$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft File: sCOWweSXbcJLufJA9c5Vbtgn-is.mft (raw, json) Hash identifier: Td7HtQGsvvEg8iPiu0fK3Xl9UbYpMPAN08cjhmMr9no= Subject key identifier: 05:67:74:CF:8B:01:58:F7:BB:0A:96:47:E0:55:3B:03:30:57:9F:6D Authority key identifier: B0:23:96:C1:E4:97:6D:C2:4B:B9:F2:40:F5:CE:55:6E:D8:27:FA:2B Certificate issuer: /CN=A91124CD/serialNumber=B02396C1E4976DC24BB9F240F5CE556ED827FA2B Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft Manifest number: 0133 Signing time: Wed 05 Nov 2025 04:39:09 +0000 Manifest this update: Wed 05 Nov 2025 04:39:08 +0000 Manifest next update: Wed 12 Nov 2025 04:39:08 +0000 Files and hashes: 1: sCOWweSXbcJLufJA9c5Vbtgn-is.crl (hash: kV5RbxOp5TImOAm41z7tMzTpm4liT73S2BfpY0Fy7AU=) 2: CC6220C0E02E11EEBA9D291AC4F9AE02.roa (hash: EfnXa4JTXRSQtpkoLm2l4ZqnMhuE0NVKwTVdEbOaaqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.crl rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CD, serialNumber=B02396C1E4976DC24BB9F240F5CE556ED827FA2B Validity Not Before: Nov 5 04:39:08 2025 GMT Not After : Nov 12 04:39:08 2025 GMT Subject: CN=690ad4ec-48a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3c:c7:62:fd:9b:a9:a2:0d:13:b7:15:b3:bf: 6c:fa:ae:a6:cb:f9:2a:9f:02:19:c3:43:36:62:3d: 71:a9:cf:e1:21:5a:91:56:6f:26:be:b3:96:a9:a8: 21:2c:c8:dc:9f:ed:87:b3:6d:95:e7:e4:39:02:08: 2f:27:8e:8e:64:d5:5b:8d:fb:df:01:ec:5b:bb:6d: f9:c1:dd:74:d2:85:5e:24:72:e4:59:8f:62:8a:0c: c5:83:cf:59:a2:e4:18:07:53:3a:b2:fa:24:e9:ab: 05:32:9c:26:ff:17:07:09:94:d0:fd:d4:16:6f:c9: 81:96:75:1c:a2:6f:ed:4f:b0:80:56:9f:36:bd:ab: f8:59:e5:35:3f:69:8c:5b:03:b9:8f:0b:9e:f6:63: af:f9:89:8f:2e:e6:ca:dc:68:5f:e7:af:ef:ef:2e: 39:9c:16:28:f6:30:2b:ed:48:1f:43:7d:4b:35:e0: a6:a0:04:ab:77:eb:ce:3e:17:5e:33:40:d8:35:a6: 47:04:b1:d0:e7:a9:25:de:d3:81:2c:00:b2:2e:39: 9d:7e:8e:4d:5f:5c:1f:1d:b8:d1:2c:85:be:f7:bb: 91:b7:1c:2d:8e:dc:9a:76:2d:75:25:7d:b6:ae:0a: de:79:32:46:96:91:5e:be:91:b6:2c:f7:d2:50:1c: 99:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:67:74:CF:8B:01:58:F7:BB:0A:96:47:E0:55:3B:03:30:57:9F:6D X509v3 Authority Key Identifier: keyid:B0:23:96:C1:E4:97:6D:C2:4B:B9:F2:40:F5:CE:55:6E:D8:27:FA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:fe:9a:25:34:90:e6:c4:17:a4:cc:8d:bd:7a:cf:33:42:c0: 