$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: O5KneLohDJ36uUgjYlNsJxgvJjyPjJvXIzvbt5o9hig= Subject key identifier: 0A:82:D7:10:F0:B0:67:CB:EC:C2:31:F4:9D:86:47:FE:06:5B:68:8C Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: D1 Signing time: Sun 19 Oct 2025 09:12:40 +0000 Manifest this update: Sun 19 Oct 2025 09:12:39 +0000 Manifest next update: Sun 26 Oct 2025 09:12:39 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: gZjofnuW63MPqxLZnw2Cu8WjV8FJsnvl+l02ghbt9F8=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: Aikvd4VQaZ5YWJuoaQst8o1un+A8abkdzu+IgmJpwMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Oct 19 09:12:39 2025 GMT Not After : Oct 26 09:12:39 2025 GMT Subject: CN=68f4ab87-a42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b1:c9:b8:b4:74:14:9a:6c:4c:da:6c:73:4d: c3:31:13:78:9b:46:c5:93:5d:50:c4:f0:57:ee:1e: 54:3d:13:f6:74:0b:f0:21:ed:77:1a:b1:da:f1:12: 00:7f:7e:ef:e3:2d:87:00:63:26:98:8c:39:49:3c: 96:0a:79:18:51:c5:7f:dc:62:d3:e3:c5:07:75:0c: e4:02:54:dc:a7:b4:6e:78:79:eb:e9:f6:59:5d:b3: 30:e7:1f:86:e3:9b:33:e4:ee:4e:f3:6b:61:a2:91: 88:1b:ec:2c:a9:d4:ed:22:64:56:f3:97:12:6e:a4: 95:e0:9e:b8:86:e4:e0:8b:ef:30:39:01:5f:2f:22: 6a:37:bc:70:f0:29:a2:d0:5c:eb:04:b4:73:4a:64: 5f:b2:fb:36:91:b6:d0:86:c3:f5:4e:b4:e3:57:d1: 22:da:6f:a8:a2:ca:c1:e8:fb:9a:2d:b1:24:c2:e8: 76:e3:d8:7e:6a:b5:93:55:22:80:8e:4c:55:61:5b: 4b:c4:e9:d1:62:73:42:70:9f:ab:86:c4:d1:22:a5: 1b:9a:7d:40:77:08:b2:55:4f:4c:fe:b8:66:f3:35: 48:1f:49:a2:ea:96:7f:99:14:59:7c:d1:16:1d:51: a1:31:b7:b4:c2:02:d9:e1:c8:c1:ad:7c:6e:d0:b5: 3a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:82:D7:10:F0:B0:67:CB:EC:C2:31:F4:9D:86:47:FE:06:5B:68:8C X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:fe:d0:f5:0d:6c:c4:44:b7:9f:1a:16:7d:3f:c6:a7:53:39: 8b:b4:48:cb:97:a9:b1:fe:f9:ef:71:bf:e1:99:ef:f5:34:74: 0f:01:20:29:68:19:e6:11:bd:ef:5b:2a:1a:b3:2d:a7:7d:04: 34:5f:89:19:9e:f8:b8:c1:71:1b:47:af:cf:9e:c2:d6:60:f4: 12:41:16:f8:eb:e5:d8:49:d0:f6:ce:8d:e5:78:32:55:1f:44: c2:82:b1:31:c8:3f:36:10:ef:ca:03:e1:78:f1:05:aa:08:27: 6d:9e:c6:a5:ed:f0:b4:d0:7a:2b:e8:f6:c5:cb:12:1d:46:0a: aa:84:99:6c:11:b4:ed:37:8d:bc:f7:f9:50:f7:91:e1:a0:74: 68:c2:4e:25:e6:47:5c:d7:5b:43:5f:b4:49:b1:78:30:8c:4f: 47:a6:62:df:fd:78:e6:a4:71:96:05:9e:e7:40:ac:d1:0f:fe: b5:f5:3c:e5:8d:82:01:9a:60:b0:dd:d3:d8:0b:1a:eb:68:f4: 41:99:e5:d6:9f:c4:e9:1b:cb:f5:a2:91:16:3d:de:54:c7:4c: 16:f8:76:56:02:18:75:5b:28:11:2b:20:5b:f7:b0:56:dd:4e: a8:c5:b7:3a:41:47:d6:a8:fe:88:9d:82:75:6a:b4:04:8e:e3: 7c:73:9e:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjUxMDE5MDkxMjM5WhcNMjUxMDI2MDkxMjM5WjAYMRYwFAYD VQQDEw02OGY0YWI4Ny1hNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7HJuLR0FJpsTNpsc03DMRN4m0bFk11QxPBX7h5UPRP2dAvwIe13GrHa8RIA f37v4y2HAGMmmIw5STyWCnkYUcV/3GLT48UHdQzkAlTcp7RueHnr6fZZXbMw5x+G 45sz5O5O82thopGIG+wsqdTtImRW85cSbqSV4J64huTgi+8wOQFfLyJqN7xw8Cmi 0FzrBLRzSmRfsvs2kbbQhsP1TrTjV9Ei2m+oosrB6PuaLbEkwuh249h+arWTVSKA jkxVYVtLxOnRYnNCcJ+rhsTRIqUbmn1AdwiyVU9M/rhm8zVIH0mi6pZ/mRRZfNEW HVGhMbe0wgLZ4cjBrXxu0LU6pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqC1xDw sGfL7MIx9J2GR/4GW2iMMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL/tD1DWzERLefGhZ9P8anUzmLtEjLl6mx/vnvcb/hme/1NHQPASAp aBnmEb3vWyoasy2nfQQ0X4kZnvi4wXEbR6/PnsLWYPQSQRb46+XYSdD2zo3leDJV H0TCgrExyD82EO/KA+F48QWqCCdtnsal7fC00Hor6PbFyxIdRgqqhJlsEbTtN428 9/lQ95HhoHRowk4l5kdc11tDX7RJsXgwjE9HpmLf/XjmpHGWBZ7nQKzRD/619Tzl jYIBmmCw3dPYCxrraPRBmeXWn8TpG8v1opEWPd5Ux0wW+HZWAhh1WygRKyBb97BW 3U6oxbc6QUfWqP6InYJ1arQEjuN8c57w -----END CERTIFICATE-----Generated at Sun Oct 19 23:20:43 2025 by rpki-client