a3:40:be:bd:94:ac:28:c0:a2:c4:27: b5:69:db:07:3b:83:ca:90:09:f7:1c:af:78:d7:18:42:3c:34: bd:29:12:b1:00:53:8d:bb:2a:18:e2:53:48:64:99:02:f9:ce: 2e:e2:29:97:87:ab:1f:cb:e5:b1:db:ec:a1:0c:ce:fe:6e:df: 50:de:15:bb:9d:2d:23:66:09:c6:7e:a8:b5:bd:a5:6a:3f:02: 14:ee:e8:e5:75:fa:44:28:fc:f7:0a:a7:3e:52:b6:71:85:c1: 57:29:c6:f5:3c:0d:90:8b:58:d9:ee:4a:6c:7f:04:db:80:a0: 81:db:14:a7:d4:8e:3e:e5:58:11:60:b5:8c:04:98:42:2e:c5: d7:6e:47:c3:6e:aa:e6:ae:de:ef:dc:38:88:dc:c9:23:89:31: 0a:17:db:96:ed:80:70:83:53:24:e8:b9:c5:7e:3b:55:07:84: 8a:e6:73:98:14:ff:c4:12:df:a4:c9:ae:93:15:f8:5e:6f:d2: 41:bd:f1:3b:63:4e:0f:c8:a6:69:f9:bb:fc:aa:51:45:e1:a5: 5a:af:e5:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjUwODI0MTQ1MDIxWhcNMjUwODMxMTQ1MDIxWjAYMRYwFAYD VQQDEw02OGFiMjZhZS05YmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunpQH41EPrv8Kwc+sZWR4RuqdZme2V/at5zpOTndoxC4/uc67cLkYtej+EZj GNXsO11VYPWqDEQb2hja7sDLK6CYo5mxUNlCQ4OWOjFjRi0YHWLphnoLnFXaa+On JDpuhHEI8fITStySvR1Djc7hXsmMjZfgQru3Id6zXEr/VJ14GZ5LW2W/L2c3korD 8Yc1TDr+9Dk5ELB6jr3jlyL5lf6u2OIWCrBT7XVP7e51mY7k4P0+VOrTiahI+s1S RrBvooWzL42/9vgd6k4/63R2IXx+6kjuVMDPvib4THrIDI88gAF+E+LdbpC+tMgF LbjBGiwce0rdA0UkKUYICdNNnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfvkCTx Wy4jqILfAKwTpWR7xmxVMB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1IgyjzNp7BYyZ5nNuaoOEjeAcVVOddJ40xEG2bjithz7xB/FRpvz1 o8SIo0C+vZSsKMCixCe1adsHO4PKkAn3HK941xhCPDS9KRKxAFONuyoY4lNIZJkC +c4u4imXh6sfy+Wx2+yhDM7+bt9Q3hW7nS0jZgnGfqi1vaVqPwIU7ujldfpEKPz3 Cqc+UrZxhcFXKcb1PA2Qi1jZ7kpsfwTbgKCB2xSn1I4+5VgRYLWMBJhCLsXXbkfD bqrmrt7v3DiI3MkjiTEKF9uW7YBwg1Mk6LnFfjtVB4SK5nOYFP/EEt+kya6TFfhe b9JBvfE7Y04PyKZp+bv8qlFF4aVar+WA -----END CERTIFICATE-----Generated at Sun Aug 24 21:31:14 2025 by rpki-client