$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: rQaU0YiIKOqkj4o8+Uz3Fvvfiqq+DiNZjzW2GOTiULs= Subject key identifier: BB:B1:F6:86:FC:6B:FD:50:78:35:73:D7:33:B2:79:AC:CA:FE:6D:DC Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: BC Signing time: Sun 19 Oct 2025 09:05:41 +0000 Manifest this update: Sun 19 Oct 2025 09:05:41 +0000 Manifest next update: Sun 26 Oct 2025 09:05:40 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: lOtxH1C48Ck4TkkMuLIgG360T20CPKtXqgaym0geE2k=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: iA472Qc8jmcAQSQWONhwLi8d73fir6sYTg+zRw+sbrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Oct 19 09:05:41 2025 GMT Not After : Oct 26 09:05:40 2025 GMT Subject: CN=68f4a9e5-a70f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:77:d4:73:f1:bc:46:ed:81:e9:0c:9d:cc: 10:40:85:81:5e:c9:56:7c:45:12:d1:14:97:70:47: c7:02:a2:f3:ca:7d:d3:a0:d1:96:8f:b2:eb:c6:ee: f8:e0:57:1b:f7:90:ea:32:a8:08:97:0c:d4:9d:a4: 23:97:b4:30:ec:f7:0f:ee:b0:1e:85:20:08:0d:e9: 74:99:c5:bb:8c:01:f4:68:c9:fa:3d:2b:1d:6c:8a: 42:82:6e:46:c7:25:7e:5e:b1:bf:a8:bf:e6:88:5f: 95:47:ba:4f:a1:f2:d4:72:90:46:2d:45:b0:51:9f: fe:f2:6b:fe:95:c9:3d:44:1d:1f:38:c2:f3:25:a6: d5:1c:6b:be:7d:a1:55:0d:3d:42:de:30:e5:c3:8e: b1:8c:e7:85:73:c7:62:8b:a0:94:a7:aa:b1:87:2e: 8f:94:a6:ad:e7:8e:4a:b1:c8:6d:b1:67:c4:a5:60: 9c:e6:78:e2:e8:77:21:6b:b6:2f:8d:b5:99:1d:6e: 32:14:2b:f7:93:76:be:39:71:bc:6f:a0:3f:46:44: 28:c2:4d:a1:d7:56:25:cb:3a:26:c8:e3:81:16:11: 9f:d5:c9:63:45:fa:b7:68:9c:af:bd:32:3c:e8:97: 7f:9c:f0:68:38:57:97:4b:7c:b5:d2:cd:0a:98:68: 94:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B1:F6:86:FC:6B:FD:50:78:35:73:D7:33:B2:79:AC:CA:FE:6D:DC X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:66:35:de:5a:7d:39:b7:59:d7:c3:52:0b:d7:5e:58:0d:0d: d1:86:34:5a:50:16:ea:d7:44:c5:08:07:96:16:60:78:17:5f: 0f:a6:96:44:37:cf:c9:0c:59:e5:32:08:04:a6:f5:3b:cc:60: 98:02:3c:a7:20:28:b3:ea:3d:d5:a7:54:ef:15:55:a9:05:6b: 51:fc:35:4d:9e:f1:f9:4f:5c:a3:03:79:95:90:8d:9d:ba:f4: 99:82:45:b6:99:0c:a3:42:0b:80:25:00:00:56:09:47:65:f9: 56:b3:48:da:1f:8c:53:4b:3a:76:cf:34:33:f1:56:0f:10:03: 20:c8:df:ce:82:1c:b3:33:3e:98:1f:b4:6f:ae:53:eb:bd:20: bf:0e:f6:2d:c7:0b:b1:9c:27:62:cb:29:79:d2:be:1b:81:69: 76:27:4c:a0:f1:0e:bd:42:83:7c:1d:c5:3c:6c:6a:61:bd:f2: 70:fa:34:9b:5c:fa:2f:70:cc:dc:e4:e7:df:24:4c:ff:c4:6c: 4a:e0:bb:7d:57:28:c5:e3:7f:e2:df:d1:a2:fc:e8:63:ff:83: 66:36:62:d8:46:41:39:af:0c:41:26:ea:b2:45:9b:17:a1:96: 30:67:a9:1d:27:41:e9:6d:f7:2b:ea:d0:26:62:05:07:c5:21: b4:b4:0f:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjUxMDE5MDkwNTQxWhcNMjUxMDI2MDkwNTQwWjAYMRYwFAYD VQQDEw02OGY0YTllNS1hNzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxK931HPxvEbtgekMncwQQIWBXslWfEUS0RSXcEfHAqLzyn3ToNGWj7Lrxu74 4Fcb95DqMqgIlwzUnaQjl7Qw7PcP7rAehSAIDel0mcW7jAH0aMn6PSsdbIpCgm5G xyV+XrG/qL/miF+VR7pPofLUcpBGLUWwUZ/+8mv+lck9RB0fOMLzJabVHGu+faFV DT1C3jDlw46xjOeFc8dii6CUp6qxhy6PlKat545KschtsWfEpWCc5nji6Hcha7Yv jbWZHW4yFCv3k3a+OXG8b6A/RkQowk2h11YlyzomyOOBFhGf1cljRfq3aJyvvTI8 6Jd/nPBoOFeXS3y10s0KmGiU1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLux9ob8 a/1QeDVz1zOyeazK/m3cMB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEzQi8yMjcwMTlEQTkwMTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQw RkstM19vYlJfZXIyU0xYSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLZjXeWn05t1nXw1IL115YDQ3RhjRaUBbq10TFCAeWFmB4F18PppZE N8/JDFnlMggEpvU7zGCYAjynICiz6j3Vp1TvFVWpBWtR/DVNnvH5T1yjA3mVkI2d uvSZgkW2mQyjQguAJQAAVglHZflWs0jaH4xTSzp2zzQz8VYPEAMgyN/OghyzMz6Y H7RvrlPrvSC/DvYtxwuxnCdiyyl50r4bgWl2J0yg8Q69QoN8HcU8bGphvfJw+jSb XPovcMzc5OffJEz/xGxK4Lt9VyjF43/i39Gi/Ohj/4NmNmLYRkE5rwxBJuqyRZsX oZYwZ6kdJ0Hpbfcr6tAmYgUHxSG0tA+Q -----END CERTIFICATE-----Generated at Mon Oct 20 08:56:00 2025 by rpki-client