$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: 7FMpC+z5w3xRXHMQIkY9SvUEDPrdtj6fOK4zW/QnT8o= Subject key identifier: 88:D9:2D:FB:7B:67:1B:22:B4:3B:DA:58:22:5A:25:48:9E:22:42:40 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 267D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 2660 Signing time: Tue 04 Nov 2025 15:46:09 +0000 Manifest this update: Tue 04 Nov 2025 15:46:08 +0000 Manifest next update: Tue 11 Nov 2025 15:46:08 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: u8/gnxORdn1oPZs9dhMwjMWR8mAtko26yeslKeNn/yU=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: juVS2WdVoEjnoooIFlUN1TcwOWE6yqS4du37XkdB8V8=) 3: BA61C87692D911F083913E3DC4F9AE02.roa (hash: EKR2JpxoTtOKBdOLpKLtMGV12OxD/NRUd9Y6lPYeylI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9853 (0x267d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Nov 4 15:46:08 2025 GMT Not After : Nov 11 15:46:08 2025 GMT Subject: CN=690a1fc1-19bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6a:b3:d5:e9:7d:a8:19:4b:0b:38:59:50:81: af:ad:ac:ce:7e:77:e2:c1:65:d5:26:ff:4e:b4:ad: 1c:3f:1f:6c:bf:97:39:4a:9e:bd:45:14:37:7b:ea: 89:e7:c4:0b:e5:65:8c:27:f9:4c:1a:e9:b6:21:b6: 6a:32:9e:d8:83:b3:8f:86:40:c3:66:2c:b5:2c:4c: 8e:12:bd:27:71:39:3e:a8:85:2f:2a:80:81:11:1f: 95:57:1f:b9:d6:be:02:1b:c1:5b:c7:88:62:e3:10: fe:bc:5d:a4:57:ee:92:92:b5:f2:1f:37:7a:03:01: 64:db:eb:e2:04:aa:5c:4e:1c:35:03:72:00:4e:b0: 0c:34:07:24:8e:3a:d5:39:96:ba:b2:6b:3e:e4:19: 2e:cb:93:cb:24:c1:98:07:ea:72:a3:f5:60:38:2f: 22:cd:e7:e4:a5:d9:e0:98:9c:3f:07:8b:ac:f1:b1: b6:10:af:db:6c:aa:41:27:81:97:b6:b0:2b:95:bc: d1:ff:b3:df:12:8b:49:b8:2e:cc:74:38:fc:79:f2: f0:1f:df:28:91:17:4d:83:cf:be:73:0c:e5:d8:c7: bd:9e:49:d3:9f:db:f7:9b:0d:c8:c0:03:6b:e1:d9: 4b:87:fd:14:17:c1:f4:d3:a0:44:1f:72:0d:5f:71: 6a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D9:2D:FB:7B:67:1B:22:B4:3B:DA:58:22:5A:25:48:9E:22:42:40 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:b6:04:69:e9:f6:9c:54:96:72:47:d8:15:ec:ac:40:cc:64: 9c:be:87:95:4b:c3:98:b9:68:30:c0:f8:31:dc:4d:59:4e:0e: f3:7b:dd:39:77:a0:4a:95:20:81:25:b6:06:da:51:f4:da:a8: 1c:f5:99:04:71:4f:57:cd:38:02:65:55:d3:2f:a9:07:1e:be: 49:6b:8f:8f:85:3b:2b:f9:8a:fd:e9:31:be:c9:0e:58:a5:01: 74:bb:fd:01:02:62:22:d3:81:34:96:ff:82:78:d2:a3:81:41: be:a3:1e:9c:ad:3c:72:ec:7e:03:44:b2:f0:fb:77:65:b8:ee: ab:fb:5b:87:40:09:f2:2c:72:9e:41:95:fe:01:d3:27:36:ae: 25:7e:5d:14:45:d0:18:2f:f0:98:46:0d:a6:12:1f:f3:92:16: 1f:5c:e4:68:5c:69:d1:95:e1:4a:d6:67:9a:14:a6:15:05:4d: 80:84:01:2c:37:a1:c3:3d:3b:54:11:b8:09:cc:0b:15:09:d2: 90:53:c3:52:3e:de:0e:e1:3e:bd:f5:75:29:ae:16:77:77:ac: 6b:45:18:42:d9:fa:91:ba:bc:47:d3:8c:25:0c:50:bc:1c:9d: 15:f4:77:f2:49:57:e3:73:54:17:c7:10:f0:41:7e:cc:3a:2c: cd:00:3f:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUxMTA0MTU0NjA4WhcNMjUxMTExMTU0NjA4WjAYMRYwFAYD VQQDEw02OTBhMWZjMS0xOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGqz1el9qBlLCzhZUIGvrazOfnfiwWXVJv9OtK0cPx9sv5c5Sp69RRQ3e+qJ 58QL5WWMJ/lMGum2IbZqMp7Yg7OPhkDDZiy1LEyOEr0ncTk+qIUvKoCBER+VVx+5 1r4CG8Fbx4hi4xD+vF2kV+6SkrXyHzd6AwFk2+viBKpcThw1A3IATrAMNAckjjrV OZa6sms+5Bkuy5PLJMGYB+pyo/VgOC8izefkpdngmJw/B4us8bG2EK/bbKpBJ4GX trArlbzR/7PfEotJuC7MdDj8efLwH98okRdNg8++cwzl2Me9nknTn9v3mw3IwANr 4dlLh/0UF8H006BEH3INX3FqZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjZLft7 ZxsitDvaWCJaJUieIkJAMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOtgRp6facVJZyR9gV7KxAzGScvoeVS8OYuWgwwPgx3E1ZTg7ze905 d6BKlSCBJbYG2lH02qgc9ZkEcU9XzTgCZVXTL6kHHr5Ja4+PhTsr+Yr96TG+yQ5Y pQF0u/0BAmIi04E0lv+CeNKjgUG+ox6crTxy7H4DRLLw+3dluO6r+1uHQAnyLHKe QZX+AdMnNq4lfl0URdAYL/CYRg2mEh/zkhYfXORoXGnRleFK1meaFKYVBU2AhAEs N6HDPTtUEbgJzAsVCdKQU8NSPt4O4T699XUprhZ3d6xrRRhC2fqRurxH04wlDFC8 HJ0V9HfySVfjc1QXxxDwQX7MOizNAD/P -----END CERTIFICATE-----Generated at Wed Nov 5 00:08:09 2025 by rpki-client