$ rpki-client -vvf rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft File: LTKZEtaZA7hQCX-MbthXHaxxBa0.mft (raw, json) Hash identifier: 6bkj6cefvVpuFe362tKooPrhLDFVJvvseHWRXGwAumY= Subject key identifier: DD:9C:63:53:45:65:3A:CE:BD:3F:88:82:BF:F9:6F:4A:25:88:19:4B Authority key identifier: 2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD Certificate issuer: /CN=A916708F/serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Certificate serial: 0CA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft Manifest number: 0C9A Signing time: Mon 28 Apr 2025 18:22:01 +0000 Manifest this update: Mon 28 Apr 2025 18:22:00 +0000 Manifest next update: Mon 05 May 2025 18:22:00 +0000 Files and hashes: 1: LTKZEtaZA7hQCX-MbthXHaxxBa0.crl (hash: xSfMj9ViTkWcuhAhSZEMdDFUcvNN/jkGT1Pm4zqj3c8=) 2: 8174C3BEF16411E980D2F667C4F9AE02.roa (hash: hN5uWTMLKihaDnB2GMrlEkHThQZGD2la1832Pp7TIb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916708F, serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Validity Not Before: Apr 28 18:22:00 2025 GMT Not After : May 5 18:22:00 2025 GMT Subject: CN=680fc748-263a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:78:dc:c7:09:40:47:24:83:1f:f9:eb:db:de: d3:1f:6f:b4:8e:ed:ae:61:40:ac:7b:4c:9f:c3:70: 63:3f:81:af:42:63:aa:e1:6f:4c:24:ea:21:11:90: 4c:bd:58:e2:00:08:73:0f:32:0f:9e:9f:53:6a:1e: 69:29:fc:90:65:19:68:a1:e7:19:df:30:22:91:3a: 79:d1:5d:f9:79:f0:b2:0d:5c:9a:8e:69:9d:62:10: 42:fb:cb:18:af:fa:fb:5d:56:bb:91:3d:c8:93:b7: 72:01:a6:d0:05:17:f4:53:56:65:6b:70:83:64:e5: 24:0b:22:4e:27:6e:97:75:9f:31:cc:01:9c:e0:60: 06:f6:99:8c:61:d2:ec:70:9c:25:35:bd:24:dd:de: 18:04:8f:95:1a:d4:4e:16:12:ec:c8:4b:e2:91:84: f1:75:e1:fe:3f:18:be:fd:a3:7b:d5:6e:82:66:ac: 38:89:bd:94:d7:eb:f1:88:35:07:a2:1f:b0:de:92: 1a:38:6e:65:23:d9:d8:f4:65:bc:e1:13:0c:b7:60: e0:bb:d1:09:a3:ef:72:d3:54:31:51:a0:46:54:94: 7e:76:43:53:5b:9f:d9:91:51:1a:6e:05:85:81:09: a2:0c:5c:4a:53:b6:cd:6f:b9:e9:d9:15:a7:de:43: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:9C:63:53:45:65:3A:CE:BD:3F:88:82:BF:F9:6F:4A:25:88:19:4B X509v3 Authority Key Identifier: keyid:2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:d1:a3:da:cd:e2:31:8f:de:f8:43:55:59:94:57:77:fa:7c: f7:dd:67:b6:57:47:56:05:79:d7:21:7f:fd:59:12:da:a7:5c: 59:33:27:57:c9:9e:86:72:a1:c0:5d:02:9b:6d:14:81:76:86: 46:b7:b5:55:ce:6f:d5:2f:94:44:c1:42:cf:43:31:55:55:34: 16:7c:a0:a7:2b:58:dc:4d:76:a9:3e:44:2c:b9:86:64:58:66: 35:20:0a:e6:93:a5:b4:01:a6:2d:d2:7b:07:96:3b:81:88:b9: 68:73:ab:b8:e7:e6:96:58:cb:25:3f:8e:8a:02:56:9a:2d:25: ea:23:f2:0a:29:0d:91:1f:26:65:1b:1d:29:3b:4c:16:03:80: a1:d6:19:ae:5d:66:8b:5d:b4:e3:16:79:57:07:4e:b7:d6:73: 90:17:95:c4:13:18:f6:eb:55:d7:a0:07:3d:d4:20:60:1a:9e: 41:a6:e0:74:60:15:3c:c5:3b:cf:55:3a:99:54:94:39:8b:a6: f6:6a:64:e4:b5:be:f9:7f:1c:88:9e:47:70:d7:16:a9:16:b3: c3:fd:e3:d2:a0:7f:b5:6c:6e:b0:f4:93:91:65:d6:38:dd:ad: 65:06:da:2e:b9:e8:16:ca:6d:14:fe:fd:94:f8:45:fc:97:ce: 56:25:b1:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwOEYxMTAvBgNVBAUTKDJEMzI5OTEyRDY5OTAzQjg1MDA5N0Y4QzZFRDg1NzFE QUM3MTA1QUQwHhcNMjUwNDI4MTgyMjAwWhcNMjUwNTA1MTgyMjAwWjAYMRYwFAYD VQQDEw02ODBmYzc0OC0yNjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3jcxwlARySDH/nr297TH2+0ju2uYUCse0yfw3BjP4GvQmOq4W9MJOohEZBM vVjiAAhzDzIPnp9Tah5pKfyQZRlooecZ3zAikTp50V35efCyDVyajmmdYhBC+8sY r/r7XVa7kT3Ik7dyAabQBRf0U1Zla3CDZOUkCyJOJ26XdZ8xzAGc4GAG9pmMYdLs cJwlNb0k3d4YBI+VGtROFhLsyEvikYTxdeH+Pxi+/aN71W6CZqw4ib2U1+vxiDUH oh+w3pIaOG5lI9nY9GW84RMMt2Dgu9EJo+9y01QxUaBGVJR+dkNTW5/ZkVEabgWF gQmiDFxKU7bNb7np2RWn3kNFrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2cY1NF ZTrOvT+Igr/5b0oliBlLMB8GA1UdIwQYMBaAFC0ymRLWmQO4UAl/jG7YVx2scQWt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzA4Ri81NkRCMEYyNEYx NjMxMUU5OURCRURGNjVDNEY5QUUwMi9MVEtaRXRhWkE3aFFDWC1NYnRoWEhheHhC YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUS1pFdGFaQTdoUUNYLU1idGhYSGF4eEJhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzA4Ri81NkRCMEYyNEYxNjMxMUU5OURCRURGNjVDNEY5QUUwMi9MVEtaRXRhWkE3 aFFDWC1NYnRoWEhheHhCYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp0aPazeIxj974Q1VZlFd3+nz33We2V0dWBXnXIX/9WRLap1xZMydX yZ6GcqHAXQKbbRSBdoZGt7VVzm/VL5REwULPQzFVVTQWfKCnK1jcTXapPkQsuYZk WGY1IArmk6W0AaYt0nsHljuBiLloc6u45+aWWMslP46KAlaaLSXqI/IKKQ2RHyZl Gx0pO0wWA4Ch1hmuXWaLXbTjFnlXB0631nOQF5XEExj261XXoAc91CBgGp5BpuB0 YBU8xTvPVTqZVJQ5i6b2amTktb75fxyInkdw1xapFrPD/ePSoH+1bG6w9JORZdY4 3a1lBtouuegWym0U/v2U+EX8l85WJbEK -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:39 2025 by rpki-client on console.sobornost.net