$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: FqzuG9Q3HpgARPh85HRsUxZUnPWfoLlO4Xa2Zo42wHs= Subject key identifier: 58:81:79:06:0C:06:BF:15:6F:8B:52:F1:6B:12:E8:3D:EE:BC:9B:CE Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0CD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0CB4 Signing time: Tue 04 Nov 2025 18:24:36 +0000 Manifest this update: Tue 04 Nov 2025 18:24:36 +0000 Manifest next update: Tue 11 Nov 2025 18:24:36 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: 7h2Z2Jdnp0eIPWaWKojv90HVHVf6Siez3c1+g0qCghA=) 2: 618AD7B6638A11F08BC2A840C4F9AE02.roa (hash: MwSFvEabk32pabHGDjMhMjg7Y9hSaRRoCFJNVkHfvCo=) 3: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) 4: 610856EC638A11F08BC2A840C4F9AE02.roa (hash: mM2/OSyuyrdTMbuzL984YaUAfl+IdF87FO8qvYOz9Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Nov 4 18:24:36 2025 GMT Not After : Nov 11 18:24:36 2025 GMT Subject: CN=690a44e4-c85d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4c:1a:b9:a3:b5:c2:cc:7d:1f:3c:ab:2a:65: 11:d0:f2:99:30:0d:f1:5a:27:2f:0a:91:04:c2:e2: d5:dd:6b:ff:e4:bb:93:fb:64:92:8a:09:fc:0e:cd: 57:70:9d:bf:1c:0a:19:5e:c3:9f:b0:e5:7c:f5:12: 8a:9e:61:e3:09:66:8a:3f:4e:35:18:53:3e:2b:6f: 02:0c:14:e0:82:21:ff:e1:aa:fe:b9:35:d0:62:56: 54:bd:1b:fa:76:04:39:fa:22:9a:ae:91:bc:3d:b6: c5:1c:b8:89:5e:53:43:c9:dd:ca:ae:a9:95:95:71: db:d4:d8:ce:99:a8:1e:bd:d6:c3:ec:f8:a8:3e:35: b9:1f:f7:42:91:c7:a0:4b:93:80:8b:62:da:61:aa: 83:0a:30:3f:dc:cb:b0:67:2a:09:4e:c1:43:4e:5d: f2:76:c2:f7:ee:5f:a3:13:b4:55:84:00:63:5a:16: 30:1b:10:0d:88:04:84:bd:94:9a:86:03:4a:59:66: 19:5e:c3:5c:b5:93:b9:51:5a:23:01:d7:f6:97:11: 74:c6:0b:d7:f7:90:8d:8e:f1:fb:6f:f8:07:b3:5f: c3:12:a9:f4:7c:90:4d:2a:bf:db:c6:3b:1c:04:2a: 9c:cb:b8:1d:ac:27:17:b6:ab:4e:4d:54:c0:30:63: 68:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:81:79:06:0C:06:BF:15:6F:8B:52:F1:6B:12:E8:3D:EE:BC:9B:CE X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:b3:99:e6:b0:72:d2:79:8f:59:25:c5:30:45:6b:a9:58:44: 20:25:ba:59:c2:c0:e0:27:12:c2:e9:b7:11:04:6e:0e:98:08: 78:10:9d:4a:b1:3a:cb:35:26:1d:72:8a:50:73:0b:6a:1b:7e: 38:14:6f:13:3b:97:aa:f4:4b:aa:f8:90:05:bc:71:da:5f:b5: 69:7e:4b:6c:64:d8:21:83:0b:b6:cb:34:db:3a:9d:85:f2:a7: 98:24:7b:7d:65:a0:66:7b:f2:e2:84:66:94:e4:af:cb:bb:d0: 08:57:29:7d:58:02:22:b8:fd:01:dc:d8:6c:e9:2f:cd:98:e1: 40:98:02:84:9e:52:fe:cf:fb:a7:82:3f:6c:d8:48:f5:ea:17: ca:d0:48:dd:5a:14:66:90:3a:2c:28:48:70:d6:f2:6a:59:31: 39:b5:e7:3c:a3:b4:53:8c:85:a0:b7:9c:4c:04:72:94:7b:c4: dd:c9:43:1f:ee:6f:80:46:a0:fb:e2:dd:ba:ba:d5:15:79:d9: aa:f8:d0:54:88:71:d3:97:66:51:38:8c:9b:2f:96:cc:38:06: 21:1a:2d:72:12:90:c0:76:1e:7f:35:ff:8e:57:f4:6c:86:8c: 96:bd:5b:90:68:87:34:af:22:d5:1d:b7:ab:ab:86:62:61:8c: a3:05:a8:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUxMTA0MTgyNDM2WhcNMjUxMTExMTgyNDM2WjAYMRYwFAYD VQQDEw02OTBhNDRlNC1jODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEwauaO1wsx9HzyrKmUR0PKZMA3xWicvCpEEwuLV3Wv/5LuT+2SSign8Ds1X cJ2/HAoZXsOfsOV89RKKnmHjCWaKP041GFM+K28CDBTggiH/4ar+uTXQYlZUvRv6 dgQ5+iKarpG8PbbFHLiJXlNDyd3KrqmVlXHb1NjOmagevdbD7PioPjW5H/dCkceg S5OAi2LaYaqDCjA/3MuwZyoJTsFDTl3ydsL37l+jE7RVhABjWhYwGxANiASEvZSa hgNKWWYZXsNctZO5UVojAdf2lxF0xgvX95CNjvH7b/gHs1/DEqn0fJBNKr/bxjsc BCqcy7gdrCcXtqtOTVTAMGNo9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiBeQYM Br8Vb4tS8WsS6D3uvJvOMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4s5nmsHLSeY9ZJcUwRWupWEQgJbpZwsDgJxLC6bcRBG4OmAh4EJ1K sTrLNSYdcopQcwtqG344FG8TO5eq9Euq+JAFvHHaX7VpfktsZNghgwu2yzTbOp2F 8qeYJHt9ZaBme/LihGaU5K/Lu9AIVyl9WAIiuP0B3Nhs6S/NmOFAmAKEnlL+z/un gj9s2Ej16hfK0EjdWhRmkDosKEhw1vJqWTE5tec8o7RTjIWgt5xMBHKUe8TdyUMf 7m+ARqD74t26utUVedmq+NBUiHHTl2ZROIybL5bMOAYhGi1yEpDAdh5/Nf+OV/Rs hoyWvVuQaIc0ryLVHberq4ZiYYyjBaiW -----END CERTIFICATE-----Generated at Wed Nov 5 01:57:42 2025 by rpki-client