$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: ZdRHN2GVpGXeVe8PgyvUKRd7ujJN3mv1o47Am9wtz1E= Subject key identifier: 1F:C9:8E:79:B0:5F:6B:22:93:9C:96:9E:CB:06:5D:7C:50:43:F5:DC Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0CCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0CAC Signing time: Mon 20 Oct 2025 18:55:24 +0000 Manifest this update: Mon 20 Oct 2025 18:55:23 +0000 Manifest next update: Mon 27 Oct 2025 18:55:23 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: 53rZC4tnkMhDyLSWL75xrpEvP5FZXcA3PnMJ3eqFcPc=) 2: 618AD7B6638A11F08BC2A840C4F9AE02.roa (hash: MwSFvEabk32pabHGDjMhMjg7Y9hSaRRoCFJNVkHfvCo=) 3: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) 4: 610856EC638A11F08BC2A840C4F9AE02.roa (hash: mM2/OSyuyrdTMbuzL984YaUAfl+IdF87FO8qvYOz9Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3274 (0xcca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Oct 20 18:55:23 2025 GMT Not After : Oct 27 18:55:23 2025 GMT Subject: CN=68f6859b-28d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1f:ce:69:50:4e:21:1f:36:e6:70:e7:a3:ab: 39:22:b2:0a:46:9d:6b:d3:39:e0:2c:e2:d9:b2:4f: 81:e1:be:23:21:69:33:7c:c4:e8:f1:c3:a1:c1:8f: e5:dd:be:fd:a5:7d:e4:bb:7e:08:59:85:77:67:f9: bb:45:77:c1:2f:0b:c9:40:5c:79:6d:20:f6:0f:d4: 4b:7d:9f:c4:c3:24:3b:59:16:62:38:62:c3:36:7b: fe:a2:ef:3e:65:9b:7e:eb:40:4f:7b:5b:b6:3d:b4: a0:40:33:0b:7f:c9:86:0a:1a:0f:ce:0e:ce:5d:22: 50:7a:42:25:c9:a7:bf:2e:7f:72:12:27:ed:f6:f4: 04:bd:3e:d5:bc:9d:32:2a:90:25:b6:f5:ac:a6:7e: 4f:86:b4:8f:c5:78:bc:ec:8a:a2:4e:2f:fa:d6:02: a6:dc:7f:0a:a3:ca:a1:25:80:12:23:ab:b9:e0:2e: 31:87:50:ac:a3:51:2c:b1:6f:c4:69:45:1d:b1:72: 49:e1:9b:0e:80:6d:0a:09:86:d7:79:50:74:5e:6e: ff:4a:9f:15:fe:99:ba:3e:e5:84:c3:fe:e6:5d:45: 1f:38:0e:b7:ce:54:f9:b0:82:c7:2a:a0:76:84:ed: 4e:d2:f8:c3:28:07:ec:03:cd:62:fa:a2:77:71:e0: 4c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C9:8E:79:B0:5F:6B:22:93:9C:96:9E:CB:06:5D:7C:50:43:F5:DC X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:da:b1:7b:76:0b:08:a3:1b:1b:08:55:fd:b8:d3:b4:5c:60: cb:57:fb:fd:30:05:35:38:8c:cb:42:3a:4c:cb:9d:ad:ae:55: 0e:b8:0e:4d:d0:8a:11:8f:13:7f:fd:40:f3:98:36:16:b1:33: ae:8a:0c:ed:3b:be:86:1c:8f:4e:f2:98:a3:85:27:20:fe:1d: a8:c6:e8:1c:3e:f3:f5:cd:79:ba:34:b4:1a:17:37:62:04:b7: b3:a8:e9:b4:d9:9e:48:78:5f:f0:9e:14:80:52:31:80:64:6c: 02:9c:c6:91:e9:a2:38:33:a1:ae:01:f4:8c:72:62:0a:17:e5: bc:eb:7f:47:ae:a4:41:51:83:b2:7a:c7:9c:8f:4d:3b:0f:69: 81:27:2e:d0:63:70:3f:4e:61:7c:63:77:62:b2:33:f1:e4:d8: cb:bc:ae:0b:fd:4d:6d:3e:f0:d9:34:16:a8:e6:ef:24:57:8c: d4:d7:6a:54:81:54:37:6c:49:65:c5:c2:f9:25:3f:7d:6b:7e: e8:f3:df:f4:ad:96:c6:02:4d:2f:d9:4d:15:88:de:12:68:7d: e2:4a:bc:d7:98:f9:73:10:8a:8e:83:59:b8:b3:c6:85:76:97: 2b:de:bf:9b:f3:19:45:27:d8:5e:e2:fb:27:ea:ad:7b:ef:91: 69:8e:aa:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUxMDIwMTg1NTIzWhcNMjUxMDI3MTg1NTIzWjAYMRYwFAYD VQQDEw02OGY2ODU5Yi0yOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyR/OaVBOIR825nDno6s5IrIKRp1r0zngLOLZsk+B4b4jIWkzfMTo8cOhwY/l 3b79pX3ku34IWYV3Z/m7RXfBLwvJQFx5bSD2D9RLfZ/EwyQ7WRZiOGLDNnv+ou8+ ZZt+60BPe1u2PbSgQDMLf8mGChoPzg7OXSJQekIlyae/Ln9yEift9vQEvT7VvJ0y KpAltvWspn5PhrSPxXi87IqiTi/61gKm3H8Ko8qhJYASI6u54C4xh1Cso1EssW/E aUUdsXJJ4ZsOgG0KCYbXeVB0Xm7/Sp8V/pm6PuWEw/7mXUUfOA63zlT5sILHKqB2 hO1O0vjDKAfsA81i+qJ3ceBMvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/Jjnmw X2sik5yWnssGXXxQQ/XcMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr2rF7dgsIoxsbCFX9uNO0XGDLV/v9MAU1OIzLQjpMy52trlUOuA5N 0IoRjxN//UDzmDYWsTOuigztO76GHI9O8pijhScg/h2oxugcPvP1zXm6NLQaFzdi BLezqOm02Z5IeF/wnhSAUjGAZGwCnMaR6aI4M6GuAfSMcmIKF+W8639HrqRBUYOy esecj007D2mBJy7QY3A/TmF8Y3disjPx5NjLvK4L/U1tPvDZNBao5u8kV4zU12pU gVQ3bEllxcL5JT99a37o89/0rZbGAk0v2U0ViN4SaH3iSrzXmPlzEIqOg1m4s8aF dpcr3r+b8xlFJ9he4vsn6q1775Fpjqow -----END CERTIFICATE-----Generated at Tue Oct 21 02:10:42 2025 by rpki-client