$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: 4hR5WPA2fXys+8Mc/8TvW9MfGpZ4VnforhNRZWT+aYo= Subject key identifier: 4A:06:AF:BD:CD:C5:7F:17:30:16:4F:1F:78:8C:86:CC:3E:71:3B:E8 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0CD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0CB3 Signing time: Sun 02 Nov 2025 18:18:54 +0000 Manifest this update: Sun 02 Nov 2025 18:18:53 +0000 Manifest next update: Sun 09 Nov 2025 18:18:53 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: gSgGecHS+xgRifbqfXRn21KCBCZiX3/K5a0gtfDxBv0=) 2: 618AD7B6638A11F08BC2A840C4F9AE02.roa (hash: MwSFvEabk32pabHGDjMhMjg7Y9hSaRRoCFJNVkHfvCo=) 3: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) 4: 610856EC638A11F08BC2A840C4F9AE02.roa (hash: mM2/OSyuyrdTMbuzL984YaUAfl+IdF87FO8qvYOz9Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3281 (0xcd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Nov 2 18:18:53 2025 GMT Not After : Nov 9 18:18:53 2025 GMT Subject: CN=6907a08e-5aa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3a:fc:9b:d1:0c:dc:84:81:1d:4d:ae:41:c0: 5b:a2:c8:8d:26:2f:ac:6a:49:b8:d1:01:86:4e:e5: 0f:e2:44:a2:da:54:5e:00:df:31:85:48:1d:df:a2: df:8f:96:ea:61:ec:a1:c8:49:e5:db:be:d9:62:ef: 01:2a:c9:e6:17:51:3a:d9:5a:de:1c:a2:66:f9:8f: c9:f7:33:d8:6c:41:3c:ed:fc:40:de:f1:f3:9b:b8: 96:bc:40:74:75:25:85:7f:22:d0:83:36:ad:52:19: 02:e9:d6:36:82:56:80:c3:84:22:8e:fb:71:26:99: 04:d2:85:77:bb:4b:ff:9f:30:19:74:79:00:93:9b: 21:17:9f:d9:66:5b:1e:e1:bc:d8:a5:7f:97:b6:91: c5:7a:3c:f3:67:1f:72:3c:56:5d:ae:64:ca:7c:0d: f8:79:b5:67:c5:73:1b:95:2f:da:a1:c4:71:2b:c0: 1b:cd:e7:39:c6:08:4d:4e:0a:b7:ac:fe:ae:3f:6e: f4:90:51:8c:ef:6b:12:ee:2b:95:7c:ed:36:c5:98: e2:6e:43:c0:1e:90:b8:a9:2d:92:7a:89:cd:6a:4b: 10:fe:54:31:76:bb:b5:e1:11:e2:5a:f3:89:2e:e6: 02:22:eb:51:1b:e3:60:e2:e9:88:e7:db:ff:2d:b2: b2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:06:AF:BD:CD:C5:7F:17:30:16:4F:1F:78:8C:86:CC:3E:71:3B:E8 X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f2:3e:0a:96:ee:dc:cd:45:36:00:ee:0f:3b:ff:6f:cc:df: f0:81:9f:a8:1e:f6:0d:16:da:e0:89:c4:0f:4f:d1:34:68:a4: 00:ca:fa:4f:16:73:8a:8f:82:89:3c:8b:5c:5f:7c:2c:ee:11: 61:41:47:3e:ad:b9:4a:a7:c7:21:ad:18:73:65:a8:aa:e9:8e: 94:3f:50:1a:fe:1c:bc:4a:b7:2b:99:a2:6b:35:79:ed:2f:7d: b6:0a:5e:13:d2:fc:a7:9f:75:6c:cb:9e:b4:6a:42:73:4a:e6: 1a:5a:ab:fb:24:fa:ef:d4:f6:c7:c1:54:d8:a4:70:99:d7:1b: e6:9c:e9:e8:5e:25:56:17:2a:70:1b:92:68:96:28:39:7f:12: a0:65:ee:d1:84:41:0f:d2:9a:87:d3:c9:85:b8:70:95:b5:02: 41:f0:87:3b:57:a0:ea:f1:05:4f:23:9b:79:5f:1f:93:33:65: b8:28:68:70:fd:a6:26:83:a4:68:d0:8c:af:9b:97:98:42:d6: dd:b9:c9:b1:63:01:b6:da:6e:1c:0a:9c:f3:6f:f1:e4:0f:30: 10:5e:bf:80:c4:0a:3a:4e:30:aa:e3:46:f2:29:31:9e:9b:ea: d2:96:07:3c:a2:aa:12:91:f0:f0:df:7a:23:eb:48:bf:a4:97: 5e:e9:25:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUxMTAyMTgxODUzWhcNMjUxMTA5MTgxODUzWjAYMRYwFAYD VQQDEw02OTA3YTA4ZS01YWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjr8m9EM3ISBHU2uQcBbosiNJi+sakm40QGGTuUP4kSi2lReAN8xhUgd36Lf j5bqYeyhyEnl277ZYu8BKsnmF1E62VreHKJm+Y/J9zPYbEE87fxA3vHzm7iWvEB0 dSWFfyLQgzatUhkC6dY2glaAw4QijvtxJpkE0oV3u0v/nzAZdHkAk5shF5/ZZlse 4bzYpX+XtpHFejzzZx9yPFZdrmTKfA34ebVnxXMblS/aocRxK8Abzec5xghNTgq3 rP6uP270kFGM72sS7iuVfO02xZjibkPAHpC4qS2SeonNaksQ/lQxdru14RHiWvOJ LuYCIutRG+Ng4umI59v/LbKyYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoGr73N xX8XMBZPH3iMhsw+cTvoMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR8j4Klu7czUU2AO4PO/9vzN/wgZ+oHvYNFtrgicQPT9E0aKQAyvpP FnOKj4KJPItcX3ws7hFhQUc+rblKp8chrRhzZaiq6Y6UP1Aa/hy8SrcrmaJrNXnt L322Cl4T0vynn3Vsy560akJzSuYaWqv7JPrv1PbHwVTYpHCZ1xvmnOnoXiVWFypw G5Jolig5fxKgZe7RhEEP0pqH08mFuHCVtQJB8Ic7V6Dq8QVPI5t5Xx+TM2W4KGhw /aYmg6Ro0Iyvm5eYQtbducmxYwG22m4cCpzzb/HkDzAQXr+AxAo6TjCq40byKTGe m+rSlgc8oqoSkfDw33oj60i/pJde6SUE -----END CERTIFICATE-----Generated at Tue Nov 4 01:06:03 2025 by rpki-client