$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft File: DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft (raw, json) Hash identifier: NA/4EbtwkRBu7dPDB4Sy+KQAgOXPKXBbobYr+R9icO4= Subject key identifier: F8:17:A3:FD:F5:F9:41:AA:B2:AD:DB:80:0B:CC:4B:64:0D:63:5A:AF Authority key identifier: 0C:E0:60:C2:E4:30:DD:85:18:10:C9:F2:0F:EC:1B:A2:11:99:E3:D6 Certificate issuer: /CN=A91F2C07/serialNumber=0CE060C2E430DD851810C9F20FEC1BA21199E3D6 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft Manifest number: 5D Signing time: Sun 19 Oct 2025 10:29:34 +0000 Manifest this update: Sun 19 Oct 2025 10:29:33 +0000 Manifest next update: Sun 26 Oct 2025 10:29:33 +0000 Files and hashes: 1: DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl (hash: n91bjRx3N64zgD/pDPnoebNQrC4C9COUwmtHgwgtr78=) 2: 6028335E86F911F084A9FF7FC4F9AE02.roa (hash: ttGRTVXm63FmqLPQgqhgqVrA4iCgFY4E8md2K51N5m0=) 3: FDD4FA341E6111F0B8D45B79C4F9AE02.roa (hash: 7JB/cgKUwfUR4YGlIPTezqpMMVQ3OA1LBmpMpECbKmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2C07, serialNumber=0CE060C2E430DD851810C9F20FEC1BA21199E3D6 Validity Not Before: Oct 19 10:29:33 2025 GMT Not After : Oct 26 10:29:33 2025 GMT Subject: CN=68f4bd8e-2914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9a:e2:d3:58:9b:76:64:a7:cf:9d:7d:c6:81: f3:27:05:57:c4:00:0f:2d:7f:0a:30:6a:5a:56:21: 35:c4:53:73:a9:f5:55:2e:9b:b0:68:65:08:1b:d6: ef:5e:6d:98:d0:b3:b6:0d:4c:48:a8:78:2b:c6:2c: 08:51:e2:a2:b2:5d:8a:0a:ca:31:99:55:b7:a9:89: e4:f6:7c:37:2a:d5:75:a7:a2:d2:b0:51:49:aa:23: 20:c2:cf:5d:1c:51:71:f5:8e:df:7a:47:40:7e:52: ce:c5:07:87:4d:90:07:66:a1:22:ee:58:17:73:7d: e5:fb:c7:ce:26:c4:4c:67:fe:a8:fa:bc:c4:ea:e9: ce:30:21:90:b5:3b:04:dd:6f:d8:f1:35:cd:d8:c9: 85:28:76:f3:22:cf:ad:fc:6b:f6:2e:0a:bd:90:71: 81:f5:41:51:b7:c4:af:dc:24:f4:b7:01:f1:7a:55: db:51:ad:3f:d5:e2:d3:e8:59:67:8f:e6:b7:d5:cf: 3f:9c:11:4f:af:c4:73:5e:69:e7:d9:cf:ab:0d:35: dc:96:0b:42:d0:bc:2f:52:ce:31:91:4d:1e:cc:c3: c3:93:00:a2:50:a5:d2:99:34:f2:c6:37:71:90:f4: 03:d0:90:85:d2:54:4c:68:c6:79:8b:f4:71:2e:d4: 99:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:17:A3:FD:F5:F9:41:AA:B2:AD:DB:80:0B:CC:4B:64:0D:63:5A:AF X509v3 Authority Key Identifier: keyid:0C:E0:60:C2:E4:30:DD:85:18:10:C9:F2:0F:EC:1B:A2:11:99:E3:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:99:2a:38:ce:71:64:0a:1c:51:8a:d2:8f:2b:8c:6a:03:4b: 