$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft File: X60bOb5FVSYiBtGfWmabx7afcsg.mft (raw, json) Hash identifier: dOpEeJ7VeEMtnV0Qr2wNb5xXHRqnkzJvl96jy6tycFU= Subject key identifier: 10:42:C7:DD:D9:44:24:74:F0:EF:93:46:D3:BE:4A:62:6A:B3:4A:BE Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft Manifest number: 06C4 Signing time: Tue 04 Nov 2025 22:10:52 +0000 Manifest this update: Tue 04 Nov 2025 22:10:51 +0000 Manifest next update: Tue 11 Nov 2025 22:10:51 +0000 Files and hashes: 1: X60bOb5FVSYiBtGfWmabx7afcsg.crl (hash: 9OTuS92Wratd5Edv2qzjBzuA9RF5Th+TYu+udEEhf1s=) 2: C4245600E55A11ED98D38780C4F9AE02.roa (hash: QJpUBqNgws3PM1RQ/YpxcOLuHjSbFEKESqjd/lkWkNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: Nov 4 22:10:51 2025 GMT Not After : Nov 11 22:10:51 2025 GMT Subject: CN=690a79ec-5ae9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:91:11:fa:73:f6:de:da:27:17:3c:6d:fb:cf: 11:74:20:21:48:b5:bc:0c:19:a7:6f:7f:1c:61:84: 71:50:af:b4:14:55:78:f5:a8:21:44:da:b0:66:7e: 9c:77:60:b2:b9:5d:45:54:c7:00:dc:22:5f:a5:42: be:3d:ab:86:5d:b9:4f:76:3f:14:88:44:a2:62:24: 79:72:4f:cb:d4:7a:b7:aa:51:60:99:27:5f:9e:9e: a0:08:0c:28:91:b6:7a:d0:38:96:99:ac:59:5c:ab: e4:f8:9c:92:75:80:fd:ab:46:f6:a1:54:17:89:3c: 82:16:f7:8e:97:e9:80:b5:99:46:91:72:e4:ab:09: f2:64:4b:f3:63:c8:77:ef:7a:37:1e:0d:5a:e0:e3: 35:45:fc:6b:c1:00:9c:68:c1:02:88:16:c1:c7:85: 46:d7:66:77:50:e8:70:4f:a2:69:0b:4e:18:6c:3d: 25:62:a3:16:5e:bc:57:49:0b:c1:93:ff:1f:ac:8e: c4:79:0b:61:d5:1d:4d:c4:a6:94:39:ae:25:97:6b: 0b:b7:2c:de:56:38:dd:49:8d:0a:0e:de:0f:54:49: 1f:8b:84:4d:6a:c2:c3:47:5e:7d:d5:2d:cb:d4:33: da:42:6e:7d:a3:a3:9c:a4:dd:e4:dc:05:b7:07:56: 0a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:42:C7:DD:D9:44:24:74:F0:EF:93:46:D3:BE:4A:62:6A:B3:4A:BE X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:b2:22:64:14:16:c2:e9:77:36:58:3e:72:d9:73:15:47:f7: 1f:73:ab:68:17:cc:2f:d4:82:54:7d:eb:cb:ad:d0:66:d5:9d: 45:91:4e:c8:06:77:05:12:66:d2:97:aa:d5:f1:fe:e8:49:d7: 78:88:3d:90:95:49:76:98:7f:3f:f6:fd:68:33:f1:f0:16:65: 55:f5:d1:8e:47:dc:47:6e:93:57:0a:b6:cf:8d:b6:1b:6a:d3: a1:51:59:72:74:69:53:48:94:83:a7:58:6f:f0:8f:74:a1:61: 99:65:0f:5e:8b:04:e2:e9:49:61:7e:e7:15:9f:dd:9d:d8:3c: c3:d4:8e:81:06:6d:b2:95:91:fa:09:bf:11:80:12:ec:1d:57: 49:e0:12:a3:bc:c5:f2:d0:33:17:5d:c4:29:35:88:5c:52:02: d1:0a:17:f7:68:4f:b8:5c:9a:6f:91:5a:ad:16:24:02:9c:d3: 53:cc:a5:3e:48:82:51:f9:4d:06:6e:f4:68:9b:6f:04:a2:d9: dd:d5:c3:e9:06:ac:5b:4b:e1:01:14:31:fe:07:11:14:e4:a9: 2b:66:fe:9d:4d:bf:7d:03:3f:af:af:b4:28:fd:b0:c7:c0:8e: 7c:32:3f:e5:f9:e9:ee:50:d9:be:83:08:9e:09:d5:c5:e4:d5: d4:b7:75:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjUxMTA0MjIxMDUxWhcNMjUxMTExMjIxMDUxWjAYMRYwFAYD VQQDEw02OTBhNzllYy01YWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15ER+nP23tonFzxt+88RdCAhSLW8DBmnb38cYYRxUK+0FFV49aghRNqwZn6c d2CyuV1FVMcA3CJfpUK+PauGXblPdj8UiESiYiR5ck/L1Hq3qlFgmSdfnp6gCAwo kbZ60DiWmaxZXKvk+JySdYD9q0b2oVQXiTyCFveOl+mAtZlGkXLkqwnyZEvzY8h3 73o3Hg1a4OM1RfxrwQCcaMECiBbBx4VG12Z3UOhwT6JpC04YbD0lYqMWXrxXSQvB k/8frI7EeQth1R1NxKaUOa4ll2sLtyzeVjjdSY0KDt4PVEkfi4RNasLDR1591S3L 1DPaQm59o6OcpN3k3AW3B1YK6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBCx93Z RCR08O+TRtO+SmJqs0q+MB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wM0EwMTc4NDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZT WWlCdEdmV21hYng3YWZjc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcsiJkFBbC6Xc2WD5y2XMVR/cfc6toF8wv1IJUfevLrdBm1Z1FkU7I BncFEmbSl6rV8f7oSdd4iD2QlUl2mH8/9v1oM/HwFmVV9dGOR9xHbpNXCrbPjbYb atOhUVlydGlTSJSDp1hv8I90oWGZZQ9eiwTi6UlhfucVn92d2DzD1I6BBm2ylZH6 Cb8RgBLsHVdJ4BKjvMXy0DMXXcQpNYhcUgLRChf3aE+4XJpvkVqtFiQCnNNTzKU+ SIJR+U0GbvRom28Eotnd1cPpBqxbS+EBFDH+BxEU5KkrZv6dTb99Az+vr7Qo/bDH wI58Mj/l+enuUNm+gwieCdXF5NXUt3X7 -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:41 2025 by rpki-client