$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: cbNOoXNnKslRUzCRNLSLliBj3wFWtPivBVUQNZFIfN4= Subject key identifier: BA:80:5E:5B:E6:C1:66:E4:1A:D7:DB:7F:48:FE:80:A0:12:5E:A0:4B Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1128 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 111E Signing time: Wed 02 Jul 2025 17:28:09 +0000 Manifest this update: Wed 02 Jul 2025 17:28:08 +0000 Manifest next update: Wed 09 Jul 2025 17:28:08 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: 3w1eFDIDsyO3Mw4XBjkN2IxBeGawLNU0bp9jlOvQmmQ=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4392 (0x1128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Jul 2 17:28:08 2025 GMT Not After : Jul 9 17:28:08 2025 GMT Subject: CN=68656c29-1372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:27:b6:4b:5c:32:5e:47:a9:b8:52:91:31:2f: af:14:4d:c1:8e:35:1f:dc:16:e4:a6:f9:d9:e8:3e: f4:eb:e9:35:80:d8:e1:43:36:a2:25:3c:d8:e1:d6: c9:5a:61:4e:97:ce:0a:b6:93:5b:58:a2:db:58:95: a8:a4:98:95:57:fb:09:1f:ba:dc:3c:f7:2e:34:0f: b4:8f:04:0a:b3:38:bd:53:53:6c:36:a0:77:9f:83: 05:65:83:f6:ba:6e:7b:6d:36:38:16:62:12:cd:ad: 95:2a:4b:ff:c8:c1:72:49:e8:d7:5e:56:1c:f1:47: a7:28:3e:f1:d7:e9:ad:38:4e:e1:f2:52:51:50:9a: 69:f1:31:4e:1a:12:33:46:b3:03:41:9a:78:9e:a2: 12:5f:d5:db:ce:01:e7:38:3e:64:05:a8:3d:ee:b2: e3:7d:2c:f0:54:a9:0b:27:07:7a:e9:3e:67:26:17: fc:04:89:a4:6e:8e:9b:72:d7:f5:4f:cc:73:c5:23: d6:87:9c:a4:cb:51:53:25:1e:79:40:ac:a0:5f:02: 4c:c8:cc:67:0e:af:dc:28:bb:aa:c3:04:d9:90:83: ac:f5:e1:96:ec:a2:d8:1d:43:a7:f9:c8:cc:3d:64: 5f:31:2f:46:ed:6b:05:85:ba:41:f0:52:15:d8:90: a6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:80:5E:5B:E6:C1:66:E4:1A:D7:DB:7F:48:FE:80:A0:12:5E:A0:4B X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ea:3a:53:39:9a:77:94:44:b2:45:c4:bf:25:97:d6:5a:ac: f7:e6:20:23:e2:ab:9d:1e:b1:6f:9b:7d:d4:da:30:64:5a:9c: 77:41:c8:3c:76:48:5f:02:b0:19:5a:bf:9f:16:7d:40:30:24: 20:56:39:51:6a:c0:f4:99:f9:ef:97:62:cb:ee:43:b4:44:3c: ec:43:e0:3d:c0:aa:5c:4c:f7:38:94:68:6f:53:5f:f5:f1:44: b5:4f:11:8e:46:79:7e:cc:a4:8b:9c:da:5e:bc:8d:74:c6:1a: e1:c5:04:a3:fb:0e:8e:93:9a:60:3d:3d:9f:8c:40:24:da:1c: 19:c2:f3:9c:1a:5d:d0:53:9e:5e:66:4d:ce:f5:3d:1c:62:d0: b8:ee:7a:5a:2d:3f:07:d6:0b:b3:e6:38:77:12:6b:3d:99:2b: 69:1a:81:72:f8:b0:c5:d1:c1:8c:c9:ef:f9:47:f6:7b:d2:72: 4b:51:15:73:4b:08:58:9b:ec:0d:09:51:5a:2f:66:a0:d8:00: 4e:5a:93:7f:5f:29:9c:01:93:d6:86:82:00:88:d6:de:17:f5: 0c:9d:43:cd:6a:fa:54:86:7a:52:62:26:ac:e7:3c:a6:cd:f4: c4:f3:2e:fa:04:57:51:12:78:fa:5a:ee:6c:40:fa:5c:ce:da: 08:6b:15:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUwNzAyMTcyODA4WhcNMjUwNzA5MTcyODA4WjAYMRYwFAYD VQQDEw02ODY1NmMyOS0xMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ce2S1wyXkepuFKRMS+vFE3BjjUf3BbkpvnZ6D706+k1gNjhQzaiJTzY4dbJ WmFOl84KtpNbWKLbWJWopJiVV/sJH7rcPPcuNA+0jwQKszi9U1NsNqB3n4MFZYP2 um57bTY4FmISza2VKkv/yMFySejXXlYc8UenKD7x1+mtOE7h8lJRUJpp8TFOGhIz RrMDQZp4nqISX9XbzgHnOD5kBag97rLjfSzwVKkLJwd66T5nJhf8BImkbo6bctf1 T8xzxSPWh5yky1FTJR55QKygXwJMyMxnDq/cKLuqwwTZkIOs9eGW7KLYHUOn+cjM PWRfMS9G7WsFhbpB8FIV2JCmcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqAXlvm wWbkGtfbf0j+gKASXqBLMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA16jpTOZp3lESyRcS/JZfWWqz35iAj4qudHrFvm33U2jBkWpx3Qcg8 dkhfArAZWr+fFn1AMCQgVjlRasD0mfnvl2LL7kO0RDzsQ+A9wKpcTPc4lGhvU1/1 8US1TxGORnl+zKSLnNpevI10xhrhxQSj+w6Ok5pgPT2fjEAk2hwZwvOcGl3QU55e Zk3O9T0cYtC47npaLT8H1guz5jh3Ems9mStpGoFy+LDF0cGMye/5R/Z70nJLURVz SwhYm+wNCVFaL2ag2ABOWpN/XymcAZPWhoIAiNbeF/UMnUPNavpUhnpSYias5zym zfTE8y76BFdREnj6Wu5sQPpcztoIaxWi -----END CERTIFICATE-----Generated at Fri Jul 4 14:21:29 2025 by rpki-client