$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: WLnIvCoTeBLd3xSYBjVot3oCrrvLCptCJIuUJGjn4Ds= Subject key identifier: 18:BF:DE:2F:C7:E8:DA:7E:F0:90:A6:E2:7A:DE:28:A5:BF:F8:90:6B Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0C9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C7F Signing time: Thu 24 Jul 2025 18:32:14 +0000 Manifest this update: Thu 24 Jul 2025 18:32:13 +0000 Manifest next update: Thu 31 Jul 2025 18:32:13 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: 2kmeh7Oum5TYVyE1SBWk2TTxfAIPwZFoCMV6SO6J63I=) 2: 618AD7B6638A11F08BC2A840C4F9AE02.roa (hash: MwSFvEabk32pabHGDjMhMjg7Y9hSaRRoCFJNVkHfvCo=) 3: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) 4: 610856EC638A11F08BC2A840C4F9AE02.roa (hash: mM2/OSyuyrdTMbuzL984YaUAfl+IdF87FO8qvYOz9Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 18:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3229 (0xc9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Jul 24 18:32:13 2025 GMT Not After : Jul 31 18:32:13 2025 GMT Subject: CN=68827c2d-0a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:72:85:af:c7:90:0c:af:3b:b6:00:53:07:33: b2:71:71:6e:7a:fd:db:7e:94:53:75:08:aa:d8:84: f3:2b:6d:12:a9:d2:26:2c:6d:a6:e7:0f:58:79:2b: 45:35:ae:26:02:fa:a8:fb:26:57:25:79:66:99:54: 99:b4:87:ba:ba:23:82:b3:1e:7d:71:0d:34:fb:2c: 54:98:74:61:78:b9:b0:95:43:39:23:88:83:8a:da: ec:49:27:7e:15:5b:c1:2a:58:40:ca:03:cb:85:a1: 16:14:d2:a1:34:a1:54:a1:c2:82:d2:35:cd:18:2f: 23:78:5e:1b:9f:16:b1:c6:22:54:cb:61:f2:14:7f: d2:b8:c6:6b:4d:6b:cc:14:62:17:03:f1:3c:a8:62: 60:2d:60:e3:c1:24:23:7e:61:ab:ab:36:f2:22:80: f1:97:83:86:67:f7:d9:3f:45:05:d0:06:70:8a:af: 3b:42:1d:af:23:0f:84:23:40:44:c0:6b:05:75:b4: 0d:76:de:f1:0f:f9:f1:de:e4:5b:10:79:f9:7e:f6: a1:01:17:9c:65:9d:e7:6c:b9:b3:1a:23:78:79:80: c9:57:56:7a:ba:e7:8e:f1:58:6d:77:60:0c:4d:31: 50:e2:cd:cf:94:7b:80:16:5a:a9:21:2f:46:6d:2c: 71:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BF:DE:2F:C7:E8:DA:7E:F0:90:A6:E2:7A:DE:28:A5:BF:F8:90:6B X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:fc:af:29:3a:07:96:4c:6b:6e:cb:2f:dc:45:54:42:c0:4d: 52:91:da:1a:20:d6:c4:8d:2c:e8:1a:de:c4:fb:3e:98:0e:7f: 6d:5c:98:2e:5b:b9:d5:fc:4c:b9:2d:5a:7d:ed:58:79:6a:8b: e5:4b:9b:d6:82:5d:19:2f:dd:ba:84:8f:8d:75:34:4a:18:6f: ab:d2:cf:b2:f5:eb:04:29:94:a1:65:06:71:d5:cf:70:6b:0a: 9f:5b:07:45:67:75:87:67:42:af:03:2b:4c:c4:36:e2:0e:5f: 2e:a3:38:ae:d7:07:1d:25:ba:cf:4e:b2:53:a9:fe:eb:fb:e1: 6c:d5:e1:6c:b8:d6:51:85:2e:d5:dc:5c:b3:c7:63:07:d8:47: 00:cd:18:22:98:76:da:78:c5:54:b1:41:f8:87:02:69:e0:85: 75:3d:10:9d:c3:1b:57:16:b3:69:e5:81:86:a0:ea:54:ed:5a: d1:21:46:af:c7:33:01:34:3a:e9:2d:5c:83:d6:ed:4d:c8:2f: 27:7c:c3:7e:72:01:27:fe:1d:31:2c:a9:c0:a6:5e:db:11:c6: c0:2e:65:b0:14:f8:ee:c6:99:66:29:b8:20:22:7d:40:38:9f: 9c:45:2e:20:af:c6:a4:58:98:14:76:98:6f:ea:bc:1d:14:71: 92:0f:1a:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUwNzI0MTgzMjEzWhcNMjUwNzMxMTgzMjEzWjAYMRYwFAYD VQQDEw02ODgyN2MyZC0wYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXKFr8eQDK87tgBTBzOycXFuev3bfpRTdQiq2ITzK20SqdImLG2m5w9YeStF Na4mAvqo+yZXJXlmmVSZtIe6uiOCsx59cQ00+yxUmHRheLmwlUM5I4iDitrsSSd+ FVvBKlhAygPLhaEWFNKhNKFUocKC0jXNGC8jeF4bnxaxxiJUy2HyFH/SuMZrTWvM FGIXA/E8qGJgLWDjwSQjfmGrqzbyIoDxl4OGZ/fZP0UF0AZwiq87Qh2vIw+EI0BE wGsFdbQNdt7xD/nx3uRbEHn5fvahARecZZ3nbLmzGiN4eYDJV1Z6uueO8Vhtd2AM TTFQ4s3PlHuAFlqpIS9GbSxxwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBi/3i/H 6Np+8JCm4nreKKW/+JBrMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0/K8pOgeWTGtuyy/cRVRCwE1SkdoaINbEjSzoGt7E+z6YDn9tXJgu W7nV/Ey5LVp97Vh5aovlS5vWgl0ZL926hI+NdTRKGG+r0s+y9esEKZShZQZx1c9w awqfWwdFZ3WHZ0KvAytMxDbiDl8uoziu1wcdJbrPTrJTqf7r++Fs1eFsuNZRhS7V 3Fyzx2MH2EcAzRgimHbaeMVUsUH4hwJp4IV1PRCdwxtXFrNp5YGGoOpU7VrRIUav xzMBNDrpLVyD1u1NyC8nfMN+cgEn/h0xLKnApl7bEcbALmWwFPjuxplmKbggIn1A OJ+cRS4gr8akWJgUdphv6rwdFHGSDxrG -----END CERTIFICATE-----Generated at Fri Jul 25 11:09:12 2025 by rpki-client