$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: ENlbyiq9fryzOW8MELsaLC4JWbnLzxenK3bOAOJugno= Subject key identifier: B8:7A:63:4C:31:6C:DC:A7:C1:54:84:A0:3E:F4:B0:2F:E8:6D:BA:91 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0C82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C66 Signing time: Fri 06 Jun 2025 18:27:44 +0000 Manifest this update: Fri 06 Jun 2025 18:27:44 +0000 Manifest next update: Fri 13 Jun 2025 18:27:44 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: THKlqgv5+gl4s1N3rERblrRAOqiaW4GxVoZHCWnv5eE=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 18:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Jun 6 18:27:44 2025 GMT Not After : Jun 13 18:27:44 2025 GMT Subject: CN=68433320-9eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a1:24:b1:4e:95:bf:30:ed:ee:70:3c:57:f2: b4:40:b3:ef:34:23:cd:d1:2c:63:f9:77:31:a5:88: 52:0c:7d:0b:f7:41:56:81:ad:75:cc:8f:56:ba:02: 87:f2:79:94:30:31:f4:ae:17:62:22:51:90:18:a7: 87:d3:f8:f3:9a:25:4b:41:21:e8:a5:8b:3e:b9:2a: 4c:ef:c5:7a:e8:f4:00:fd:8f:27:aa:b4:e7:13:ef: ed:77:57:88:e4:b4:dd:08:e7:fe:3a:4c:12:97:1b: 0c:08:51:d1:4b:a4:48:c6:da:98:7c:64:a4:89:9b: 24:54:25:e0:20:75:d2:00:7a:3a:98:bb:7a:2a:d3: 9e:46:3d:80:5f:3a:77:74:61:4d:65:65:01:06:b7: 68:92:86:d2:35:74:af:4e:f6:1c:58:dd:27:34:ff: 74:6a:c9:f6:4a:6f:7a:7e:9a:b7:9b:48:d0:cd:8c: 14:4a:4f:b0:30:34:e3:64:0b:97:7a:84:00:64:17: 80:9e:92:99:02:77:70:fe:b4:71:5d:78:d9:7e:10: c0:d4:17:66:3d:9c:ee:25:3a:35:f8:82:a6:3f:27: ce:d8:ae:6d:6c:65:77:c6:0e:5b:c7:ef:23:8e:b2: db:ca:05:dc:9a:b2:e6:66:2f:15:3c:b2:9f:2b:a1: c4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:7A:63:4C:31:6C:DC:A7:C1:54:84:A0:3E:F4:B0:2F:E8:6D:BA:91 X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:81:ef:bd:86:3e:bd:bc:e2:bc:51:20:18:68:65:74:b1:5a: 05:73:e1:8c:e4:b8:46:57:fb:34:c8:3e:e0:ef:60:bf:d5:fb: fd:97:11:81:ff:8a:8f:ea:57:a8:83:b7:5d:17:c1:3a:49:c7: 1b:4d:eb:99:df:f3:37:b4:c8:94:76:7c:86:c4:4e:f6:e8:60: f5:99:a4:c6:39:2f:e3:6b:3f:56:dc:1c:34:fb:2f:f9:e0:0b: 5a:62:45:1d:64:e9:a0:dd:50:9a:98:72:dd:d1:f9:ab:b8:ef: 16:7d:b7:ce:49:68:8d:48:40:f0:bb:c0:eb:75:46:ae:d6:40: 0c:6e:d7:88:9f:8c:c2:fc:a0:0c:f2:99:ab:ba:0c:22:0f:19: 48:13:43:8c:a8:6d:39:29:9f:0a:42:57:8f:4e:80:0e:62:00: f0:a3:db:79:b8:da:2c:1c:ec:7f:a8:a9:71:17:e6:3b:ce:06: 7b:59:ad:59:27:8a:e5:f0:d3:f7:04:b8:be:b3:a7:48:40:51: 20:0e:15:0f:96:a7:47:01:2e:64:aa:80:c8:7a:4c:95:37:6f: 35:9b:9b:1d:15:1d:a3:9e:4f:98:89:55:96:64:8a:4d:0c:d5: 44:73:66:37:31:6f:e4:d6:07:74:f8:ea:ec:23:0c:97:f4:42: 87:96:5d:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUwNjA2MTgyNzQ0WhcNMjUwNjEzMTgyNzQ0WjAYMRYwFAYD VQQDEw02ODQzMzMyMC05ZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqEksU6VvzDt7nA8V/K0QLPvNCPN0Sxj+XcxpYhSDH0L90FWga11zI9WugKH 8nmUMDH0rhdiIlGQGKeH0/jzmiVLQSHopYs+uSpM78V66PQA/Y8nqrTnE+/td1eI 5LTdCOf+OkwSlxsMCFHRS6RIxtqYfGSkiZskVCXgIHXSAHo6mLt6KtOeRj2AXzp3 dGFNZWUBBrdokobSNXSvTvYcWN0nNP90asn2Sm96fpq3m0jQzYwUSk+wMDTjZAuX eoQAZBeAnpKZAndw/rRxXXjZfhDA1BdmPZzuJTo1+IKmPyfO2K5tbGV3xg5bx+8j jrLbygXcmrLmZi8VPLKfK6HE8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLh6Y0wx bNynwVSEoD70sC/obbqRMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACge+9hj69vOK8USAYaGV0sVoFc+GM5LhGV/s0yD7g72C/1fv9lxGB /4qP6leog7ddF8E6SccbTeuZ3/M3tMiUdnyGxE726GD1maTGOS/jaz9W3Bw0+y/5 4AtaYkUdZOmg3VCamHLd0fmruO8WfbfOSWiNSEDwu8DrdUau1kAMbteIn4zC/KAM 8pmrugwiDxlIE0OMqG05KZ8KQlePToAOYgDwo9t5uNosHOx/qKlxF+Y7zgZ7Wa1Z J4rl8NP3BLi+s6dIQFEgDhUPlqdHAS5kqoDIekyVN281m5sdFR2jnk+YiVWWZIpN DNVEc2Y3MW/k1gd0+OrsIwyX9EKHll2x -----END CERTIFICATE-----Generated at Sun Jun 8 19:58:19 2025 by rpki-client