$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: sPWWe+4lXVGehA0NqhTimlZQCYxBC4EnU9bkg+aW29E= Subject key identifier: 83:4C:96:F9:FA:E5:92:69:D4:99:B2:D8:73:80:D6:A0:E7:AD:98:D0 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 06BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 06BA Signing time: Tue 04 Nov 2025 22:14:23 +0000 Manifest this update: Tue 04 Nov 2025 22:14:23 +0000 Manifest next update: Tue 11 Nov 2025 22:14:23 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: bFags9Bxa5SydwceLK01SUxU4DOdh/WJzecc+UXk3Ug=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: 8goNJpX3SWLmR+a+Wvt1jnrzs1RIuPAmcWPIzJu1GEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Nov 4 22:14:23 2025 GMT Not After : Nov 11 22:14:23 2025 GMT Subject: CN=690a7abf-25f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:06:82:b3:bf:99:d6:de:26:ff:a2:17:db:e3: a9:63:27:83:dc:f5:ea:22:6e:ae:ac:c2:4e:8b:12: c4:d1:81:81:84:68:2f:99:a8:ff:2c:54:84:f4:45: b7:53:05:ca:88:12:4b:3f:2d:21:f5:4a:7f:5e:ae: d4:bd:ec:d0:c0:d7:37:6b:10:6c:c0:be:34:98:a8: d7:fc:e7:39:6f:cb:b9:65:b5:93:bf:59:87:26:36: f3:92:22:77:a3:15:44:c0:95:c5:8d:ec:c6:db:fe: 85:c6:6b:62:49:97:3e:9c:fd:04:87:a7:66:6d:82: 0c:36:b4:db:fe:4a:aa:b0:ca:ff:75:9a:1c:f3:9d: 67:69:07:ef:19:10:08:8c:a3:c8:ed:35:6c:f4:6e: 16:ab:d7:33:5c:45:d9:3f:d9:17:0a:0e:84:da:8f: 2f:b2:a5:42:be:a0:18:f8:5a:24:a4:55:55:88:2f: 64:54:06:a5:a1:b7:f8:72:df:d6:3a:5a:28:45:ba: 31:61:fe:b1:09:4c:58:1f:5e:fc:f1:d7:23:13:5f: ea:db:71:45:e4:4f:77:0e:06:a4:bc:74:1c:a0:53: 41:0d:77:5e:13:fb:57:8f:e0:29:ac:9b:a5:62:40: 40:8f:c8:2b:f7:1a:d2:00:18:e8:e8:d1:14:1a:7d: a6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4C:96:F9:FA:E5:92:69:D4:99:B2:D8:73:80:D6:A0:E7:AD:98:D0 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a3:3c:a7:dc:31:cb:da:f3:c4:77:7b:90:d2:de:38:3b:b0: 23:4c:4b:ac:ae:6a:fd:67:53:42:bb:bd:a0:28:43:c2:e0:3c: 70:78:a1:dd:0e:6d:03:95:36:1d:8d:52:f0:2b:ed:34:1f:65: 19:47:fb:06:58:b2:b8:19:00:1c:85:be:7e:fd:d1:67:16:ce: 94:4a:26:fc:2e:c6:8a:3b:63:aa:5d:14:70:88:c1:94:95:f3: 03:7c:2e:aa:67:e9:c6:97:a8:f4:64:bb:f5:4e:e4:38:87:48: 25:94:ef:6d:c6:60:0c:5f:df:5b:22:1e:ac:49:88:0a:3e:0c: 3e:6d:f5:f9:6a:ca:be:6f:81:c1:d7:9c:5a:83:b5:68:b9:a8: cd:7a:dc:cc:bc:34:6c:66:9a:57:44:a6:ba:2f:87:a3:d4:40: a6:f7:0b:dc:b3:a3:70:4d:b3:41:34:23:13:64:0c:5e:8b:a6: 59:1b:86:98:b4:21:ce:d2:2b:8a:53:20:4b:87:a9:1c:1b:4d: 23:5f:64:ec:0e:2d:da:54:6e:86:15:50:3b:d5:fc:0c:bb:91: 04:01:7f:ee:36:e4:f4:7d:33:88:6f:01:f4:c8:34:af:05:31: 51:83:59:04:d3:47:1a:9f:18:b5:20:77:58:43:e9:c5:ad:e5: 4a:87:0d:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjUxMTA0MjIxNDIzWhcNMjUxMTExMjIxNDIzWjAYMRYwFAYD VQQDEw02OTBhN2FiZi0yNWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAaCs7+Z1t4m/6IX2+OpYyeD3PXqIm6urMJOixLE0YGBhGgvmaj/LFSE9EW3 UwXKiBJLPy0h9Up/Xq7UvezQwNc3axBswL40mKjX/Oc5b8u5ZbWTv1mHJjbzkiJ3 oxVEwJXFjezG2/6FxmtiSZc+nP0Eh6dmbYIMNrTb/kqqsMr/dZoc851naQfvGRAI jKPI7TVs9G4Wq9czXEXZP9kXCg6E2o8vsqVCvqAY+FokpFVViC9kVAalobf4ct/W OlooRboxYf6xCUxYH1788dcjE1/q23FF5E93DgakvHQcoFNBDXdeE/tXj+AprJul YkBAj8gr9xrSABjo6NEUGn2mOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINMlvn6 5ZJp1Jmy2HOA1qDnrZjQMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8ozyn3DHL2vPEd3uQ0t44O7AjTEusrmr9Z1NCu72gKEPC4DxweKHd Dm0DlTYdjVLwK+00H2UZR/sGWLK4GQAchb5+/dFnFs6USib8LsaKO2OqXRRwiMGU lfMDfC6qZ+nGl6j0ZLv1TuQ4h0gllO9txmAMX99bIh6sSYgKPgw+bfX5asq+b4HB 15xag7VouajNetzMvDRsZppXRKa6L4ej1ECm9wvcs6NwTbNBNCMTZAxei6ZZG4aY tCHO0iuKUyBLh6kcG00jX2TsDi3aVG6GFVA71fwMu5EEAX/uNuT0fTOIbwH0yDSv BTFRg1kE00canxi1IHdYQ+nFreVKhw0U -----END CERTIFICATE-----Generated at Thu Nov 6 04:26:43 2025 by rpki-client