$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: DKXBqckddF2pLsrql5mvce8q4eWpSIDdTt9Wti8/IPQ= Subject key identifier: 2E:11:ED:6C:0E:8B:2C:2A:6B:3E:98:8F:A4:E8:A6:C2:85:BC:92:58 Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1142 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 1138 Signing time: Fri 22 Aug 2025 17:23:05 +0000 Manifest this update: Fri 22 Aug 2025 17:23:04 +0000 Manifest next update: Fri 29 Aug 2025 17:23:04 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: Lh3D5367mkibCjozfgaxSp5W3gsynRokqmDBMdbFc9c=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4418 (0x1142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Aug 22 17:23:04 2025 GMT Not After : Aug 29 17:23:04 2025 GMT Subject: CN=68a8a779-f834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d0:6f:4d:bf:20:10:54:94:eb:54:fe:50:79: dd:82:28:4f:31:49:5c:ae:9e:91:4a:4b:a8:98:5b: a1:08:7f:a6:2b:f4:aa:1d:b7:80:c5:8d:9b:04:ce: 32:cc:f3:d4:36:a7:6a:ac:81:0f:56:3d:57:3d:a2: 63:8d:9f:5b:31:ad:a8:2d:93:c2:dd:4e:76:a6:03: 44:8e:30:f4:02:10:b1:86:63:a0:d8:e0:69:e1:5b: 9e:2a:76:f1:0a:85:25:88:f5:49:7a:35:3b:24:04: 2e:9a:29:1e:0d:d0:36:df:d0:e7:e3:71:b0:a1:1c: 3e:16:97:b1:3e:cc:7d:e8:f1:86:2c:2f:42:11:da: 82:97:fe:95:b1:78:6b:d5:7c:72:f3:8c:f2:61:b5: a9:25:31:4a:61:de:f7:62:3f:41:e7:69:63:2e:b1: b3:c5:93:40:53:5e:37:99:8e:c0:36:97:b0:8b:1a: 46:94:b1:c0:56:08:ce:b9:ee:e7:21:ca:ac:96:d8: c1:d8:bd:cf:49:d0:b2:f8:3f:7f:63:49:d0:44:0c: d2:e4:b0:27:7d:a0:03:cb:26:84:24:71:26:5f:01: e3:00:10:b2:dc:e3:19:46:f4:81:0e:99:3a:e2:c7: 60:67:45:7f:c1:98:00:9c:a6:a3:a9:34:e6:b2:00: e7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:11:ED:6C:0E:8B:2C:2A:6B:3E:98:8F:A4:E8:A6:C2:85:BC:92:58 X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:04:d9:ae:23:c8:16:be:b6:f1:c1:1b:0f:86:a4:ec:25:b7: f4:18:cc:e6:45:9c:3d:27:0a:b3:5e:4d:a3:2c:93:c0:0e:33: 10:42:be:ed:22:c3:36:62:14:d7:1a:8f:5b:0f:43:7e:ff:de: 2c:10:72:21:7e:21:fc:a4:c5:18:91:96:46:76:50:7b:b1:e3: f1:db:9b:2b:3e:03:88:c6:ee:e9:51:b7:48:5e:51:6a:36:4d: 23:75:b3:cd:ec:71:5d:38:68:1d:7c:f3:ca:76:a2:b6:d9:86: 36:13:cb:ad:20:04:70:bf:e5:a1:7c:0e:23:87:ac:81:7d:be: 03:26:81:1d:c8:73:ad:e2:6d:52:6b:b3:56:1f:91:55:ba:50: 51:36:35:aa:6e:ea:14:32:09:41:87:fc:69:91:71:46:57:2e: 26:7f:d9:31:ce:e8:b7:65:b1:62:b8:36:47:45:64:07:40:f3: 9e:0d:d8:ec:6f:d0:20:bf:0c:e2:49:cd:79:df:0f:e0:67:42: a3:e8:64:90:84:86:99:7f:cd:ce:c9:1f:29:69:8a:f7:48:f6: f1:24:31:12:f3:17:6d:66:a5:c4:44:12:7f:48:aa:e1:a7:53: 67:dc:e4:33:07:8c:47:ee:9a:d0:d6:15:1d:41:2c:f7:e4:59: f2:e1:0d:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUwODIyMTcyMzA0WhcNMjUwODI5MTcyMzA0WjAYMRYwFAYD VQQDEw02OGE4YTc3OS1mODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNBvTb8gEFSU61T+UHndgihPMUlcrp6RSkuomFuhCH+mK/SqHbeAxY2bBM4y zPPUNqdqrIEPVj1XPaJjjZ9bMa2oLZPC3U52pgNEjjD0AhCxhmOg2OBp4VueKnbx CoUliPVJejU7JAQumikeDdA239Dn43GwoRw+FpexPsx96PGGLC9CEdqCl/6VsXhr 1Xxy84zyYbWpJTFKYd73Yj9B52ljLrGzxZNAU143mY7ANpewixpGlLHAVgjOue7n IcqsltjB2L3PSdCy+D9/Y0nQRAzS5LAnfaADyyaEJHEmXwHjABCy3OMZRvSBDpk6 4sdgZ0V/wZgAnKajqTTmsgDnZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4R7WwO iywqaz6Yj6TopsKFvJJYMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpBNmuI8gWvrbxwRsPhqTsJbf0GMzmRZw9JwqzXk2jLJPADjMQQr7t IsM2YhTXGo9bD0N+/94sEHIhfiH8pMUYkZZGdlB7sePx25srPgOIxu7pUbdIXlFq Nk0jdbPN7HFdOGgdfPPKdqK22YY2E8utIARwv+WhfA4jh6yBfb4DJoEdyHOt4m1S a7NWH5FVulBRNjWqbuoUMglBh/xpkXFGVy4mf9kxzui3ZbFiuDZHRWQHQPOeDdjs b9AgvwziSc153w/gZ0Kj6GSQhIaZf83OyR8paYr3SPbxJDES8xdtZqXERBJ/SKrh p1Nn3OQzB4xH7prQ1hUdQSz35Fny4Q3q -----END CERTIFICATE-----Generated at Sat Aug 23 12:41:50 2025 by rpki-client