05:d0:47:f3:79:4b:b8:df:97:ad:3d:15:82:ff:7c:9d:ea:e9: 1a:ee:68:95:01:1b:03:88:57:32:f1:63:ab:63:67:28:f2:fb: f1:d3:43:71:ec:2f:8f:82:b4:e6:38:9e:19:07:01:9b:bc:11: 5f:e7:63:e1:39:a5:80:48:57:7a:fd:08:05:e3:5b:53:8b:c5: a1:f9:50:77:c1:3c:fe:12:8b:94:9a:85:e4:61:1a:fc:73:13: fc:5c:5d:88:96:9a:a2:e0:44:99:9c:14:9b:f6:93:81:f3:2e: 03:7e:d4:4d:7c:4d:e0:4d:ac:7b:0a:f3:94:d3:c6:ab:8b:23: 74:a2:8f:66:86:ca:fa:0e:4b:e1:f6:06:9a:a5:e3:50:cc:31: 7f:f7:bd:92:0c:23:f5:c5:b9:dd:f7:b4:e8:b5:4c:c4:75:03: c9:ef:f7:c7:f0:2e:b8:4d:d4:aa:df:f3:fa:23:44:af:52:a1: 82:ee:18:16:75:65:eb:0b:5d:06:1f:40:7a:e6:e9:92:d5:02: cb:0a:e5:8d:2a:2f:80:ce:ff:03:6d:d6:79:f9:df:10:6e:55: 76:58:46:a2:fb:7e:98:d7:98:14:7d:d3:ce:c1:b9:3d:b5:24: 61:05:44:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MkMwNzExMC8GA1UEBRMoMENFMDYwQzJFNDMwREQ4NTE4MTBDOUYyMEZFQzFCQTIx MTk5RTNENjAeFw0yNTEwMTkxMDI5MzNaFw0yNTEwMjYxMDI5MzNaMBgxFjAUBgNV BAMTDTY4ZjRiZDhlLTI5MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPmuLTWJt2ZKfPnX3GgfMnBVfEAA8tfwowalpWITXEU3Op9VUum7BoZQgb1u9e bZjQs7YNTEioeCvGLAhR4qKyXYoKyjGZVbepieT2fDcq1XWnotKwUUmqIyDCz10c UXH1jt96R0B+Us7FB4dNkAdmoSLuWBdzfeX7x84mxExn/qj6vMTq6c4wIZC1OwTd b9jxNc3YyYUodvMiz638a/YuCr2QcYH1QVG3xK/cJPS3AfF6VdtRrT/V4tPoWWeP 5rfVzz+cEU+vxHNeaefZz6sNNdyWC0LQvC9SzjGRTR7Mw8OTAKJQpdKZNPLGN3GQ 9APQkIXSVExoxnmL9HEu1JkVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+Bej/fX5 QaqyrduAC8xLZA1jWq8wHwYDVR0jBBgwFoAUDOBgwuQw3YUYEMnyD+wbohGZ49Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyQzA3L0E3NzRBOUNFMUU2 MDExRjBCN0RDNzY1NEM0RjlBRTAyL0RPQmd3dVF3M1lVWUVNbnlELXdib2hHWjQ5 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRE9CZ3d1UXczWVVZRU1ueUQtd2JvaEdaNDlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYy QzA3L0E3NzRBOUNFMUU2MDExRjBCN0RDNzY1NEM0RjlBRTAyL0RPQmd3dVF3M1lV WUVNbnlELXdib2hHWjQ5WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADeZKjjOcWQKHFGK0o8rjGoDSwXQR/N5S7jfl609FYL/fJ3q6RruaJUB GwOIVzLxY6tjZyjy+/HTQ3HsL4+CtOY4nhkHAZu8EV/nY+E5pYBIV3r9CAXjW1OL xaH5UHfBPP4Si5SaheRhGvxzE/xcXYiWmqLgRJmcFJv2k4HzLgN+1E18TeBNrHsK 85TTxquLI3Sij2aGyvoOS+H2Bpql41DMMX/3vZIMI/XFud33tOi1TMR1A8nv98fw LrhN1Krf8/ojRK9SoYLuGBZ1ZesLXQYfQHrm6ZLVAssK5Y0qL4DO/wNt1nn53xBu VXZYRqL7fpjXmBR9087BuT21JGEFRDI= -----END CERTIFICATE-----Generated at Tue Oct 21 04:53:17 2025 by rpki-client