87:61:92:1a:6f:0d:13:09:4c:8c:78:c8:80:82:ab:fa:b6:d3: 1c:dd:5e:0e:c8:59:6e:e8:6c:46:3d:e9:80:53:b5:f0:4e:56: a4:0f:b6:49:9f:81:46:2b:41:8b:8c:c0:1e:e5:4d:4a:ac:3b: e2:95:35:2a:c2:1a:af:aa:35:5f:d4:70:3c:a8:22:93:ed:b0: b1:22:7c:ce:5f:34:a3:ce:ce:7f:1b:a0:9e:49:19:5a:03:85: 51:28:cc:be:57:53:7c:77:a7:4d:88:cf:1a:9e:7a:67:f4:4b: 26:90:e6:f8:45:36:12:fe:57:fd:f8:03:c6:9e:75:e3:0c:07: 7d:19:9c:7c:e3:7c:44:7e:b2:59:21:26:4e:0a:ad:e0:f6:d1: 3e:8f:16:70:47:c6:23:aa:ae:85:d6:f1:59:d2:21:0c:7b:3a: 62:7b:4e:fa:8a:bf:91:e7:f5:fd:91:2b:77:67:91:03:d1:0e: a4:36:5c:d3:c7:52:ca:c4:aa:b5:50:7e:db:74:17:da:49:7c: da:da:e9:79:86:0c:ae:2d:b7:47:38:c0:32:95:fc:fc:64:06: 7d:b4:97:19:81:97:bb:07:1a:74:fe:ab:5c:84:cf:c4:6c:c4: 6c:fe:eb:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0QxMTAvBgNVBAUTKEIwMjM5NkMxRTQ5NzZEQzI0QkI5RjI0MEY1Q0U1NTZF RDgyN0ZBMkIwHhcNMjUxMTA1MDQzOTA4WhcNMjUxMTEyMDQzOTA4WjAYMRYwFAYD VQQDEw02OTBhZDRlYy00OGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjzHYv2bqaINE7cVs79s+q6my/kqnwIZw0M2Yj1xqc/hIVqRVm8mvrOWqagh LMjcn+2Hs22V5+Q5AggvJ46OZNVbjfvfAexbu235wd100oVeJHLkWY9iigzFg89Z ouQYB1M6svok6asFMpwm/xcHCZTQ/dQWb8mBlnUcom/tT7CAVp82vav4WeU1P2mM WwO5jwue9mOv+YmPLubK3Ghf56/v7y45nBYo9jAr7UgfQ31LNeCmoASrd+vOPhde M0DYNaZHBLHQ56kl3tOBLACyLjmdfo5NX1wfHbjRLIW+97uRtxwtjtyadi11JX22 rgreeTJGlpFevpG2LPfSUByZJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVndM+L AVj3uwqWR+BVOwMwV59tMB8GA1UdIwQYMBaAFLAjlsHkl23CS7nyQPXOVW7YJ/or MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDRC9COTdCNzYzOEUw MkQxMUVFOUEwNDJGNUNDNEY5QUUwMi9zQ09Xd2VTWGJjSkx1ZkpBOWM1VmJ0Z24t aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NDT1d3ZVNYYmNKTHVmSkE5YzVWYnRnbi1pcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjRDRC9COTdCNzYzOEUwMkQxMUVFOUEwNDJGNUNDNEY5QUUwMi9zQ09Xd2VTWGJj Skx1ZkpBOWM1VmJ0Z24taXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA/polNJDmxBekzI29es8zQsCHYZIabw0TCUyMeMiAgqv6ttMc3V4O yFlu6GxGPemAU7XwTlakD7ZJn4FGK0GLjMAe5U1KrDvilTUqwhqvqjVf1HA8qCKT 7bCxInzOXzSjzs5/G6CeSRlaA4VRKMy+V1N8d6dNiM8annpn9EsmkOb4RTYS/lf9 +APGnnXjDAd9GZx843xEfrJZISZOCq3g9tE+jxZwR8Yjqq6F1vFZ0iEMezpie076 ir+R5/X9kSt3Z5ED0Q6kNlzTx1LKxKq1UH7bdBfaSXza2ul5hgyuLbdHOMAylfz8 ZAZ9tJcZgZe7Bxp0/qtchM/EbMRs/usq -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:08 2025 by rpki-client