$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: VN1drkqPa5upmX9z4vf6SgKa/11ZWp4sKFxahnbDPIM= Subject key identifier: D8:FF:C9:07:2E:CC:E6:27:DE:AA:F9:43:C2:66:3D:D0:13:16:39:93 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0C74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C58 Signing time: Sat 10 May 2025 18:15:15 +0000 Manifest this update: Sat 10 May 2025 18:15:15 +0000 Manifest next update: Sat 17 May 2025 18:15:15 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: aAIgAwYKDSaot3SNNX/6dmaI1sqj1oH5xQrQDvladBg=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3188 (0xc74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: May 10 18:15:15 2025 GMT Not After : May 17 18:15:15 2025 GMT Subject: CN=681f97b3-fdbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:b7:90:43:1a:b7:fa:eb:ef:02:c9:71:0c: 9d:90:b8:ec:14:6b:79:2f:70:92:69:2c:35:05:20: 58:07:99:56:6c:4a:4e:cb:39:bc:1f:c0:36:4d:9a: ac:24:bb:1a:ed:c5:18:21:64:69:dd:6e:12:ef:03: 0b:d4:85:2e:24:91:cd:c3:95:49:e0:9d:7b:70:e1: bf:8b:d0:2f:67:89:89:6e:05:7c:02:c4:81:bc:1d: a8:13:99:af:31:fc:55:09:29:25:5c:d5:43:c6:43: 4f:e8:22:3e:1f:3c:b3:2c:5e:74:7e:67:6a:1b:04: ba:f4:c5:9f:5f:95:1a:4e:b4:da:e1:8f:05:2a:6b: a0:70:78:88:06:db:09:d1:02:db:05:83:e0:c2:48: b7:86:01:93:a2:32:8f:bc:fe:8c:23:f0:4b:b5:c7: d9:76:52:45:82:3a:a0:66:fe:07:df:70:d9:37:19: 87:1b:d1:75:26:ae:85:8c:c1:59:54:ea:57:a5:47: 5d:22:46:54:9b:2d:ec:f6:5c:e4:c7:0a:b6:7b:4d: 78:de:6a:d0:0a:7e:3e:8a:69:54:53:af:e7:ea:f4: 69:28:cc:b8:7d:5d:94:c3:c1:0a:fc:49:44:14:52: 39:12:25:8d:74:67:15:d9:0e:dc:e8:70:a2:69:6b: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FF:C9:07:2E:CC:E6:27:DE:AA:F9:43:C2:66:3D:D0:13:16:39:93 X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:9b:e3:92:83:21:ef:98:90:fd:4a:78:51:99:da:3d:32:68: 52:39:3c:4e:1f:df:a9:ab:9f:e6:20:47:47:0a:3d:67:46:49: 64:34:ed:46:84:3c:a5:2f:90:2e:64:bc:ee:03:e8:8b:95:d7: a0:ad:a5:dc:11:26:18:e8:87:01:ee:51:05:97:e8:eb:2b:d4: 01:53:3e:a1:b0:eb:8d:ea:fe:0d:d0:45:8e:f3:99:15:fe:0f: 95:b3:d6:1f:1e:f6:2a:27:cf:75:d5:68:20:51:bc:2a:a7:08: fb:9f:62:9e:f0:17:53:9c:0b:7e:ee:ad:88:f6:a0:75:5c:a2: 3d:5d:02:a1:34:7c:09:68:f9:04:1e:63:28:cb:e1:d9:ca:9a: 47:34:27:03:cf:2d:03:d7:a2:eb:68:bf:84:8e:e9:84:1d:df: d8:2c:07:81:a3:a9:68:1a:4a:d4:8f:6f:09:89:65:b8:17:b9: bc:2f:1c:3e:66:22:af:38:09:02:18:18:e9:21:6f:54:53:b7: 48:26:e8:3e:a8:96:df:65:30:e3:ed:c1:bf:70:bb:88:7d:dc: 2a:41:4c:31:e9:42:a2:4b:b3:0e:38:1f:aa:8d:67:73:7e:bf: 59:d7:97:41:bb:82:43:5f:27:b0:e7:20:07:5e:25:41:cc:7a: 7f:60:f3:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUwNTEwMTgxNTE1WhcNMjUwNTE3MTgxNTE1WjAYMRYwFAYD VQQDEw02ODFmOTdiMy1mZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7+3kEMat/rr7wLJcQydkLjsFGt5L3CSaSw1BSBYB5lWbEpOyzm8H8A2TZqs JLsa7cUYIWRp3W4S7wML1IUuJJHNw5VJ4J17cOG/i9AvZ4mJbgV8AsSBvB2oE5mv MfxVCSklXNVDxkNP6CI+HzyzLF50fmdqGwS69MWfX5UaTrTa4Y8FKmugcHiIBtsJ 0QLbBYPgwki3hgGTojKPvP6MI/BLtcfZdlJFgjqgZv4H33DZNxmHG9F1Jq6FjMFZ VOpXpUddIkZUmy3s9lzkxwq2e0143mrQCn4+imlUU6/n6vRpKMy4fV2Uw8EK/ElE FFI5EiWNdGcV2Q7c6HCiaWtahQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNj/yQcu zOYn3qr5Q8JmPdATFjmTMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYm+OSgyHvmJD9SnhRmdo9MmhSOTxOH9+pq5/mIEdHCj1nRklkNO1G hDylL5AuZLzuA+iLldegraXcESYY6IcB7lEFl+jrK9QBUz6hsOuN6v4N0EWO85kV /g+Vs9YfHvYqJ8911WggUbwqpwj7n2Ke8BdTnAt+7q2I9qB1XKI9XQKhNHwJaPkE HmMoy+HZyppHNCcDzy0D16LraL+EjumEHd/YLAeBo6loGkrUj28JiWW4F7m8Lxw+ ZiKvOAkCGBjpIW9UU7dIJug+qJbfZTDj7cG/cLuIfdwqQUwx6UKiS7MOOB+qjWdz fr9Z15dBu4JDXyew5yAHXiVBzHp/YPMz -----END CERTIFICATE-----Generated at Mon May 12 07:24:34 2025 by rpki-client