$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft File: ObsL_xT7a0tfhhNydNQlE_N1Okc.mft (raw, json) Hash identifier: aSNcH/aIrgZqR66Ju3HKH7GU4vAfxVFkDLPlcjNUN2Q= Subject key identifier: 23:17:DE:D4:DD:74:38:D0:9C:FF:31:1B:69:DA:22:B5:8A:C6:7F:26 Authority key identifier: 39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 Certificate issuer: /CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Certificate serial: 0548 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft Manifest number: 0541 Signing time: Sun 02 Nov 2025 23:27:27 +0000 Manifest this update: Sun 02 Nov 2025 23:27:27 +0000 Manifest next update: Sun 09 Nov 2025 23:27:27 +0000 Files and hashes: 1: ObsL_xT7a0tfhhNydNQlE_N1Okc.crl (hash: zPV/1S8FSd9w7mw5B9I7HlZdpH7aIYnEALpqcr9NbzY=) 2: 5D4B0B5E153611ECA897546BC4F9AE02.roa (hash: c5J0KdHOLoi3ObVHZJngE8j6ijFOnrM4KMu8sfCJ1Cw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1352 (0x548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CC, serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Validity Not Before: Nov 2 23:27:27 2025 GMT Not After : Nov 9 23:27:27 2025 GMT Subject: CN=6907e8df-aed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2b:30:9c:ef:8a:da:f7:23:47:44:af:93:26: 48:2b:be:49:42:b5:69:2c:54:5a:28:c2:47:99:95: e2:e0:3d:94:c0:0b:33:f1:42:40:f1:f4:b4:97:9a: 82:85:a2:d6:5c:22:60:4a:37:79:06:b1:c9:6b:9c: d0:87:1a:66:c7:17:de:d6:8c:e4:f0:85:cb:bb:a2: eb:36:e8:22:22:0f:6f:82:3a:84:9a:b7:e5:28:4e: df:e7:66:89:9e:51:11:30:ec:ed:25:ce:19:4e:9a: bf:51:02:b8:41:05:e2:e8:7e:53:12:72:07:81:93: 33:6b:55:d7:b0:18:67:a7:20:78:b4:53:71:d8:02: 86:2b:5b:d9:55:e5:99:0b:21:44:0f:fc:77:60:9d: 8e:24:e6:d9:71:43:2f:a6:e4:77:03:6a:7e:5a:c1: 3a:11:89:ee:65:65:5e:06:41:f2:92:8d:fd:d3:ac: 3c:86:a3:67:4d:e5:a8:ad:dd:91:e0:6e:29:70:b3: 36:83:fb:fe:8a:09:2c:2f:2f:7a:4e:60:88:6f:11: e1:80:29:93:79:79:0e:72:18:dd:be:9f:a7:a3:10: af:88:b3:4e:ac:94:9e:08:d1:c0:1f:de:41:73:ca: c6:f4:de:e1:fb:ad:fe:f5:cd:10:d0:b6:71:5f:3f: ce:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:17:DE:D4:DD:74:38:D0:9C:FF:31:1B:69:DA:22:B5:8A:C6:7F:26 X509v3 Authority Key Identifier: keyid:39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:04:65:11:a4:bd:89:a4:c3:46:b4:fe:a9:2d:bc:58:7b:0a: 70:31:75:41:fc:37:62:e5:78:68:d3:72:5a:5d:ea:79:0d:5f: 5b:02:a1:6e:f3:31:62:1a:51:22:d2:2b:cd:da:78:af:a8:36: 1b:63:36:18:95:76:16:5c:cc:18:a6:56:d4:88:e0:d1:4a:e5: fc:06:4a:4b:1b:ac:6a:f0:7e:c2:78:ac:46:0c:98:b9:e9:7e: a8:8f:28:20:f6:de:b5:4a:34:ba:c7:b5:a2:01:88:f8:ac:7e: ce:a0:fe:70:70:99:15:94:4d:d9:d7:25:1a:67:16:d3:ac:01: 2a:90:fb:2c:f5:33:ab:cd:e1:fa:d2:84:78:11:ff:6a:d2:c6: e7:f8:a9:b2:db:5f:bb:f5:29:1b:8d:68:7b:fb:f2:bd:12:53: 9f:1a:85:2a:4d:55:62:d1:96:31:a3:ba:83:f0:1b:07:d1:15: 7f:f6:8f:d7:67:0f:a9:c0:ad:69:0b:9d:2d:fb:6e:3e:1d:c1: c4:3b:37:b9:b6:b1:6a:68:6d:16:67:a0:17:a9:a9:b1:f7:f3: ed:3c:e4:af:9f:a0:ff:8c:05:4c:a8:30:91:db:32:4c:8b:13: 29:60:33:ba:20:5d:50:c1:e1:f9:4d:b0:29:52:e4:e0:2c:59: 64:28:76:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0MxMTAvBgNVBAUTKDM5QkIwQkZGMTRGQjZCNEI1Rjg2MTM3Mjc0RDQyNTEz RjM3NTNBNDcwHhcNMjUxMTAyMjMyNzI3WhcNMjUxMTA5MjMyNzI3WjAYMRYwFAYD VQQDEw02OTA3ZThkZi1hZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SswnO+K2vcjR0SvkyZIK75JQrVpLFRaKMJHmZXi4D2UwAsz8UJA8fS0l5qC haLWXCJgSjd5BrHJa5zQhxpmxxfe1ozk8IXLu6LrNugiIg9vgjqEmrflKE7f52aJ nlERMOztJc4ZTpq/UQK4QQXi6H5TEnIHgZMza1XXsBhnpyB4tFNx2AKGK1vZVeWZ CyFED/x3YJ2OJObZcUMvpuR3A2p+WsE6EYnuZWVeBkHyko3906w8hqNnTeWord2R 4G4pcLM2g/v+igksLy96TmCIbxHhgCmTeXkOchjdvp+noxCviLNOrJSeCNHAH95B c8rG9N7h+63+9c0Q0LZxXz/O/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMX3tTd dDjQnP8xG2naIrWKxn8mMB8GA1UdIwQYMBaAFDm7C/8U+2tLX4YTcnTUJRPzdTpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDQy9GODlDM0VCNjE1 MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2EwdGZoaE55ZE5RbEVfTjFP a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ic0xfeFQ3YTB0ZmhoTnlkTlFsRV9OMU9rYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjRDQy9GODlDM0VCNjE1MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2Ew dGZoaE55ZE5RbEVfTjFPa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoBGURpL2JpMNGtP6pLbxYewpwMXVB/Ddi5Xho03JaXep5DV9bAqFu 8zFiGlEi0ivN2nivqDYbYzYYlXYWXMwYplbUiODRSuX8BkpLG6xq8H7CeKxGDJi5 6X6ojygg9t61SjS6x7WiAYj4rH7OoP5wcJkVlE3Z1yUaZxbTrAEqkPss9TOrzeH6 0oR4Ef9q0sbn+Kmy21+79SkbjWh7+/K9ElOfGoUqTVVi0ZYxo7qD8BsH0RV/9o/X Zw+pwK1pC50t+24+HcHEOze5trFqaG0WZ6AXqamx9/PtPOSvn6D/jAVMqDCR2zJM ixMpYDO6IF1QweH5TbApUuTgLFlkKHa1 -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:48 2025 by rpki-client