$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: G2FFi9WrAeU6OUANAQ7kX9M6G6i3U/A8r/Qa+MX4Hz8= Subject key identifier: 67:3F:DC:F3:02:94:4F:C3:C9:C6:6C:5A:A3:7D:E0:94:D8:24:A2:6F Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C6B Signing time: Mon 16 Jun 2025 18:20:58 +0000 Manifest this update: Mon 16 Jun 2025 18:20:58 +0000 Manifest next update: Mon 23 Jun 2025 18:20:58 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: aU84yOeTkIBKljaMQXKW7IB8eSaZLU/BkUOMRC3ex6Y=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 18:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Jun 16 18:20:58 2025 GMT Not After : Jun 23 18:20:58 2025 GMT Subject: CN=6850608a-c125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bd:59:31:0f:3c:cf:7c:f4:9d:82:d3:99:34: 38:ae:5c:f6:24:4c:89:81:55:f9:e4:00:ae:0a:2f: 45:1d:71:58:db:70:b6:0c:45:65:91:9b:e9:44:b7: 78:83:e1:c1:b2:e3:19:e0:a7:9e:f2:8a:36:70:90: b8:c5:db:72:b4:e8:bc:7b:92:08:2f:75:2f:d7:1b: 18:9a:fc:a1:eb:e3:f5:03:a3:bd:59:63:69:9e:f5: d3:90:38:31:c1:ce:0b:f1:74:43:5f:15:06:c5:a6: 0f:e8:fa:11:d4:39:1e:f4:9b:4a:a3:17:6a:6c:a1: a9:ab:d3:50:2b:1a:53:e6:04:0d:4e:97:23:ec:f8: bd:7b:a6:0e:f4:b9:3f:b9:ff:cb:ab:ab:57:ab:23: 4f:dc:c0:41:e5:e1:2f:fe:32:db:00:a6:f3:e3:aa: 1d:00:dc:c2:1f:42:7a:ed:02:09:d5:d1:3d:39:79: cc:db:50:87:ec:cb:75:45:33:07:51:47:a1:76:67: ac:1b:7d:ee:09:b7:d8:2c:43:45:de:9e:78:01:dd: 5f:32:73:bb:65:de:03:97:c0:f8:c5:27:b1:97:18: 05:0e:b1:aa:40:b1:2e:f4:0c:fd:cd:73:cc:b4:fa: f2:16:7a:d2:2a:c7:4b:48:4d:df:a7:42:5e:91:04: ce:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3F:DC:F3:02:94:4F:C3:C9:C6:6C:5A:A3:7D:E0:94:D8:24:A2:6F X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:13:80:3e:1a:2b:b6:b1:7d:22:a9:db:63:63:c1:59:d8:2c: d3:f6:37:d1:c5:03:db:20:f6:0f:50:c7:00:51:20:cf:9e:ca: 54:ce:97:e8:5b:5c:34:ac:33:49:94:4f:99:8f:cf:43:62:7e: a4:f7:79:6f:b0:b5:cb:aa:1b:99:6d:e4:41:f4:f8:da:36:e7: 4a:c6:91:f9:fe:6d:46:41:8c:e5:09:b7:54:9e:03:15:10:f9: f6:ee:66:10:ee:32:f2:d1:7b:32:c6:c2:e4:b9:fa:4d:c5:d3: 40:0b:a4:40:18:3f:82:90:25:bf:ef:02:6f:1d:b7:50:d3:66: df:74:4b:89:de:f7:72:d6:10:31:3e:f5:f8:2b:84:6f:2c:91: a2:7b:5c:04:1c:de:a6:a6:99:ee:86:07:af:f9:47:56:a8:0d: 61:0f:f7:1c:f4:9a:80:d1:fc:1f:04:c9:b3:5b:b0:b6:62:44: 95:fb:93:ba:7f:f0:7a:89:9a:a1:8c:36:4e:5c:2b:bf:32:76: c2:83:8b:81:b1:25:b5:63:98:0e:5c:22:dd:dd:f3:60:f0:a4: f5:10:2a:ab:b2:48:48:25:9f:8c:b3:d4:82:95:79:14:04:99: 02:2c:66:ca:f3:df:55:a7:34:f7:40:79:d6:d2:d7:75:4d:bd: 60:d5:27:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUwNjE2MTgyMDU4WhcNMjUwNjIzMTgyMDU4WjAYMRYwFAYD VQQDEw02ODUwNjA4YS1jMTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb1ZMQ88z3z0nYLTmTQ4rlz2JEyJgVX55ACuCi9FHXFY23C2DEVlkZvpRLd4 g+HBsuMZ4Kee8oo2cJC4xdtytOi8e5IIL3Uv1xsYmvyh6+P1A6O9WWNpnvXTkDgx wc4L8XRDXxUGxaYP6PoR1Dke9JtKoxdqbKGpq9NQKxpT5gQNTpcj7Pi9e6YO9Lk/ uf/Lq6tXqyNP3MBB5eEv/jLbAKbz46odANzCH0J67QIJ1dE9OXnM21CH7Mt1RTMH UUehdmesG33uCbfYLENF3p54Ad1fMnO7Zd4Dl8D4xSexlxgFDrGqQLEu9Az9zXPM tPryFnrSKsdLSE3fp0JekQTOAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGc/3PMC lE/DycZsWqN94JTYJKJvMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCME4A+Giu2sX0iqdtjY8FZ2CzT9jfRxQPbIPYPUMcAUSDPnspUzpfo W1w0rDNJlE+Zj89DYn6k93lvsLXLqhuZbeRB9PjaNudKxpH5/m1GQYzlCbdUngMV EPn27mYQ7jLy0XsyxsLkufpNxdNAC6RAGD+CkCW/7wJvHbdQ02bfdEuJ3vdy1hAx PvX4K4RvLJGie1wEHN6mppnuhgev+UdWqA1hD/cc9JqA0fwfBMmzW7C2YkSV+5O6 f/B6iZqhjDZOXCu/MnbCg4uBsSW1Y5gOXCLd3fNg8KT1ECqrskhIJZ+Ms9SClXkU BJkCLGbK899VpzT3QHnW0td1Tb1g1SfU -----END CERTIFICATE-----Generated at Tue Jun 17 23:59:50 2025 by rpki-client