$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: cIpZF8tnG3BMzcfEe7DCt0clUjKGaU0KkBtzvjGb7pQ= Subject key identifier: 7D:E2:64:09:C7:01:91:7D:FF:89:C0:3A:A5:94:12:B4:C1:82:CE:2E Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1118 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 110E Signing time: Sat 31 May 2025 17:22:00 +0000 Manifest this update: Sat 31 May 2025 17:22:00 +0000 Manifest next update: Sat 07 Jun 2025 17:22:00 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: JYgi3zWUD0D14m48GtLk4MJNC6649PBXuI/GaTgnidw=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4376 (0x1118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: May 31 17:22:00 2025 GMT Not After : Jun 7 17:22:00 2025 GMT Subject: CN=683b3ab8-71d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e9:3a:bc:cf:fb:da:9b:26:a5:cd:84:ea:f9: b5:c9:0c:ca:af:9a:17:71:30:d5:90:48:0d:a2:fc: 28:49:a3:8e:30:25:1d:6a:88:14:67:7a:22:77:7e: ca:66:c2:60:a0:2c:02:af:3a:94:7b:0d:22:b5:4b: 04:84:e3:6b:f8:ab:6b:a1:e8:88:7b:64:dc:89:d3: 3f:c4:8f:a5:e9:c9:93:42:28:b8:ab:82:9b:55:12: 6e:87:ec:3f:8f:cb:19:ef:e4:4e:a1:c4:32:cd:e3: 67:65:c5:0e:b2:24:e3:4b:df:12:19:a9:67:d0:3c: ee:28:eb:3f:e4:57:cd:56:fe:69:bb:79:e3:93:40: 7a:db:04:da:8c:95:ea:00:e0:38:eb:bd:65:88:4c: cb:0b:1b:04:13:27:e7:8e:d5:2d:fa:f5:0d:62:e2: 97:dd:56:45:e6:b7:08:84:19:c3:d5:af:b0:c7:6d: 76:4a:7f:7b:58:22:8a:c7:2f:6a:9e:da:07:98:82: 2b:17:d3:ad:59:88:7f:27:98:38:34:45:19:51:e6: f1:be:da:23:f4:1c:ec:58:71:5f:6a:d8:a2:e0:6e: 06:70:b8:02:ba:e0:cc:df:23:12:ca:e6:57:65:78: 2e:2b:71:2e:4d:71:d5:73:d9:fd:02:53:ce:a7:64: 20:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E2:64:09:C7:01:91:7D:FF:89:C0:3A:A5:94:12:B4:C1:82:CE:2E X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:24:d8:8a:bc:3a:9f:24:5e:7b:ab:74:70:63:4b:d4:e0:52: 71:54:7f:dd:ff:7c:05:e5:84:bc:93:26:cd:ea:94:e6:10:86: a6:db:dc:df:77:a6:c1:a8:71:7e:a1:5a:6f:dc:4b:72:9a:21: e8:cf:7f:ba:e8:63:5d:03:f2:af:56:e2:fa:41:3a:0b:94:ad: 04:df:65:b8:9f:78:f3:1a:2e:26:73:57:07:38:a1:09:0e:b7: 73:12:52:c3:90:bc:25:42:2b:13:3b:b4:13:78:71:1c:e6:8c: e4:4a:8d:cf:b8:9a:b0:21:04:06:27:c2:59:6c:aa:d7:30:f4: 70:16:73:29:f6:06:76:2e:27:10:7d:28:20:da:e5:90:d0:56: 50:44:33:0e:f6:93:b1:ff:b4:10:03:25:ff:05:c9:a3:31:fd: 98:cf:75:a4:26:2f:71:67:cf:59:d2:6e:07:1d:28:02:3d:c7: 50:b1:c0:62:f4:1f:82:25:d5:cc:db:c2:c8:5f:e0:d1:03:99: ea:fb:81:67:03:00:5c:2e:a4:ab:a4:29:51:78:73:1a:4d:c2: 97:d6:c4:e5:9d:c1:1f:59:f8:bf:8d:b9:2e:26:38:54:f4:1e: f6:9b:7d:eb:07:a3:ab:ac:54:ca:92:e5:5f:7b:56:89:33:9b: 5d:00:ba:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUwNTMxMTcyMjAwWhcNMjUwNjA3MTcyMjAwWjAYMRYwFAYD VQQDEw02ODNiM2FiOC03MWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uk6vM/72psmpc2E6vm1yQzKr5oXcTDVkEgNovwoSaOOMCUdaogUZ3oid37K ZsJgoCwCrzqUew0itUsEhONr+KtroeiIe2TcidM/xI+l6cmTQii4q4KbVRJuh+w/ j8sZ7+ROocQyzeNnZcUOsiTjS98SGaln0DzuKOs/5FfNVv5pu3njk0B62wTajJXq AOA4671liEzLCxsEEyfnjtUt+vUNYuKX3VZF5rcIhBnD1a+wx212Sn97WCKKxy9q ntoHmIIrF9OtWYh/J5g4NEUZUebxvtoj9BzsWHFfatii4G4GcLgCuuDM3yMSyuZX ZXguK3EuTXHVc9n9AlPOp2QgGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3iZAnH AZF9/4nAOqWUErTBgs4uMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOJNiKvDqfJF57q3RwY0vU4FJxVH/d/3wF5YS8kybN6pTmEIam29zf d6bBqHF+oVpv3EtymiHoz3+66GNdA/KvVuL6QToLlK0E32W4n3jzGi4mc1cHOKEJ DrdzElLDkLwlQisTO7QTeHEc5ozkSo3PuJqwIQQGJ8JZbKrXMPRwFnMp9gZ2LicQ fSgg2uWQ0FZQRDMO9pOx/7QQAyX/BcmjMf2Yz3WkJi9xZ89Z0m4HHSgCPcdQscBi 9B+CJdXM28LIX+DRA5nq+4FnAwBcLqSrpClReHMaTcKX1sTlncEfWfi/jbkuJjhU 9B72m33rB6OrrFTKkuVfe1aJM5tdALp0 -----END CERTIFICATE-----Generated at Mon Jun 2 17:04:06 2025 by rpki-client