$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: 2Hekmxgwba9ZiqVcZMszW8VQljI4eQ/CA0qrTTblfc8= Subject key identifier: 21:88:33:4B:18:BB:1D:FF:98:1E:47:13:27:B4:14:56:1D:85:D7:EB Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C72 Signing time: Mon 30 Jun 2025 18:35:47 +0000 Manifest this update: Mon 30 Jun 2025 18:35:47 +0000 Manifest next update: Mon 07 Jul 2025 18:35:47 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: tUTRDBtcHz5t1vp1O8QLH33pDFHqjwLLhNdwv88+SUE=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:35:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Jun 30 18:35:47 2025 GMT Not After : Jul 7 18:35:47 2025 GMT Subject: CN=6862d903-9e2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f3:c9:18:3f:0d:75:5a:5b:dd:cd:53:62:42: 41:d3:a7:88:84:e8:f7:90:8a:99:d6:0d:a7:c2:db: 62:92:dd:69:6c:26:94:91:38:b0:fb:2e:a7:9b:f6: 49:07:59:91:44:21:f6:f8:50:f4:9f:05:e9:d9:df: 6b:8e:c9:62:bd:c3:d3:2b:91:13:e2:92:94:a5:42: 55:4f:3f:ab:3a:8e:47:18:f0:07:12:d6:27:9e:48: ef:14:a1:84:5a:6e:fb:f8:a2:ed:84:5e:45:fb:7a: 71:47:7a:c9:38:72:c9:85:d3:fc:4b:fb:fd:10:8d: 99:54:cf:f3:4e:00:54:74:3c:8f:73:39:58:c9:8b: e8:69:4d:1f:5e:0b:05:cb:ee:d9:7e:e7:7c:a2:a5: c3:4f:1c:25:81:ef:28:e2:c2:07:da:53:b0:e7:cf: 67:ce:2c:e1:70:93:2d:67:5f:40:73:9b:1e:e1:ba: ac:88:e5:c6:6e:f8:9c:41:bd:7d:f8:7f:c2:7d:49: 17:b8:3f:40:4e:fc:85:ad:03:a0:25:04:ba:34:42: 2d:3a:c7:1d:5f:69:46:46:95:71:00:2a:d7:57:6c: d0:d6:04:49:b3:ac:6e:cb:e6:45:a7:3d:20:03:07: c4:e1:22:5b:0e:55:84:1a:92:2f:25:28:c1:48:ac: bd:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:88:33:4B:18:BB:1D:FF:98:1E:47:13:27:B4:14:56:1D:85:D7:EB X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:67:36:a7:5e:6e:37:fb:cc:93:d9:b1:70:f4:cb:4b:f1:53: f3:0c:97:1c:9f:ce:0d:ef:1f:af:da:65:92:3d:bb:80:57:29: b7:8a:df:c9:5b:4e:c4:c6:56:2e:0b:f2:3e:ec:86:33:32:12: d2:11:b0:17:12:02:f0:ca:f6:83:38:98:7d:3f:d4:84:2b:c5: ee:2a:7d:54:1b:50:ea:6b:8e:d3:7b:3d:66:9b:76:9a:b9:24: 04:27:2c:f2:55:a9:bc:85:7b:3f:c1:5b:cd:5c:6a:1b:b5:9f: 55:dd:f2:f7:5c:49:1e:17:0f:65:ce:51:8c:4d:fb:8e:d4:e6: 3c:ca:51:8f:58:91:fe:27:f9:d3:01:29:00:54:69:2c:b5:49: 44:3b:8e:76:0a:43:59:69:cf:ea:53:3b:40:b5:51:25:48:da: 3d:70:3f:37:61:db:d1:15:39:f9:c9:53:a4:e8:82:3e:7d:4d: 6a:a2:b9:57:cf:98:b1:e6:28:a3:ac:0e:81:8f:10:f3:0c:51: fd:b5:33:61:6f:c3:95:a3:a2:f2:80:fe:40:43:c0:01:b6:6b: 61:6e:d4:ad:f3:45:10:09:bb:a3:01:1b:44:bc:7d:a9:0b:a3: 63:38:00:cd:08:41:0d:e0:2a:3b:2c:86:4f:8f:83:21:e0:bd: de:8c:65:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUwNjMwMTgzNTQ3WhcNMjUwNzA3MTgzNTQ3WjAYMRYwFAYD VQQDEw02ODYyZDkwMy05ZTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofPJGD8NdVpb3c1TYkJB06eIhOj3kIqZ1g2nwttikt1pbCaUkTiw+y6nm/ZJ B1mRRCH2+FD0nwXp2d9rjslivcPTK5ET4pKUpUJVTz+rOo5HGPAHEtYnnkjvFKGE Wm77+KLthF5F+3pxR3rJOHLJhdP8S/v9EI2ZVM/zTgBUdDyPczlYyYvoaU0fXgsF y+7Zfud8oqXDTxwlge8o4sIH2lOw589nzizhcJMtZ19Ac5se4bqsiOXGbvicQb19 +H/CfUkXuD9ATvyFrQOgJQS6NEItOscdX2lGRpVxACrXV2zQ1gRJs6xuy+ZFpz0g AwfE4SJbDlWEGpIvJSjBSKy9bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGIM0sY ux3/mB5HEye0FFYdhdfrMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOZzanXm43+8yT2bFw9MtL8VPzDJccn84N7x+v2mWSPbuAVym3it/J W07ExlYuC/I+7IYzMhLSEbAXEgLwyvaDOJh9P9SEK8XuKn1UG1Dqa47Tez1mm3aa uSQEJyzyVam8hXs/wVvNXGobtZ9V3fL3XEkeFw9lzlGMTfuO1OY8ylGPWJH+J/nT ASkAVGkstUlEO452CkNZac/qUztAtVElSNo9cD83YdvRFTn5yVOk6II+fU1qorlX z5ix5iijrA6BjxDzDFH9tTNhb8OVo6LygP5AQ8ABtmthbtSt80UQCbujARtEvH2p C6NjOADNCEEN4Co7LIZPj4Mh4L3ejGWC -----END CERTIFICATE-----Generated at Wed Jul 2 13:03:01 2025 by rpki-client