$ rpki-client -vvf rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft File: oBoPBuMQs4EwEx14gpcL8WLdDWY.mft (raw, json) Hash identifier: QcDF4jCkWwYG+KapTfJt5UcPqn/mm+stoOVcAZGY+fk= Subject key identifier: 2B:17:61:3C:87:9E:03:0E:2E:24:F9:4D:76:87:19:F8:43:C0:D3:9E Authority key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 Certificate issuer: /CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Certificate serial: 0384 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft Manifest number: 037C Signing time: Mon 27 Oct 2025 02:15:03 +0000 Manifest this update: Mon 27 Oct 2025 02:15:03 +0000 Manifest next update: Mon 03 Nov 2025 02:15:03 +0000 Files and hashes: 1: oBoPBuMQs4EwEx14gpcL8WLdDWY.crl (hash: EWAtqKlrYAUQhepR8qu1AzEQrDXVk2fr6jRgDwh+j4I=) 2: 2DC3DC54D54E11EF8C5B1651C4F9AE02.roa (hash: 4rLlw7arW1sP5IbnNCTRGWNEvfDKutT79yaN5ySnrBc=) 3: 39952E50C6CB11ECB185E43EC4F9AE02.roa (hash: dkZcQ/A932iJ1dN4/qgrPfW8ADl8k2VS3zXyLTEFE+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 02:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E55, serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Validity Not Before: Oct 27 02:15:03 2025 GMT Not After : Nov 3 02:15:03 2025 GMT Subject: CN=68fed5a7-8d47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d0:23:9b:13:c5:df:3f:0e:81:79:e3:b6:b2: 5e:cd:21:43:4f:04:11:ba:e9:ac:a3:c8:9a:a3:c5: ea:52:a8:c3:82:a9:15:fb:43:69:ee:27:a9:2c:6c: 29:37:79:bd:4e:90:57:c5:ac:dd:e9:6b:4a:c0:d6: db:85:92:8b:9a:87:3b:39:fc:99:3a:7f:f8:b3:db: dd:bd:3c:39:0e:38:e2:ba:ca:1f:f4:d9:de:fc:fe: d7:5c:5d:4e:59:08:81:b6:7b:99:68:6d:14:78:f5: 08:b7:f6:b8:2e:86:6b:aa:24:f6:0a:0c:cf:7f:c1: bd:27:11:0d:aa:88:2e:22:13:5a:1d:1c:3a:2e:57: af:b2:61:b5:ce:56:a8:eb:90:24:6e:a6:b6:3f:44: 18:06:69:0a:c2:0e:e0:79:67:ef:b3:4c:55:a7:f0: a8:a2:dc:24:0d:2b:93:33:3b:34:7f:88:18:85:09: eb:b0:15:4f:65:bb:01:88:3a:00:15:d1:eb:a4:c9: ee:fb:5d:e2:d8:be:8a:72:99:66:fa:96:b0:08:80: 35:9c:91:75:51:81:df:73:e7:64:ac:46:c4:04:aa: 37:1c:df:46:72:f1:e4:55:08:0b:53:66:3d:d5:49: a3:81:0c:ff:b0:6f:0b:18:bb:dc:bf:34:99:ed:16: 2a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:17:61:3C:87:9E:03:0E:2E:24:F9:4D:76:87:19:F8:43:C0:D3:9E X509v3 Authority Key Identifier: keyid:A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:fa:ec:8a:bd:48:21:bc:93:73:8a:e2:5d:4d:00:f3:f9:61: a7:ba:66:ec:ce:00:53:c5:c8:43:42:56:a4:9e:b1:12:91:a5: 0c:ab:a7:26:cd:ce:9a:c0:e3:2c:bf:88:af:f9:0b:d1:d8:a0: 2e:4e:2e:22:90:f5:45:11:16:ec:51:fe:f1:f6:a7:f5:a9:40: 24:0d:6f:04:8b:2c:89:e8:ce:15:fe:73:54:78:bd:2b:57:5d: 4f:5e:bf:67:d7:e5:c7:52:5a:25:2b:17:f6:2c:23:f0:d4:bd: 0f:ca:87:a2:02:06:38:ff:e7:27:05:e7:29:39:30:56:59:4b: bf:fd:4c:d3:cc:23:0a:2a:d7:0b:fa:2e:53:28:d7:a6:8d:64: 9e:db:97:61:42:d5:32:39:d9:20:46:75:be:d3:ed:75:2f:3f: cf:7e:23:ce:76:c4:16:c8:29:d1:0c:e9:c1:ed:61:35:73:e5: 22:77:92:d2:c2:70:21:1c:9d:54:e0:c2:d2:ba:1b:f8:6e:e3: 55:d0:49:72:3d:37:ee:7f:82:1f:8b:4b:92:c0:6b:54:c7:bd: 84:a6:42:b1:23:fa:88:7f:24:29:c2:3a:a7:20:49:d9:c8:2a: f0:64:d7:0b:bc:3f:85:b5:3f:8c:45:bb:a5:ce:7b:5b:78:d0: 22:3d:93:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFNTUxMTAvBgNVBAUTKEEwMUEwRjA2RTMxMEIzODEzMDEzMUQ3ODgyOTcwQkYx NjJERDBENjYwHhcNMjUxMDI3MDIxNTAzWhcNMjUxMTAzMDIxNTAzWjAYMRYwFAYD VQQDEw02OGZlZDVhNy04ZDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NAjmxPF3z8OgXnjtrJezSFDTwQRuumso8iao8XqUqjDgqkV+0Np7iepLGwp N3m9TpBXxazd6WtKwNbbhZKLmoc7OfyZOn/4s9vdvTw5Djjiusof9Nne/P7XXF1O WQiBtnuZaG0UePUIt/a4LoZrqiT2CgzPf8G9JxENqoguIhNaHRw6LlevsmG1zlao 65Akbqa2P0QYBmkKwg7geWfvs0xVp/CootwkDSuTMzs0f4gYhQnrsBVPZbsBiDoA FdHrpMnu+13i2L6Kcplm+pawCIA1nJF1UYHfc+dkrEbEBKo3HN9GcvHkVQgLU2Y9 1UmjgQz/sG8LGLvcvzSZ7RYqEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsXYTyH ngMOLiT5TXaHGfhDwNOeMB8GA1UdIwQYMBaAFKAaDwbjELOBMBMdeIKXC/Fi3Q1m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEU1NS83RDMyQTc0RUM2 MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0RXdFeDE0Z3BjTDhXTGRE V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Cb1BCdU1RczRFd0V4MTRncGNMOFdMZERXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEU1NS83RDMyQTc0RUM2MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0 RXdFeDE0Z3BjTDhXTGREV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm+uyKvUghvJNziuJdTQDz+WGnumbszgBTxchDQlaknrESkaUMq6cm zc6awOMsv4iv+QvR2KAuTi4ikPVFERbsUf7x9qf1qUAkDW8EiyyJ6M4V/nNUeL0r V11PXr9n1+XHUlolKxf2LCPw1L0PyoeiAgY4/+cnBecpOTBWWUu//UzTzCMKKtcL +i5TKNemjWSe25dhQtUyOdkgRnW+0+11Lz/PfiPOdsQWyCnRDOnB7WE1c+Uid5LS wnAhHJ1U4MLSuhv4buNV0ElyPTfuf4Ifi0uSwGtUx72EpkKxI/qIfyQpwjqnIEnZ yCrwZNcLvD+FtT+MRbulzntbeNAiPZOH -----END CERTIFICATE-----Generated at Mon Oct 27 17:40:00 2025 by rpki-client