$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: wtjhBsVI7XcFiurQDlmgU3BCByu38AEmjngj8b2PI38= Subject key identifier: 88:CF:F8:11:C8:52:B1:31:6D:F3:EC:7A:EE:CA:34:18:BC:5F:86:F3 Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 113B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 1131 Signing time: Fri 08 Aug 2025 17:27:01 +0000 Manifest this update: Fri 08 Aug 2025 17:27:00 +0000 Manifest next update: Fri 15 Aug 2025 17:27:00 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: mf7swijVHnnb/RlEwbGBzfNparOU6cw1lIBRKkK+PAk=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4411 (0x113b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Aug 8 17:27:00 2025 GMT Not After : Aug 15 17:27:00 2025 GMT Subject: CN=68963364-f5f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2e:9c:6c:af:23:fe:04:29:eb:52:d0:0a:06: 18:e7:e5:26:c5:49:fe:8a:5e:64:14:c2:7f:02:17: 60:0f:3e:df:bd:fe:6e:fa:35:c3:09:95:4f:44:ec: f4:41:6f:e1:65:ed:41:3a:13:56:7e:71:12:25:9c: 9f:38:50:93:87:5f:d6:9c:d4:f3:ba:4c:1f:1e:94: 9a:a5:66:01:7f:23:fc:99:89:b6:a3:a4:e0:b0:73: b7:e7:37:b4:0c:13:eb:ab:73:ec:3c:5f:6e:23:e1: 49:97:16:dc:3a:7b:1c:9d:17:72:b9:a0:8b:12:0a: f5:d1:44:37:1a:b8:dc:f0:e6:db:32:90:f4:4d:64: 4f:ee:0e:31:f9:4d:fe:0f:fa:dc:63:19:23:c0:91: f4:55:1b:dd:e1:d3:c5:da:0a:7d:f6:d2:f4:25:94: df:0e:ca:7b:ec:ac:9f:be:18:9f:cb:6d:6f:eb:b5: be:5d:65:c7:a3:74:48:99:6c:5c:e3:1f:bf:29:9a: bd:83:3a:8b:ee:82:13:de:ed:cc:d6:d2:36:22:74: ea:82:5b:c0:15:c5:9b:96:a2:20:67:46:97:12:51: 7d:8e:d0:90:e2:2f:31:88:fe:5f:bb:aa:f6:e4:1c: 62:8d:58:c9:e2:bc:fe:dc:2e:3e:b3:a1:f3:7f:7d: cb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CF:F8:11:C8:52:B1:31:6D:F3:EC:7A:EE:CA:34:18:BC:5F:86:F3 X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:24:6e:eb:2e:1b:a7:cd:cc:48:ec:b5:64:66:09:9c:70:9f: d3:e6:86:66:e7:9d:dc:03:10:43:fb:a0:be:e0:91:ff:2b:7d: 42:a4:7f:37:99:95:4e:ef:74:aa:72:18:79:05:17:77:10:f9: 1f:f4:96:2e:7f:a3:45:33:02:0f:ba:c1:d5:64:5a:8a:13:97: 1d:d2:57:a4:0b:83:6f:3c:1d:6b:36:6c:86:3f:a2:5c:fa:99: b5:4a:34:ab:b5:f4:b5:91:3e:e3:8a:d9:63:d3:b0:d1:af:77: 49:8f:71:63:86:d2:5b:30:d0:75:96:a8:ff:4e:ca:75:ad:6a: 3e:6f:7f:55:ba:a6:fc:36:38:8c:a3:50:ec:58:c5:dc:ba:90: 19:49:07:88:b9:f2:e5:6b:43:f4:aa:4d:2f:64:08:30:2f:40: 89:2b:45:d2:52:f0:46:66:7c:6a:72:b1:4a:2c:e5:fd:f9:34: 63:ca:23:84:65:ca:e8:28:b3:85:4d:f7:d3:17:84:2d:9f:fb: 8a:5b:e6:ac:b2:3b:74:ce:40:fa:f1:0c:a3:2f:8f:46:9d:0a: 05:f5:9c:dd:3a:76:3a:3d:de:7b:81:ed:83:65:30:53:cc:21: 93:41:d3:d2:64:29:b1:58:db:33:3d:f2:50:ed:64:e3:29:26: 2e:43:70:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUwODA4MTcyNzAwWhcNMjUwODE1MTcyNzAwWjAYMRYwFAYD VQQDEw02ODk2MzM2NC1mNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvi6cbK8j/gQp61LQCgYY5+UmxUn+il5kFMJ/AhdgDz7fvf5u+jXDCZVPROz0 QW/hZe1BOhNWfnESJZyfOFCTh1/WnNTzukwfHpSapWYBfyP8mYm2o6TgsHO35ze0 DBPrq3PsPF9uI+FJlxbcOnscnRdyuaCLEgr10UQ3Grjc8ObbMpD0TWRP7g4x+U3+ D/rcYxkjwJH0VRvd4dPF2gp99tL0JZTfDsp77Kyfvhify21v67W+XWXHo3RImWxc 4x+/KZq9gzqL7oIT3u3M1tI2InTqglvAFcWblqIgZ0aXElF9jtCQ4i8xiP5fu6r2 5BxijVjJ4rz+3C4+s6Hzf33LlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjP+BHI UrExbfPseu7KNBi8X4bzMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbJG7rLhunzcxI7LVkZgmccJ/T5oZm553cAxBD+6C+4JH/K31CpH83 mZVO73Sqchh5BRd3EPkf9JYuf6NFMwIPusHVZFqKE5cd0lekC4NvPB1rNmyGP6Jc +pm1SjSrtfS1kT7jitlj07DRr3dJj3FjhtJbMNB1lqj/Tsp1rWo+b39Vuqb8NjiM o1DsWMXcupAZSQeIufLla0P0qk0vZAgwL0CJK0XSUvBGZnxqcrFKLOX9+TRjyiOE ZcroKLOFTffTF4Qtn/uKW+assjt0zkD68QyjL49GnQoF9ZzdOnY6Pd57ge2DZTBT zCGTQdPSZCmxWNszPfJQ7WTjKSYuQ3Dx -----END CERTIFICATE-----Generated at Sun Aug 10 04:24:41 2025 by rpki-client