$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: P4vnLlQvHO3BJsMw8ELDMfEnkxz012cJBUTD4XCwl1Q= Subject key identifier: C4:8B:2D:37:C9:C7:33:EF:8C:71:87:66:99:59:3E:0A:0F:3A:7B:93 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 2647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 2631 Signing time: Fri 22 Aug 2025 15:44:39 +0000 Manifest this update: Fri 22 Aug 2025 15:44:38 +0000 Manifest next update: Fri 29 Aug 2025 15:44:38 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: TAoCjDNPD3FEeXM+z9R9ohu/bQqUKApJq5x8HbiilBE=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: VG7uY+n06V7ME8pwAgLhqvJUKL4X9ZH+oVhIO2dzfMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9799 (0x2647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Aug 22 15:44:38 2025 GMT Not After : Aug 29 15:44:38 2025 GMT Subject: CN=68a89066-919c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3e:61:35:41:71:bf:16:b0:e3:7b:b7:d0:dc: 1d:b1:6f:ce:c7:3b:8e:b7:db:fc:12:20:02:87:31: 54:e0:1a:d7:a9:20:4c:0b:07:38:5c:01:29:d4:2a: 60:49:7b:e6:3d:e5:93:84:97:a3:17:60:12:cd:cc: 28:54:fa:ef:75:b1:b4:3e:7b:db:8e:81:17:8e:f5: 72:ad:8c:a2:e2:17:e0:0c:10:3e:89:e0:6d:b2:b7: b9:41:e6:4b:67:6c:a4:0c:22:54:f7:f9:d9:25:47: 6a:bb:57:ec:52:20:6c:0f:59:76:e0:25:76:46:9d: 51:8c:38:f8:8f:f3:fb:af:d5:9b:7b:bb:73:16:99: 27:75:9a:9c:a2:27:67:0b:16:0d:d9:5e:ec:a3:fc: 84:08:2d:00:ee:6a:b2:4f:fd:74:de:f3:2c:97:88: 4a:08:f6:41:0f:92:44:57:a2:2e:db:a3:da:3b:75: c9:59:fb:29:3a:e5:f8:ca:97:29:25:fb:1f:c8:e6: b0:4b:36:db:06:a1:c7:9d:de:d4:04:35:d3:53:ec: 6e:71:ac:cd:cd:f2:35:a2:14:b8:0b:f3:9e:f6:41: 05:d5:06:dd:d8:18:3a:9f:46:32:36:bb:03:cd:e2: f3:05:6f:03:71:3b:d5:4b:72:e1:c8:26:5c:95:ba: 67:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:8B:2D:37:C9:C7:33:EF:8C:71:87:66:99:59:3E:0A:0F:3A:7B:93 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:5d:2a:e3:43:c7:e7:e1:b3:23:ca:14:02:85:ec:5b:c6:3d: 8e:11:1b:6c:1b:27:8e:df:4a:74:ef:82:01:9f:2a:52:f1:82: 03:bc:df:db:6a:5f:82:47:1d:8b:58:47:a8:68:f7:d4:93:fe: d0:ec:1b:73:9d:11:b8:a5:d9:5d:b5:87:40:99:99:cf:1c:8a: c5:8d:c0:2b:c8:28:06:3e:db:8d:75:45:a0:91:34:15:cb:27: 0f:e6:4b:4e:e3:2e:28:b3:57:b7:5d:c7:32:ad:b1:cc:2b:03: 8d:0e:76:35:8e:ee:9c:8b:d6:40:bb:79:75:26:02:6c:6c:86: 86:c5:d2:76:52:ac:60:04:bc:5b:c5:db:b4:b8:b6:de:b5:3b: 87:18:49:06:a9:47:f0:b5:d3:a1:20:f6:5e:8a:79:05:94:96: 92:6f:2e:fd:16:dd:97:a5:d4:72:f8:74:61:6a:7f:36:37:24: b4:9a:0b:3d:d7:23:85:39:51:58:19:a3:7c:51:b8:4b:bc:3c: 7c:23:a6:fe:a7:d2:94:59:89:b7:e0:4d:6d:c6:7b:93:27:26: ff:e8:71:1b:f2:4e:ef:73:c8:42:e2:da:55:41:51:a4:a3:b1: 72:49:f3:9a:64:71:5d:12:36:13:4e:bb:c8:36:25:4b:6c:f2: e9:bf:44:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUwODIyMTU0NDM4WhcNMjUwODI5MTU0NDM4WjAYMRYwFAYD VQQDEw02OGE4OTA2Ni05MTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzj5hNUFxvxaw43u30NwdsW/OxzuOt9v8EiAChzFU4BrXqSBMCwc4XAEp1Cpg SXvmPeWThJejF2ASzcwoVPrvdbG0PnvbjoEXjvVyrYyi4hfgDBA+ieBtsre5QeZL Z2ykDCJU9/nZJUdqu1fsUiBsD1l24CV2Rp1RjDj4j/P7r9Wbe7tzFpkndZqcoidn CxYN2V7so/yECC0A7mqyT/103vMsl4hKCPZBD5JEV6Iu26PaO3XJWfspOuX4ypcp JfsfyOawSzbbBqHHnd7UBDXTU+xucazNzfI1ohS4C/Oe9kEF1Qbd2Bg6n0YyNrsD zeLzBW8DcTvVS3LhyCZclbpnKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSLLTfJ xzPvjHGHZplZPgoPOnuTMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIXSrjQ8fn4bMjyhQChexbxj2OERtsGyeO30p074IBnypS8YIDvN/b al+CRx2LWEeoaPfUk/7Q7BtznRG4pdldtYdAmZnPHIrFjcAryCgGPtuNdUWgkTQV yycP5ktO4y4os1e3XccyrbHMKwONDnY1ju6ci9ZAu3l1JgJsbIaGxdJ2UqxgBLxb xdu0uLbetTuHGEkGqUfwtdOhIPZeinkFlJaSby79Ft2XpdRy+HRhan82NyS0mgs9 1yOFOVFYGaN8UbhLvDx8I6b+p9KUWYm34E1txnuTJyb/6HEb8k7vc8hC4tpVQVGk o7FySfOaZHFdEjYTTrvINiVLbPLpv0Re -----END CERTIFICATE-----Generated at Sat Aug 23 18:56:29 2025 by rpki-client