$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: MuSIWvJGy2nv1nMeZ3j1QrHQgrEVHSzkLVFD+MTL5Yw= Subject key identifier: B8:F9:1C:A3:58:E8:7B:B5:D0:79:07:F9:A4:00:6E:19:B1:EA:35:CC Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: DB Signing time: Sun 09 Nov 2025 03:27:29 +0000 Manifest this update: Sun 09 Nov 2025 03:27:29 +0000 Manifest next update: Sun 16 Nov 2025 03:27:29 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: H2L14q6JT7l41vuyunMsexu3EavyNThC5SQCAoAaJcU=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: Aikvd4VQaZ5YWJuoaQst8o1un+A8abkdzu+IgmJpwMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Nov 2025 03:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Nov 9 03:27:29 2025 GMT Not After : Nov 16 03:27:29 2025 GMT Subject: CN=69100a21-2ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:95:63:26:40:18:a5:bb:c3:e7:c6:e1:cb:80: c5:96:37:e0:7c:2a:c8:c6:5f:11:57:71:9c:71:cc: 2b:1f:6c:46:37:84:9c:43:44:3a:83:25:3a:ac:82: 02:aa:71:aa:44:e7:d9:d7:cc:5c:5f:a0:71:36:58: d5:b1:8d:fc:0d:04:a4:96:19:3f:73:75:e8:dc:89: c4:ed:61:ab:1c:f5:30:69:13:3f:7d:37:b6:66:95: 25:e8:55:ad:3e:31:2e:8d:39:a7:7e:02:90:26:e9: bd:3c:3b:6d:22:a0:27:e8:e4:23:a9:46:4f:a7:24: df:cf:e2:2f:4f:08:5e:f5:f4:69:2d:7d:7e:cc:b8: e5:44:dd:c0:2d:3a:99:0f:c3:4b:f1:9c:b8:86:33: fd:ce:b0:86:fe:d5:3b:df:6b:32:34:b5:2b:27:c0: 24:6a:56:4d:98:a7:01:45:1b:7e:b1:13:2e:b0:f2: 1e:c1:6d:3e:21:6e:73:75:0a:5a:bb:ac:f6:86:c2: a5:fc:cc:67:5e:4e:64:dd:2f:03:e0:c0:dd:29:37: 31:44:61:ff:89:f6:27:fe:71:be:43:42:69:2b:97: 64:71:ae:c3:48:12:f7:14:65:8e:62:0f:33:a2:01: 45:ac:de:26:7c:28:5d:62:b3:12:9d:40:eb:8d:0f: 30:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F9:1C:A3:58:E8:7B:B5:D0:79:07:F9:A4:00:6E:19:B1:EA:35:CC X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:03:14:e7:b7:88:4d:fb:17:78:7a:82:c6:df:04:43:61:85: 4a:aa:b2:18:53:da:92:77:61:ef:07:1e:e3:11:4a:56:59:68: 6d:b6:a4:1f:e3:c9:25:b1:f0:b2:6d:dc:a9:4f:19:e9:71:91: 4d:c1:99:9c:25:ad:cc:13:33:e8:4e:c1:e6:b8:94:c9:85:6f: 50:8e:18:fc:a3:04:94:34:b1:15:be:72:c5:bc:98:e8:aa:4b: 98:64:27:55:7d:d1:a7:36:a0:2c:56:df:23:29:e0:e1:aa:f1: 61:be:8f:d6:0a:99:7e:46:e7:26:5b:67:d4:c8:c3:e2:b5:38: af:9f:c0:8d:b9:8a:5a:e1:8e:12:0e:a2:88:0a:fa:29:eb:28: 33:3a:c7:1f:cc:ad:08:a7:19:f0:30:7c:8d:4f:9d:c0:0e:20: 46:2f:4b:09:0c:05:76:5b:c4:c8:03:ea:13:86:58:27:fb:4f: fe:f0:4f:92:b3:ed:42:2f:e5:21:96:b4:02:5f:21:a0:79:71: 2a:84:54:8f:29:9c:c0:7c:0b:47:e5:4e:08:d3:ca:a6:4d:ea: e9:4b:3a:ce:1d:ae:eb:8f:60:f9:92:42:5b:bf:2c:72:d7:20: 6e:d0:3e:c4:cd:db:1c:f2:11:03:7d:35:4e:25:6d:41:fc:11: 64:47:f9:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjUxMTA5MDMyNzI5WhcNMjUxMTE2MDMyNzI5WjAYMRYwFAYD VQQDEw02OTEwMGEyMS0yZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5VjJkAYpbvD58bhy4DFljfgfCrIxl8RV3GcccwrH2xGN4ScQ0Q6gyU6rIIC qnGqROfZ18xcX6BxNljVsY38DQSklhk/c3Xo3InE7WGrHPUwaRM/fTe2ZpUl6FWt PjEujTmnfgKQJum9PDttIqAn6OQjqUZPpyTfz+IvTwhe9fRpLX1+zLjlRN3ALTqZ D8NL8Zy4hjP9zrCG/tU732syNLUrJ8AkalZNmKcBRRt+sRMusPIewW0+IW5zdQpa u6z2hsKl/MxnXk5k3S8D4MDdKTcxRGH/ifYn/nG+Q0JpK5dkca7DSBL3FGWOYg8z ogFFrN4mfChdYrMSnUDrjQ8wnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLj5HKNY 6Hu10HkH+aQAbhmx6jXMMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLAxTnt4hN+xd4eoLG3wRDYYVKqrIYU9qSd2HvBx7jEUpWWWhttqQf 48klsfCybdypTxnpcZFNwZmcJa3MEzPoTsHmuJTJhW9Qjhj8owSUNLEVvnLFvJjo qkuYZCdVfdGnNqAsVt8jKeDhqvFhvo/WCpl+RucmW2fUyMPitTivn8CNuYpa4Y4S DqKICvop6ygzOscfzK0IpxnwMHyNT53ADiBGL0sJDAV2W8TIA+oThlgn+0/+8E+S s+1CL+UhlrQCXyGgeXEqhFSPKZzAfAtH5U4I08qmTerpSzrOHa7rj2D5kkJbvyxy 1yBu0D7Ezdsc8hEDfTVOJW1B/BFkR/l7 -----END CERTIFICATE-----Generated at Sun Nov 9 09:06:40 2025 by rpki-client