$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: TWeJBehZKbMHc1eXDbO4qPmXlVoQJb5ubJX2RXIA7Ig= Subject key identifier: B0:45:2C:47:01:99:26:E6:06:C2:2F:73:B1:61:9A:EB:72:9A:45:14 Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 0ACB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 0AC4 Signing time: Tue 04 Nov 2025 19:33:33 +0000 Manifest this update: Tue 04 Nov 2025 19:33:32 +0000 Manifest next update: Tue 11 Nov 2025 19:33:32 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: D6dbRzXa2+eiAo5H7mvCBDtEIhXdvivytLzY7cCA9OU=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:33:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2763 (0xacb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: Nov 4 19:33:32 2025 GMT Not After : Nov 11 19:33:32 2025 GMT Subject: CN=690a550d-eb99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ab:31:64:f5:4a:eb:f7:10:a0:22:88:82:16: d9:57:50:49:f4:28:c4:b2:37:4e:9b:7c:68:54:ee: b4:cd:13:43:01:06:c4:c8:c9:25:04:55:f1:32:ec: f7:4e:d2:6c:f8:e7:71:b1:fe:38:51:1e:e4:47:ff: a4:6f:f8:b2:20:3a:1f:2e:98:c2:12:83:9f:e5:ac: 7e:0c:b1:5b:b5:1e:39:fc:15:ed:3c:78:ef:da:b2: 21:67:a6:b8:d7:c8:71:76:df:07:75:5b:60:62:ab: 71:e6:da:27:6a:0e:51:44:db:59:1f:a4:7a:a1:db: ab:d9:a5:f2:8d:31:29:cd:94:95:90:5f:bc:20:df: 4a:43:a2:a8:75:8f:6b:b6:1d:16:3c:fc:44:80:ff: 86:e3:33:c9:53:fe:fa:e5:26:2e:c5:29:2e:c6:34: bc:80:f9:03:a9:b9:27:5e:80:33:aa:d5:9b:76:b0: cc:9e:74:fd:33:a3:9d:ec:9d:cd:07:74:8b:5b:da: 36:44:75:f3:c2:76:e1:1a:ed:10:7e:81:94:f6:51: d5:ab:c2:2a:f0:44:7a:7d:57:5b:dc:bb:0c:45:1c: 6e:f9:6e:5b:6f:44:df:aa:24:d0:65:2c:18:ea:8d: 45:52:3a:33:ad:69:23:3e:cc:f5:2d:aa:ad:ab:65: 3b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:45:2C:47:01:99:26:E6:06:C2:2F:73:B1:61:9A:EB:72:9A:45:14 X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:c2:aa:01:76:07:ed:1f:5c:64:8c:9c:6e:45:6c:36:ec:a9: 5b:7a:33:15:bf:0d:39:38:94:ff:50:6d:da:68:0c:03:76:5c: c5:bb:89:dc:ee:60:4e:4f:65:b2:2a:ad:fe:09:2f:9c:1d:21: 77:13:33:b0:1b:ae:3b:dd:06:5b:4e:fe:5d:9a:be:e2:30:ff: 52:c1:f3:9d:71:fa:f1:55:6d:2d:13:90:3a:a3:a2:ac:85:41: cd:c7:cf:a6:46:d8:38:e9:52:ab:cc:91:d9:56:c3:16:19:dd: 80:9e:8f:f2:be:09:b8:fe:e1:ff:c4:46:66:8e:c9:25:7f:b5: 47:d3:77:ae:ff:b6:32:cd:2b:2b:d5:80:a7:c8:8e:f0:93:2d: d2:be:f3:9c:74:08:5a:be:da:8b:60:0a:17:26:51:8b:21:e8: ac:28:fd:6a:8c:7b:c7:d1:ef:bb:75:e3:a4:a1:02:a1:9e:61: 06:e9:dc:cc:33:38:7d:78:56:29:a5:93:c3:c7:18:35:30:cc: 4e:11:ab:86:11:7c:1c:a6:52:e1:6b:db:b0:a7:a8:ce:54:40: ab:f6:0f:88:09:9d:95:42:07:4a:4d:2e:bb:2f:8d:2e:43:77: 20:54:02:9d:31:a0:99:26:a1:15:ba:10:54:27:2d:55:32:4b: f0:a6:ea:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjUxMTA0MTkzMzMyWhcNMjUxMTExMTkzMzMyWjAYMRYwFAYD VQQDEw02OTBhNTUwZC1lYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxasxZPVK6/cQoCKIghbZV1BJ9CjEsjdOm3xoVO60zRNDAQbEyMklBFXxMuz3 TtJs+Odxsf44UR7kR/+kb/iyIDofLpjCEoOf5ax+DLFbtR45/BXtPHjv2rIhZ6a4 18hxdt8HdVtgYqtx5tonag5RRNtZH6R6odur2aXyjTEpzZSVkF+8IN9KQ6KodY9r th0WPPxEgP+G4zPJU/765SYuxSkuxjS8gPkDqbknXoAzqtWbdrDMnnT9M6Od7J3N B3SLW9o2RHXzwnbhGu0QfoGU9lHVq8Iq8ER6fVdb3LsMRRxu+W5bb0TfqiTQZSwY 6o1FUjozrWkjPsz1Laqtq2U7wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBFLEcB mSbmBsIvc7FhmutymkUUMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgwqoBdgftH1xkjJxuRWw27KlbejMVvw05OJT/UG3aaAwDdlzFu4nc 7mBOT2WyKq3+CS+cHSF3EzOwG6473QZbTv5dmr7iMP9SwfOdcfrxVW0tE5A6o6Ks hUHNx8+mRtg46VKrzJHZVsMWGd2Ano/yvgm4/uH/xEZmjsklf7VH03eu/7YyzSsr 1YCnyI7wky3SvvOcdAhavtqLYAoXJlGLIeisKP1qjHvH0e+7deOkoQKhnmEG6dzM Mzh9eFYppZPDxxg1MMxOEauGEXwcplLha9uwp6jOVECr9g+ICZ2VQgdKTS67L40u Q3cgVAKdMaCZJqEVuhBUJy1VMkvwpuq/ -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:20 2025 by rpki-client