$ rpki-client -vvf rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft File: oBoPBuMQs4EwEx14gpcL8WLdDWY.mft (raw, json) Hash identifier: BpfkXGBvaIW/VJbpdeFfMpudnQQkupjelwzj7Kvz5Qw= Subject key identifier: D4:C0:BD:1E:09:11:87:53:84:10:96:A1:1D:30:26:1B:D3:BA:65:1C Authority key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 Certificate issuer: /CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Certificate serial: 0381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft Manifest number: 0379 Signing time: Sun 19 Oct 2025 02:52:39 +0000 Manifest this update: Sun 19 Oct 2025 02:52:38 +0000 Manifest next update: Sun 26 Oct 2025 02:52:38 +0000 Files and hashes: 1: oBoPBuMQs4EwEx14gpcL8WLdDWY.crl (hash: cwTV+j5fKtbuDCPZNXp/KuYTDrmVWy1CcxVZ6aV6RGE=) 2: 2DC3DC54D54E11EF8C5B1651C4F9AE02.roa (hash: 4rLlw7arW1sP5IbnNCTRGWNEvfDKutT79yaN5ySnrBc=) 3: 39952E50C6CB11ECB185E43EC4F9AE02.roa (hash: dkZcQ/A932iJ1dN4/qgrPfW8ADl8k2VS3zXyLTEFE+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E55, serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Validity Not Before: Oct 19 02:52:38 2025 GMT Not After : Oct 26 02:52:38 2025 GMT Subject: CN=68f45277-0317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:79:1f:d5:d4:7d:16:fc:55:ba:77:5b:27:77: 57:93:b4:44:5d:fd:1a:dc:d3:14:0b:f5:4f:e3:3e: 4e:d8:51:c3:b5:b8:66:d4:04:c6:8e:8d:0b:f7:9f: 26:ed:84:4d:72:4d:7d:b0:05:42:42:8d:03:1b:31: 46:8d:2f:49:1a:2f:86:c2:8a:ed:51:30:d7:d2:dc: 55:1f:cd:86:29:c5:41:4f:1c:e8:00:be:28:34:ac: 03:0e:c5:49:b3:6a:dd:bf:e4:40:e5:e3:a0:c5:18: 0d:75:9c:2e:98:9a:70:69:ec:30:02:1f:21:83:83: ce:85:13:cf:4c:a0:0a:7d:18:eb:e7:a4:03:9a:69: 05:c2:31:5d:20:d2:a1:89:d2:2a:b7:63:33:56:41: d7:6d:2b:36:58:1c:9f:87:6e:d5:a1:65:9b:fe:14: d8:83:48:64:68:eb:86:3f:e1:d9:4e:e4:f1:7e:23: fc:d7:e7:ad:25:47:6a:34:37:a4:c0:19:38:b4:7d: 8e:fc:64:17:ad:d8:42:6c:26:89:0f:06:9d:fd:15: a4:fa:84:08:48:a9:d2:29:9d:ed:59:b5:23:10:7b: e4:b9:0c:90:ce:2b:f4:fb:9a:4d:79:21:a6:a5:d8: 9f:37:6e:26:be:3a:f2:11:28:c4:ff:81:a0:3b:ba: 9e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C0:BD:1E:09:11:87:53:84:10:96:A1:1D:30:26:1B:D3:BA:65:1C X509v3 Authority Key Identifier: keyid:A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:41:f1:a5:18:ba:5a:4a:21:eb:6a:f5:7e:b1:4a:c0:ab:7c: 91:ac:5b:ea:a9:c4:16:d3:99:5b:ba:8a:a8:b9:ec:4a:0d:4a: 2f:d0:9d:6e:46:6b:b5:17:8a:07:db:dc:4b:a3:f0:67:92:fd: e4:4a:fa:2b:ef:e4:60:c7:84:f2:0f:95:04:0d:96:31:b2:30: 74:50:ca:ff:b0:7f:24:3b:a3:a3:1e:fa:51:57:69:1b:6b:54: 2b:1e:ef:05:0a:8f:fb:4d:4e:d4:da:b6:64:de:c4:e9:ed:11: 7f:3e:4f:65:ea:81:87:aa:bd:75:e4:1c:39:f8:ae:0e:4e:d7: 2c:35:fa:0a:b1:28:a6:ac:19:4e:36:ad:2b:9b:9b:a6:54:7a: b6:31:d4:0d:13:1d:80:3a:78:c2:0d:a8:83:5d:f2:7e:09:89: 8e:27:3d:80:3c:82:5a:b3:a2:58:18:a8:ee:a3:38:92:e5:54: a7:d8:e6:33:43:83:a9:cd:5c:06:1f:07:48:9d:d1:4f:70:70: 37:90:fd:60:fe:7b:48:97:58:40:28:7c:be:e9:2a:3f:ac:57: bd:4e:9a:0c:92:a6:b9:92:98:61:15:f5:5b:f1:b5:10:4a:e3: 4c:ba:d1:12:0a:21:7f:c2:a1:3f:e5:43:f0:f6:e1:bf:6a:c9: e1:6c:dd:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFNTUxMTAvBgNVBAUTKEEwMUEwRjA2RTMxMEIzODEzMDEzMUQ3ODgyOTcwQkYx NjJERDBENjYwHhcNMjUxMDE5MDI1MjM4WhcNMjUxMDI2MDI1MjM4WjAYMRYwFAYD VQQDEw02OGY0NTI3Ny0wMzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXkf1dR9FvxVundbJ3dXk7REXf0a3NMUC/VP4z5O2FHDtbhm1ATGjo0L958m 7YRNck19sAVCQo0DGzFGjS9JGi+GwortUTDX0txVH82GKcVBTxzoAL4oNKwDDsVJ s2rdv+RA5eOgxRgNdZwumJpwaewwAh8hg4POhRPPTKAKfRjr56QDmmkFwjFdINKh idIqt2MzVkHXbSs2WByfh27VoWWb/hTYg0hkaOuGP+HZTuTxfiP81+etJUdqNDek wBk4tH2O/GQXrdhCbCaJDwad/RWk+oQISKnSKZ3tWbUjEHvkuQyQziv0+5pNeSGm pdifN24mvjryESjE/4GgO7qeCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTAvR4J EYdThBCWoR0wJhvTumUcMB8GA1UdIwQYMBaAFKAaDwbjELOBMBMdeIKXC/Fi3Q1m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEU1NS83RDMyQTc0RUM2 MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0RXdFeDE0Z3BjTDhXTGRE V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Cb1BCdU1RczRFd0V4MTRncGNMOFdMZERXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEU1NS83RDMyQTc0RUM2MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0 RXdFeDE0Z3BjTDhXTGREV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjQfGlGLpaSiHravV+sUrAq3yRrFvqqcQW05lbuoqouexKDUov0J1u Rmu1F4oH29xLo/Bnkv3kSvor7+Rgx4TyD5UEDZYxsjB0UMr/sH8kO6OjHvpRV2kb a1QrHu8FCo/7TU7U2rZk3sTp7RF/Pk9l6oGHqr115Bw5+K4OTtcsNfoKsSimrBlO Nq0rm5umVHq2MdQNEx2AOnjCDaiDXfJ+CYmOJz2APIJas6JYGKjuoziS5VSn2OYz Q4OpzVwGHwdIndFPcHA3kP1g/ntIl1hAKHy+6So/rFe9TpoMkqa5kphhFfVb8bUQ SuNMutESCiF/wqE/5UPw9uG/asnhbN1s -----END CERTIFICATE-----Generated at Mon Oct 20 04:18:45 2025 by rpki-client