$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: s0OCiZHuUg9L7if9PPoqRv2wGtMH6+huGHYxtLPqymo= Subject key identifier: 0D:A6:0D:5D:76:2B:BD:EE:12:CA:82:BF:0D:C5:AA:C5:23:EB:DF:96 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 263A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 2625 Signing time: Wed 06 Aug 2025 15:45:53 +0000 Manifest this update: Wed 06 Aug 2025 15:45:53 +0000 Manifest next update: Wed 13 Aug 2025 15:45:53 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: 2iBVpV5vamzTXLm6opYQIqU611ETuFgpH2/j2f07d4Q=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: +bflLncVpUKisFQ3ZZUQI/J0k3+BOK9UN6bLx8p1G6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9786 (0x263a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Aug 6 15:45:53 2025 GMT Not After : Aug 13 15:45:53 2025 GMT Subject: CN=689378b1-b197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:96:fc:bd:e7:5a:d2:f1:cd:ea:bc:88:5f:60: 2a:f4:30:c5:22:d5:f9:4b:bb:04:fa:eb:88:27:d6: ce:2d:23:8f:26:90:59:af:b9:ce:cc:8b:c1:c3:9e: 40:ce:89:f5:ca:ae:81:4d:13:75:88:43:06:5a:ed: 96:d4:d2:6b:2d:7f:e9:b9:c8:f1:40:3a:30:85:91: cc:fb:39:61:36:7f:99:a4:8b:e0:38:68:fa:05:76: 74:94:53:3e:25:2b:b6:f7:a0:ca:70:a9:da:e2:5e: 13:7b:5a:76:fe:69:b7:12:1e:2e:de:66:27:1b:2f: e3:4a:00:b2:01:33:9c:cd:4b:1e:c9:e4:34:91:b9: a4:9f:46:71:25:7b:3e:63:48:89:88:fa:5e:83:74: bb:53:23:d3:25:41:d8:e0:6e:66:6f:01:5d:61:f7: 32:c3:fe:3c:7f:7c:da:48:1e:b3:76:bb:b1:0c:23: db:4d:61:47:22:6e:f5:69:99:b3:19:e0:71:63:08: 6b:03:99:13:61:88:53:c7:8d:0b:ae:89:64:81:38: 43:68:14:41:a7:36:0a:e4:55:cd:28:48:a6:41:f3: 12:4a:d3:c8:39:8e:1e:db:fb:72:f6:4f:e8:0e:45: 11:5e:25:de:a3:43:fd:1f:c7:de:d8:f7:cc:91:19: 27:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A6:0D:5D:76:2B:BD:EE:12:CA:82:BF:0D:C5:AA:C5:23:EB:DF:96 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6b:fe:a2:b0:16:fd:6d:a9:4f:69:03:19:98:40:9d:a4:b0: c7:0c:bf:4e:ca:10:91:20:dd:16:f7:24:9c:ab:63:7e:8e:35: 33:c3:6b:ad:3c:99:e7:32:bb:70:44:cf:f1:fc:15:18:5d:d7: 42:30:d0:90:a6:4f:42:05:57:07:3d:dc:2b:bd:01:2c:dd:b9: 4a:64:e3:2f:ec:df:92:dd:05:a6:77:fd:1a:74:58:57:97:74: 9e:2d:f4:b2:a5:8f:34:b3:8a:85:f5:4d:64:02:d0:80:8b:bb: 8e:66:53:26:d0:d3:fd:52:d8:29:04:62:6b:b3:92:2e:39:62: 35:b1:50:c9:52:ef:20:d6:2e:01:7e:03:30:9d:ea:eb:4c:ce: 47:54:50:1d:9c:e6:a4:73:ca:78:2c:8a:9a:e1:da:f2:4a:89: 35:51:20:73:b9:cc:ed:17:5b:5e:fa:bb:19:b3:3a:0d:4f:a2: 10:a7:1e:ce:9c:fd:c1:9d:5f:27:c5:a1:ba:3b:37:75:bd:4e: d6:4e:ac:62:dd:1b:76:26:c6:e8:9f:83:5b:1d:b6:83:36:59: 28:bf:44:dc:4c:c1:19:9b:4d:d5:c9:fd:a0:55:ee:ad:1f:4a: be:0f:6e:f8:69:9b:70:78:08:dc:8f:e2:c7:15:38:24:6a:e3: b1:13:a3:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUwODA2MTU0NTUzWhcNMjUwODEzMTU0NTUzWjAYMRYwFAYD VQQDEw02ODkzNzhiMS1iMTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Jb8veda0vHN6ryIX2Aq9DDFItX5S7sE+uuIJ9bOLSOPJpBZr7nOzIvBw55A zon1yq6BTRN1iEMGWu2W1NJrLX/pucjxQDowhZHM+zlhNn+ZpIvgOGj6BXZ0lFM+ JSu296DKcKna4l4Te1p2/mm3Eh4u3mYnGy/jSgCyATOczUseyeQ0kbmkn0ZxJXs+ Y0iJiPpeg3S7UyPTJUHY4G5mbwFdYfcyw/48f3zaSB6zdruxDCPbTWFHIm71aZmz GeBxYwhrA5kTYYhTx40LrolkgThDaBRBpzYK5FXNKEimQfMSStPIOY4e2/ty9k/o DkURXiXeo0P9H8fe2PfMkRknaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2mDV12 K73uEsqCvw3FqsUj69+WMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6a/6isBb9balPaQMZmECdpLDHDL9OyhCRIN0W9yScq2N+jjUzw2ut PJnnMrtwRM/x/BUYXddCMNCQpk9CBVcHPdwrvQEs3blKZOMv7N+S3QWmd/0adFhX l3SeLfSypY80s4qF9U1kAtCAi7uOZlMm0NP9UtgpBGJrs5IuOWI1sVDJUu8g1i4B fgMwnerrTM5HVFAdnOakc8p4LIqa4drySok1USBzucztF1te+rsZszoNT6IQpx7O nP3BnV8nxaG6Ozd1vU7WTqxi3Rt2Jsbon4NbHbaDNlkov0TcTMEZm03Vyf2gVe6t H0q+D274aZtweAjcj+LHFTgkauOxE6NP -----END CERTIFICATE-----Generated at Thu Aug 7 05:06:16 2025 by rpki-client