$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: aUxcBIJrM6T1qbefceps//HbMewivlveTduvITWChTc= Subject key identifier: 2F:C5:90:D8:BB:F3:34:32:55:FD:77:57:12:DE:FD:F5:53:2D:4A:2A Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0C6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C50 Signing time: Thu 24 Apr 2025 18:23:27 +0000 Manifest this update: Thu 24 Apr 2025 18:23:27 +0000 Manifest next update: Thu 01 May 2025 18:23:27 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: aK9VwPWsK3t6mu5X0AofDFVJKyP+jNgbEV7stE2TUNY=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3180 (0xc6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Apr 24 18:23:27 2025 GMT Not After : May 1 18:23:27 2025 GMT Subject: CN=680a819f-6ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:75:97:21:30:82:c8:8d:74:29:d7:04:78:fd: fc:6e:d9:f6:8b:9e:1a:09:f9:29:fa:37:84:69:88: 37:5e:61:f8:d5:82:78:f4:21:f4:ee:db:be:a2:30: 51:8e:11:be:7a:25:7a:7a:06:f8:fd:cc:d6:f0:79: 41:8a:b6:50:5d:31:b0:b1:e5:0f:c8:50:54:09:64: 0b:4d:ee:13:00:fa:c3:9f:04:1a:ea:8b:74:a1:e6: c9:1e:69:bf:c3:c8:af:3d:80:8a:96:97:d8:d1:ec: 1f:b4:88:00:59:9a:60:cc:f9:02:18:80:e6:8f:2a: b1:ae:8d:2d:c9:6f:d0:41:a1:05:0f:d2:fb:bf:2e: 7f:d3:4c:ed:88:14:08:dc:4a:c6:a2:f0:47:47:11: df:8c:9f:eb:14:b6:3a:90:a3:cb:ee:c7:55:ca:0d: 31:7d:11:be:85:54:20:59:c7:7d:15:e0:c0:a1:39: b3:3f:05:9e:d6:c7:0b:52:1f:ee:5d:6d:be:7e:0a: 21:2c:d3:ac:e1:39:84:b4:07:c9:69:50:ec:aa:8b: d8:25:ad:d3:0f:60:91:e1:5d:d2:36:67:11:5a:21: 8f:dc:6b:75:1a:84:a8:1a:a1:49:de:cd:94:7f:f2: 74:8b:80:62:20:5f:1d:3f:1f:36:42:7e:84:2f:26: e7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C5:90:D8:BB:F3:34:32:55:FD:77:57:12:DE:FD:F5:53:2D:4A:2A X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:92:b8:0c:8b:b7:2e:bb:d9:a3:46:f7:df:cc:80:a1:0d:66: 2c:44:a0:c8:76:a2:02:5b:e1:5c:49:c0:54:e6:81:cc:99:58: 7f:31:55:28:f6:14:5d:7e:d3:da:ed:8a:37:70:10:f6:e2:d0: 27:f9:50:8b:a7:4f:d4:39:55:d8:28:11:52:a7:6d:c0:14:f1: 7f:9e:50:92:2b:df:36:b6:47:d1:20:ef:70:22:25:13:f7:21: 4d:cd:ae:c7:72:4f:68:c1:53:e0:69:ec:e7:2a:d1:57:12:4b: 25:7c:28:70:c3:3b:b0:b2:27:83:77:1a:45:29:47:4e:82:2c: 6f:9c:cb:51:93:d0:71:08:4d:29:83:56:24:4f:8d:9c:99:29: 74:75:ac:fb:1d:0a:f5:7b:e0:51:b9:2e:f3:81:41:42:29:4e: 1c:2a:db:e0:e2:b9:7b:0c:5c:bc:94:66:92:88:c6:6a:1f:8e: e0:de:08:fa:1e:52:b2:02:22:40:dc:e6:e3:fb:71:66:ed:3d: 7c:82:a2:67:2b:a2:6e:eb:6a:5d:4a:b9:64:25:d1:e9:96:4c: 55:58:1e:17:5f:28:1f:be:1d:3e:96:89:b1:ec:c5:ba:e5:2e: 7d:f0:b1:1f:e7:a1:a7:52:9f:70:79:6d:21:f5:a4:a2:42:13: 30:05:88:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUwNDI0MTgyMzI3WhcNMjUwNTAxMTgyMzI3WjAYMRYwFAYD VQQDEw02ODBhODE5Zi02ZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXWXITCCyI10KdcEeP38btn2i54aCfkp+jeEaYg3XmH41YJ49CH07tu+ojBR jhG+eiV6egb4/czW8HlBirZQXTGwseUPyFBUCWQLTe4TAPrDnwQa6ot0oebJHmm/ w8ivPYCKlpfY0ewftIgAWZpgzPkCGIDmjyqxro0tyW/QQaEFD9L7vy5/00ztiBQI 3ErGovBHRxHfjJ/rFLY6kKPL7sdVyg0xfRG+hVQgWcd9FeDAoTmzPwWe1scLUh/u XW2+fgohLNOs4TmEtAfJaVDsqovYJa3TD2CR4V3SNmcRWiGP3Gt1GoSoGqFJ3s2U f/J0i4BiIF8dPx82Qn6ELybniQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/FkNi7 8zQyVf13VxLe/fVTLUoqMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3krgMi7cuu9mjRvffzIChDWYsRKDIdqICW+FcScBU5oHMmVh/MVUo 9hRdftPa7Yo3cBD24tAn+VCLp0/UOVXYKBFSp23AFPF/nlCSK982tkfRIO9wIiUT 9yFNza7Hck9owVPgaeznKtFXEkslfChwwzuwsieDdxpFKUdOgixvnMtRk9BxCE0p g1YkT42cmSl0daz7HQr1e+BRuS7zgUFCKU4cKtvg4rl7DFy8lGaSiMZqH47g3gj6 HlKyAiJA3Obj+3Fm7T18gqJnK6Ju62pdSrlkJdHplkxVWB4XXygfvh0+lomx7MW6 5S598LEf56GnUp9weW0h9aSiQhMwBYjm -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:58 2025 by rpki-client