$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: QskBX8wF/bD7pzUZX6wYeF+ohhuc5DxZF37ukMwsGcI= Subject key identifier: A0:19:9C:01:C1:63:95:B2:B6:72:EE:0A:3F:AF:6E:5F:A3:D7:3E:EC Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0CA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C87 Signing time: Fri 08 Aug 2025 18:36:26 +0000 Manifest this update: Fri 08 Aug 2025 18:36:26 +0000 Manifest next update: Fri 15 Aug 2025 18:36:26 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: UvQtL2s4nHExYbfbCbp9dY1+q36chRzuu99AFlxOris=) 2: 618AD7B6638A11F08BC2A840C4F9AE02.roa (hash: MwSFvEabk32pabHGDjMhMjg7Y9hSaRRoCFJNVkHfvCo=) 3: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) 4: 610856EC638A11F08BC2A840C4F9AE02.roa (hash: mM2/OSyuyrdTMbuzL984YaUAfl+IdF87FO8qvYOz9Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Aug 8 18:36:26 2025 GMT Not After : Aug 15 18:36:26 2025 GMT Subject: CN=689643aa-31d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:86:4e:c4:f7:ef:61:66:96:5c:0a:3e:5d:f0: 20:c2:fb:11:40:7e:84:93:d9:14:ea:cf:1e:76:37: 88:2b:ce:eb:b7:bf:b3:d6:7e:fe:e3:b4:37:d2:2c: e3:d7:06:30:9a:44:b6:70:e3:41:e3:f1:91:0f:4a: c2:9a:30:84:ab:0c:a7:9f:f2:e4:b4:a3:c3:e6:69: e4:b2:ee:01:aa:99:dc:e5:5d:d5:dd:e2:9a:1f:44: be:41:10:6f:36:ba:0b:91:86:c6:4b:0e:3e:b9:64: 4c:16:d0:20:04:7a:08:62:ff:40:b7:7a:db:91:d9: d0:18:65:ae:0a:d1:98:07:71:e7:52:5b:45:6f:c5: ee:d7:f1:dd:fd:95:1e:fa:dd:47:c6:4f:b4:58:0b: 55:55:1d:ce:41:95:66:b7:4e:c3:01:a6:d9:18:67: 29:8a:db:7a:36:77:df:d6:3b:0b:15:ba:81:7b:43: 27:95:eb:e0:e6:9d:7c:4c:ad:e6:1f:d2:4b:da:39: d2:2c:86:25:72:b1:b0:30:44:64:63:81:3b:16:50: 2b:39:d5:13:61:05:ff:18:4f:dc:1e:8b:0e:5a:00: a5:ca:23:29:13:6e:3f:79:a1:c3:d4:fd:76:00:cb: 9c:51:81:e8:ee:79:c1:38:31:df:55:01:9f:1f:33: 37:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:19:9C:01:C1:63:95:B2:B6:72:EE:0A:3F:AF:6E:5F:A3:D7:3E:EC X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:56:d2:55:0e:45:b1:5a:a6:46:5e:7a:79:aa:92:0d:13:4d: 10:27:d3:4b:6c:e1:4f:f8:fc:db:84:04:45:a9:fe:b6:f5:2c: 9c:fd:35:52:14:02:22:19:67:b1:ea:6c:1b:49:6a:ea:8d:ab: 82:25:ca:02:b5:b4:45:ec:02:ae:47:36:36:ce:49:7c:63:09: 0f:ca:bf:32:57:e1:7d:c1:5b:a1:0f:28:df:51:02:ab:cf:00: 9b:10:af:68:bc:9c:c0:71:ed:0c:cc:af:51:6b:d9:fc:bc:bd: d1:55:60:89:d8:95:5a:f4:c9:6f:c8:81:e8:89:c2:2a:f2:6a: c4:ec:7c:4e:fa:11:a1:6b:bd:9e:04:f6:ca:4b:4c:4b:c1:6d: 6d:49:a5:85:22:71:63:c7:96:28:4d:0b:95:1f:44:56:74:bd: 2b:b5:8a:f4:5e:a5:c7:52:4c:ab:c7:13:d7:3e:e2:9d:03:6b: 23:f6:2a:3a:d4:68:0d:dc:ee:b7:37:14:c2:d4:dd:72:77:39: 70:2d:ce:24:97:2c:b6:56:60:0c:83:dd:e3:42:0d:28:20:ce: ed:b0:cc:ff:11:09:8c:48:f1:3f:04:ef:cc:d7:c7:a4:e7:2a: 86:5d:fb:45:48:16:48:2a:1f:ae:f7:ae:a3:fb:d5:33:5d:dd: de:f7:b6:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUwODA4MTgzNjI2WhcNMjUwODE1MTgzNjI2WjAYMRYwFAYD VQQDEw02ODk2NDNhYS0zMWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYZOxPfvYWaWXAo+XfAgwvsRQH6Ek9kU6s8edjeIK87rt7+z1n7+47Q30izj 1wYwmkS2cONB4/GRD0rCmjCEqwynn/LktKPD5mnksu4Bqpnc5V3V3eKaH0S+QRBv NroLkYbGSw4+uWRMFtAgBHoIYv9At3rbkdnQGGWuCtGYB3HnUltFb8Xu1/Hd/ZUe +t1Hxk+0WAtVVR3OQZVmt07DAabZGGcpitt6Nnff1jsLFbqBe0Mnlevg5p18TK3m H9JL2jnSLIYlcrGwMERkY4E7FlArOdUTYQX/GE/cHosOWgClyiMpE24/eaHD1P12 AMucUYHo7nnBODHfVQGfHzM3hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAZnAHB Y5WytnLuCj+vbl+j1z7sMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdVtJVDkWxWqZGXnp5qpINE00QJ9NLbOFP+PzbhARFqf629Syc/TVS FAIiGWex6mwbSWrqjauCJcoCtbRF7AKuRzY2zkl8YwkPyr8yV+F9wVuhDyjfUQKr zwCbEK9ovJzAce0MzK9Ra9n8vL3RVWCJ2JVa9MlvyIHoicIq8mrE7HxO+hGha72e BPbKS0xLwW1tSaWFInFjx5YoTQuVH0RWdL0rtYr0XqXHUkyrxxPXPuKdA2sj9io6 1GgN3O63NxTC1N1ydzlwLc4klyy2VmAMg93jQg0oIM7tsMz/EQmMSPE/BO/M18ek 5yqGXftFSBZIKh+u966j+9UzXd3e97Zq -----END CERTIFICATE-----Generated at Fri Aug 8 20:51:20 2025 by rpki-client