$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: Ki3XHrv9BXRZ5NVtc0CU2xcMPdPK8fvhTuTwjcxs3dM= Subject key identifier: A1:FC:BA:98:36:A4:2F:3A:94:01:45:68:12:DF:E6:70:26:8B:48:38 Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: C4 Signing time: Wed 05 Nov 2025 06:03:03 +0000 Manifest this update: Wed 05 Nov 2025 06:03:03 +0000 Manifest next update: Wed 12 Nov 2025 06:03:03 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: XYPFPZN15P2r66PRLppvGw2wYS8evtEq7VqOS9o8IvM=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: iA472Qc8jmcAQSQWONhwLi8d73fir6sYTg+zRw+sbrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Nov 5 06:03:03 2025 GMT Not After : Nov 12 06:03:03 2025 GMT Subject: CN=690ae897-6519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e3:cd:7b:2b:3b:67:21:5e:a0:34:35:0e:92: 54:2d:20:55:d4:4b:3f:8f:24:b0:b9:72:62:c8:67: 0a:ff:9a:66:91:53:c8:22:c1:16:18:7e:5c:e3:0b: cc:c2:50:10:02:7b:92:7a:2f:50:c9:40:39:49:36: d1:e5:f6:4d:de:b5:92:eb:54:87:46:d0:f1:9e:4a: c7:ca:be:2b:69:d5:a3:d3:f0:6a:4b:7d:c6:86:e7: 55:5f:45:c2:84:10:7c:22:3b:7e:0a:fb:ea:ab:06: 83:81:7c:74:c5:9a:c0:58:aa:ad:2d:2f:e0:47:21: 2d:2e:c4:e1:7e:b9:5f:54:9b:31:d0:c6:2a:3b:d5: a3:94:b9:02:80:91:67:9e:3c:ff:9e:43:c7:1f:15: fe:5b:31:7a:63:a0:d4:d0:67:68:6e:ff:1a:a5:76: 6d:a7:b7:c2:7d:01:eb:17:79:0a:3e:c6:44:32:aa: 62:a6:f3:4b:f3:72:94:9f:b0:32:da:65:45:2b:e2: ce:22:f1:ec:e0:1e:84:ed:ea:18:2f:c0:d3:74:b3: d2:02:a1:39:c0:8f:62:07:62:4b:00:9d:23:c1:3b: 89:e6:d3:da:6b:b2:b3:e2:e2:29:e1:38:b3:d8:6b: bd:2e:aa:58:ab:76:29:30:cd:aa:4d:c6:3f:9b:98: 3c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:FC:BA:98:36:A4:2F:3A:94:01:45:68:12:DF:E6:70:26:8B:48:38 X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:ee:f6:4e:8d:95:93:5c:2a:57:ef:07:0e:77:a5:5d:65:13: ff:30:19:16:ce:5d:c4:34:e2:11:6b:28:ca:ba:9e:a8:14:6a: 1c:e8:6c:db:57:71:71:b8:98:03:b6:04:a6:72:05:a1:f2:ff: 9c:6e:60:bd:e2:af:21:0a:c7:8e:41:3f:4c:1f:dd:30:a0:34: 55:f2:bc:a4:b7:be:2c:07:57:5d:03:c2:fa:9d:d0:90:82:50: 0b:dd:ac:e4:d7:15:f4:ba:dc:ab:6d:55:8b:7a:e5:d5:6f:d6: cf:6e:b1:15:59:e8:a9:79:8b:36:be:8a:bd:56:db:76:69:e6: f5:1a:4d:4a:d8:63:2a:39:37:10:4d:10:9d:93:c6:b3:33:16: ac:a0:f1:dd:0f:fa:a6:60:4c:4d:e8:21:29:d6:8c:0e:9f:cd: 8e:15:d8:43:6d:a9:4a:c8:a3:b7:ff:d6:40:89:06:a6:8e:6d: dc:80:e9:eb:a1:44:d6:de:61:71:70:7b:a0:a2:e6:b9:ac:df: d6:7e:39:83:9a:d2:08:bb:59:87:50:b3:8b:e5:4c:23:6e:ac: a4:e9:e0:db:71:cd:2c:1f:84:45:72:45:9c:6c:89:99:42:3a: 10:dc:f9:f1:a0:84:2b:25:f0:78:e5:d3:1d:fc:bc:9c:79:b1: 84:77:5c:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjUxMTA1MDYwMzAzWhcNMjUxMTEyMDYwMzAzWjAYMRYwFAYD VQQDEw02OTBhZTg5Ny02NTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuPNeys7ZyFeoDQ1DpJULSBV1Es/jySwuXJiyGcK/5pmkVPIIsEWGH5c4wvM wlAQAnuSei9QyUA5STbR5fZN3rWS61SHRtDxnkrHyr4radWj0/BqS33GhudVX0XC hBB8Ijt+CvvqqwaDgXx0xZrAWKqtLS/gRyEtLsThfrlfVJsx0MYqO9WjlLkCgJFn njz/nkPHHxX+WzF6Y6DU0Gdobv8apXZtp7fCfQHrF3kKPsZEMqpipvNL83KUn7Ay 2mVFK+LOIvHs4B6E7eoYL8DTdLPSAqE5wI9iB2JLAJ0jwTuJ5tPaa7Kz4uIp4Tiz 2Gu9LqpYq3YpMM2qTcY/m5g8FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKH8upg2 pC86lAFFaBLf5nAmi0g4MB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEzQi8yMjcwMTlEQTkwMTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQw RkstM19vYlJfZXIyU0xYSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA77vZOjZWTXCpX7wcOd6VdZRP/MBkWzl3ENOIRayjKup6oFGoc6Gzb V3FxuJgDtgSmcgWh8v+cbmC94q8hCseOQT9MH90woDRV8rykt74sB1ddA8L6ndCQ glAL3azk1xX0utyrbVWLeuXVb9bPbrEVWeipeYs2voq9Vtt2aeb1Gk1K2GMqOTcQ TRCdk8azMxasoPHdD/qmYExN6CEp1owOn82OFdhDbalKyKO3/9ZAiQamjm3cgOnr oUTW3mFxcHugoua5rN/WfjmDmtIIu1mHULOL5Uwjbqyk6eDbcc0sH4RFckWcbImZ QjoQ3PnxoIQrJfB45dMd/LycebGEd1xj -----END CERTIFICATE-----Generated at Wed Nov 5 19:25:08 2025 by rpki-client