$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: qOOT1aLjx5KtjPysuuOcHtojPpd2mbKLLy4CSH5XpSA= Subject key identifier: 11:B7:25:5C:2E:B9:77:4F:E8:10:36:14:30:BC:5B:5F:FE:D7:A7:6D Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1121 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 1117 Signing time: Wed 18 Jun 2025 17:14:37 +0000 Manifest this update: Wed 18 Jun 2025 17:14:36 +0000 Manifest next update: Wed 25 Jun 2025 17:14:36 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: 3goCFwayM956E5Xdi+D4pVpmVVlFgoCdtPPaIUwUOr0=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4385 (0x1121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Jun 18 17:14:36 2025 GMT Not After : Jun 25 17:14:36 2025 GMT Subject: CN=6852f3fc-d0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f6:5b:d7:d4:23:cf:3a:de:19:98:d9:60:43: 2e:38:4a:ce:4d:0f:32:83:cb:d8:3e:bc:99:af:1f: 0d:fb:43:46:4c:14:77:5a:8d:81:a9:5a:87:f8:ef: 6c:1c:46:19:5c:5d:14:f2:67:7c:0a:17:b2:e5:51: 7d:c4:af:86:97:b0:d3:91:3d:28:b1:81:ee:b4:f6: ac:db:4f:96:cc:50:27:70:93:53:f5:a4:1e:77:d8: b6:eb:0d:0b:5e:54:2c:28:59:d3:ac:5a:29:ca:a1: f1:03:72:a4:3d:e3:0c:b6:f9:95:31:f0:15:6c:5b: 85:8f:79:57:4e:ff:8a:5d:e6:33:d4:7a:ee:24:2a: 6e:6e:37:f2:76:85:24:ef:ae:a2:51:8b:be:ae:fb: c9:c8:e8:8a:19:2c:c4:6f:77:f7:6a:01:a6:bf:be: 61:61:93:45:e7:80:33:ce:5d:51:10:ba:6f:2d:1a: 4f:c6:b0:47:a6:db:23:30:e8:f0:17:ce:96:07:61: f2:cd:6a:ee:6e:09:0b:02:6b:6a:97:cb:37:b2:7b: 31:40:69:a7:06:67:aa:bb:9d:8d:fd:e4:6d:32:77: 4c:58:8a:44:c8:78:74:65:84:c1:e0:1f:49:98:b9: e0:13:b7:b1:3a:2e:78:f5:57:d1:5d:4d:b5:aa:9d: 7f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B7:25:5C:2E:B9:77:4F:E8:10:36:14:30:BC:5B:5F:FE:D7:A7:6D X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ae:58:65:4d:e4:6e:84:74:84:fc:e4:b6:b7:fa:b3:eb:59: 5e:2a:85:24:8f:d0:98:8d:92:2c:c6:26:c2:c1:d7:e3:fd:ad: 74:3d:96:7c:30:d8:cf:a0:69:75:4d:4e:c0:86:73:d2:b9:84: 7b:23:b2:c4:b3:45:0b:84:7c:22:da:d1:95:a5:e7:cc:3f:96: fe:f5:e2:38:b6:1b:0d:ca:85:04:4a:d2:c1:7d:4f:4f:f3:28: 9a:d5:df:98:9e:38:89:f3:ce:2f:1b:f1:e4:68:eb:0c:00:d1: cf:24:8f:6e:a2:4c:b6:2b:27:db:5b:44:5e:50:7f:b3:84:43: cd:22:96:a4:45:c8:1a:0d:53:9a:7f:0d:3c:0c:cb:56:86:a8: ac:60:51:3f:ee:13:49:ba:22:53:5d:08:69:e1:5c:1e:7b:0e: 75:d1:9a:2d:7d:e2:69:d2:b2:30:62:92:99:e3:e8:85:ad:3c: 5f:ad:e6:7e:bd:aa:2c:e3:9c:4d:0f:e9:2d:d8:c1:bf:b1:d1: ac:fc:48:ce:99:39:e9:51:8b:2c:79:10:d4:7a:7c:8c:a9:6d: 8b:f4:58:70:42:f2:0a:23:cf:bf:1c:bb:b2:83:c7:da:fd:a9: 93:18:ea:37:37:e2:e5:a0:c3:b6:c7:6e:90:80:90:a1:9b:44: 4e:a5:2e:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUwNjE4MTcxNDM2WhcNMjUwNjI1MTcxNDM2WjAYMRYwFAYD VQQDEw02ODUyZjNmYy1kMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPZb19QjzzreGZjZYEMuOErOTQ8yg8vYPryZrx8N+0NGTBR3Wo2BqVqH+O9s HEYZXF0U8md8Chey5VF9xK+Gl7DTkT0osYHutPas20+WzFAncJNT9aQed9i26w0L XlQsKFnTrFopyqHxA3KkPeMMtvmVMfAVbFuFj3lXTv+KXeYz1HruJCpubjfydoUk 766iUYu+rvvJyOiKGSzEb3f3agGmv75hYZNF54Azzl1RELpvLRpPxrBHptsjMOjw F86WB2HyzWrubgkLAmtql8s3snsxQGmnBmequ52N/eRtMndMWIpEyHh0ZYTB4B9J mLngE7exOi549VfRXU21qp1/wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBG3JVwu uXdP6BA2FDC8W1/+16dtMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcrlhlTeRuhHSE/OS2t/qz61leKoUkj9CYjZIsxibCwdfj/a10PZZ8 MNjPoGl1TU7AhnPSuYR7I7LEs0ULhHwi2tGVpefMP5b+9eI4thsNyoUEStLBfU9P 8yia1d+YnjiJ884vG/HkaOsMANHPJI9uoky2KyfbW0ReUH+zhEPNIpakRcgaDVOa fw08DMtWhqisYFE/7hNJuiJTXQhp4Vweew510ZotfeJp0rIwYpKZ4+iFrTxfreZ+ vaos45xND+kt2MG/sdGs/EjOmTnpUYsseRDUenyMqW2L9FhwQvIKI8+/HLuyg8fa /amTGOo3N+LloMO2x26QgJChm0ROpS6v -----END CERTIFICATE-----Generated at Thu Jun 19 15:27:01 2025 by rpki-client