$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: XvZkUrljvANh6U3sCSB3h7uKdd3fuUMZ35Ua9ENUlYk= Subject key identifier: F8:07:9E:A3:4C:45:DC:93:18:1F:17:EE:E5:92:E1:F2:53:DA:4C:CE Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 2674 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 2657 Signing time: Sat 18 Oct 2025 15:54:51 +0000 Manifest this update: Sat 18 Oct 2025 15:54:50 +0000 Manifest next update: Sat 25 Oct 2025 15:54:50 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: Oq4EiDIJsJ887JWboiERKLCWKA2DoHkof3oMTrshYG4=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: juVS2WdVoEjnoooIFlUN1TcwOWE6yqS4du37XkdB8V8=) 3: BA61C87692D911F083913E3DC4F9AE02.roa (hash: EKR2JpxoTtOKBdOLpKLtMGV12OxD/NRUd9Y6lPYeylI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9844 (0x2674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Oct 18 15:54:50 2025 GMT Not After : Oct 25 15:54:50 2025 GMT Subject: CN=68f3b84b-17be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f6:dd:ef:db:b6:c4:60:97:9f:a2:0a:2e:7f: 57:82:4a:84:1e:e4:11:f3:a2:08:fc:31:61:10:6f: 07:49:d7:9c:12:d9:35:c2:d2:25:fd:0f:e0:51:49: 0e:19:19:4f:95:2d:ca:a8:af:09:75:63:49:e0:4e: 46:43:40:85:21:12:f7:d4:f6:ed:c4:87:f1:73:84: c3:28:3c:3b:15:4d:3c:20:4d:c9:c4:30:2b:75:94: 18:16:1f:71:cf:3d:c2:b9:22:3d:5f:23:bd:75:24: f4:60:14:17:96:9e:d2:c0:3e:80:94:d6:95:c4:bd: 90:4a:22:27:70:fb:1e:8c:a3:ed:0e:88:cd:69:e8: 6a:56:41:de:0b:de:eb:cb:7c:b8:81:d0:f1:bd:29: bb:dc:ed:64:7f:50:9d:8d:66:b4:a7:90:5d:7e:f6: f8:95:07:47:79:8b:56:e4:33:b6:21:98:8d:8d:d7: 2e:bc:e6:58:a5:20:82:c1:ef:47:d4:4a:db:1f:f5: 7f:5d:fe:10:ae:8f:bc:29:29:50:26:fe:a0:21:2d: 0b:86:5e:04:ae:7c:20:21:7f:98:2c:af:bf:27:3f: 1c:e3:2e:55:c9:fd:0c:6c:01:a0:d8:38:fa:0f:f0: c4:06:53:3d:34:be:c9:51:4d:dd:90:91:72:9c:ea: 4d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:07:9E:A3:4C:45:DC:93:18:1F:17:EE:E5:92:E1:F2:53:DA:4C:CE X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:4d:7d:f3:2e:16:86:8e:34:be:8f:7a:82:fb:0e:8e:fa:93: 8c:a7:72:14:56:c4:b7:c2:72:04:fc:5b:bc:fd:f7:7a:92:93: f4:f8:45:c2:01:a7:2e:84:18:fc:77:8b:16:22:3e:11:d2:f7: 27:83:50:ed:f6:96:c4:fd:8e:e1:c8:87:7f:37:1d:f5:75:56: f7:30:7b:66:9f:af:29:4d:ab:11:08:47:bb:07:2a:54:da:fd: ab:1a:70:2c:bd:b1:c3:eb:31:e4:58:df:47:7e:a4:60:31:c6: 5a:5c:e2:c6:ab:8d:48:0f:d5:6d:19:45:c8:1a:31:c9:f9:f7: 92:be:bb:c5:d9:02:a3:55:72:3e:45:d4:e1:c0:1f:7d:11:d8: 32:ad:6a:9d:f8:9e:09:4d:46:af:1d:41:67:a0:4e:fc:76:53: 5f:46:6f:22:ab:21:94:45:a3:69:8c:ac:b1:7a:ae:06:28:94: 0d:37:ab:5f:be:37:50:4d:be:b0:7c:b4:89:97:4d:ba:82:82: df:b5:42:52:26:6e:23:89:e1:ad:ce:8a:35:e0:76:d3:be:e0: b7:32:61:04:c8:10:35:0a:53:bf:07:a4:b9:92:f8:3e:f2:47: 2a:41:c4:e9:ae:f1:60:48:a1:d4:79:6a:01:4f:d4:77:41:17: a9:cd:32:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUxMDE4MTU1NDUwWhcNMjUxMDI1MTU1NDUwWjAYMRYwFAYD VQQDEw02OGYzYjg0Yi0xN2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/bd79u2xGCXn6IKLn9XgkqEHuQR86II/DFhEG8HSdecEtk1wtIl/Q/gUUkO GRlPlS3KqK8JdWNJ4E5GQ0CFIRL31PbtxIfxc4TDKDw7FU08IE3JxDArdZQYFh9x zz3CuSI9XyO9dST0YBQXlp7SwD6AlNaVxL2QSiIncPsejKPtDojNaehqVkHeC97r y3y4gdDxvSm73O1kf1CdjWa0p5Bdfvb4lQdHeYtW5DO2IZiNjdcuvOZYpSCCwe9H 1ErbH/V/Xf4Qro+8KSlQJv6gIS0Lhl4ErnwgIX+YLK+/Jz8c4y5Vyf0MbAGg2Dj6 D/DEBlM9NL7JUU3dkJFynOpNPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgHnqNM RdyTGB8X7uWS4fJT2kzOMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUTX3zLhaGjjS+j3qC+w6O+pOMp3IUVsS3wnIE/Fu8/fd6kpP0+EXC AacuhBj8d4sWIj4R0vcng1Dt9pbE/Y7hyId/Nx31dVb3MHtmn68pTasRCEe7BypU 2v2rGnAsvbHD6zHkWN9HfqRgMcZaXOLGq41ID9VtGUXIGjHJ+feSvrvF2QKjVXI+ RdThwB99EdgyrWqd+J4JTUavHUFnoE78dlNfRm8iqyGURaNpjKyxeq4GKJQNN6tf vjdQTb6wfLSJl026goLftUJSJm4jieGtzoo14HbTvuC3MmEEyBA1ClO/B6S5kvg+ 8kcqQcTprvFgSKHUeWoBT9R3QRepzTKT -----END CERTIFICATE-----Generated at Mon Oct 20 10:36:00 2025 by rpki-client