$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: 66ldy4qWDoForuX/0MO0pZnB+6aFvLXJLgY3oXWJHQM= Subject key identifier: ED:F0:7B:14:EE:47:D1:B9:9F:1B:08:0B:10:E9:3A:6C:6A:38:02:6F Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 06B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 06B0 Signing time: Sat 18 Oct 2025 23:39:20 +0000 Manifest this update: Sat 18 Oct 2025 23:39:19 +0000 Manifest next update: Sat 25 Oct 2025 23:39:19 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: EKsuUKmbr69Dkvcl+C1qIcl+mTk911TZLqK2YcSoCoc=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: DpNVsF8S1R1VahxgyAnkQsdhv9Y/GOwsBJQM35rMSJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1716 (0x6b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Oct 18 23:39:19 2025 GMT Not After : Oct 25 23:39:19 2025 GMT Subject: CN=68f42527-8254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:68:2f:35:c1:d9:bf:0c:e5:aa:2c:0a:e9:d5: 54:74:51:bb:ea:88:28:f8:52:b3:6c:c7:11:71:8f: 43:5c:09:24:82:07:32:a4:7c:b8:80:9d:92:a2:37: fa:5c:d2:86:b7:5c:0f:1b:56:0a:c1:dd:99:cf:43: 85:db:bb:6e:3f:79:56:23:47:1b:58:5b:0e:22:53: a2:4f:07:9e:87:1d:0b:28:8a:e3:a0:a0:2a:ff:58: 9e:04:a5:61:46:a1:cf:99:03:ad:6e:a8:ac:62:a3: 80:a4:12:4e:3e:d7:6b:28:25:69:d6:68:df:86:6b: 63:72:e1:e7:d2:dc:bc:2d:c4:ea:20:87:39:b6:55: 63:95:d9:0e:5f:4b:15:35:9b:4e:be:50:7a:9b:ab: 81:50:1d:81:87:57:c6:35:be:eb:88:7d:22:7a:42: 39:12:c2:af:fd:c5:11:53:38:a7:8f:bc:c3:30:9b: 9d:29:05:2e:a9:6e:37:7b:a2:e9:d8:81:88:f1:40: 4a:9f:de:77:d1:f6:3f:f0:68:76:0c:b3:aa:94:17: e4:62:ec:28:14:9e:63:e4:4e:8f:89:ab:2f:ec:f4: b2:f3:cb:0d:48:ad:31:35:c7:e1:af:ac:3f:b3:a2: a3:5e:aa:a6:26:67:3a:64:af:b7:e3:64:42:0a:54: 69:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F0:7B:14:EE:47:D1:B9:9F:1B:08:0B:10:E9:3A:6C:6A:38:02:6F X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:c6:a7:1d:42:13:45:86:b3:aa:34:52:bc:bc:66:83:02:c3: 75:94:ca:9b:34:78:49:42:14:60:b3:2f:3f:2c:64:6c:1d:b2: d6:63:68:c9:2a:1f:ff:67:dc:c2:77:df:21:71:87:35:57:00: 37:aa:10:24:a6:ed:f0:b0:93:11:4d:4d:5a:63:50:d0:ed:88: fc:64:a5:c5:02:20:11:99:cf:1e:b7:b8:5b:94:ee:55:06:0f: 06:c8:44:b0:01:95:05:85:97:fd:4e:1d:3b:f7:3e:8e:86:d0: 5c:0a:5c:5e:fb:3d:4f:87:0d:1e:83:50:4c:ba:6f:28:f1:bd: 25:e6:b3:38:85:ff:ee:61:8f:11:53:c4:6b:21:4a:e8:9c:7c: 48:0b:ae:ae:a9:02:1f:a5:3f:ff:bb:04:39:4d:43:d4:9d:3a: ee:d9:49:94:d6:26:65:e1:32:3f:79:80:c0:b1:a6:21:e0:ac: 8a:65:93:25:96:73:70:81:62:1e:c2:55:53:bd:f5:8d:2e:48: 32:da:ac:44:59:31:51:93:47:8b:f1:f9:d8:50:1d:f1:4c:18: 20:62:54:d5:23:a6:fd:69:68:21:75:21:28:1a:be:0c:2f:d4: ee:b0:a2:cb:86:10:6b:84:83:8c:74:9e:26:50:bc:4a:5b:ec: 66:b9:69:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjUxMDE4MjMzOTE5WhcNMjUxMDI1MjMzOTE5WjAYMRYwFAYD VQQDEw02OGY0MjUyNy04MjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWgvNcHZvwzlqiwK6dVUdFG76ogo+FKzbMcRcY9DXAkkggcypHy4gJ2Sojf6 XNKGt1wPG1YKwd2Zz0OF27tuP3lWI0cbWFsOIlOiTweehx0LKIrjoKAq/1ieBKVh RqHPmQOtbqisYqOApBJOPtdrKCVp1mjfhmtjcuHn0ty8LcTqIIc5tlVjldkOX0sV NZtOvlB6m6uBUB2Bh1fGNb7riH0iekI5EsKv/cURUzinj7zDMJudKQUuqW43e6Lp 2IGI8UBKn9530fY/8Gh2DLOqlBfkYuwoFJ5j5E6Piasv7PSy88sNSK0xNcfhr6w/ s6KjXqqmJmc6ZK+342RCClRpkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3wexTu R9G5nxsICxDpOmxqOAJvMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3xqcdQhNFhrOqNFK8vGaDAsN1lMqbNHhJQhRgsy8/LGRsHbLWY2jJ Kh//Z9zCd98hcYc1VwA3qhAkpu3wsJMRTU1aY1DQ7Yj8ZKXFAiARmc8et7hblO5V Bg8GyESwAZUFhZf9Th079z6OhtBcClxe+z1Phw0eg1BMum8o8b0l5rM4hf/uYY8R U8RrIUronHxIC66uqQIfpT//uwQ5TUPUnTru2UmU1iZl4TI/eYDAsaYh4KyKZZMl lnNwgWIewlVTvfWNLkgy2qxEWTFRk0eL8fnYUB3xTBggYlTVI6b9aWghdSEoGr4M L9TusKLLhhBrhIOMdJ4mULxKW+xmuWnO -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:02 2025 by rpki-client