$ rpki-client -vvf rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft File: xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft (raw, json) Hash identifier: +coYbbBSSTeS4LpQbrcMWywZYgDhH3M+6PJN3K5DU0o= Subject key identifier: B9:4F:BA:C7:D2:79:32:74:07:0D:86:56:56:10:A3:70:BA:C5:60:96 Authority key identifier: C4:23:B0:80:32:62:33:DA:C0:8C:C3:0D:74:A6:5F:F4:A5:29:D0:9A Certificate issuer: /CN=A91411C0/serialNumber=C423B080326233DAC08CC30D74A65FF4A529D09A Certificate serial: 0729 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft Manifest number: 0723 Signing time: Tue 04 Nov 2025 21:54:48 +0000 Manifest this update: Tue 04 Nov 2025 21:54:47 +0000 Manifest next update: Tue 11 Nov 2025 21:54:47 +0000 Files and hashes: 1: xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl (hash: wyzE+2BpfaILtjD/hJ9YAVwr62FWLzS0jp7H8EsfSR4=) 2: 0361CF86560211EB97A98D46C4F9AE02.roa (hash: HlIyCnozTXmahx4OrgB34hXtStTSnVnLcqtp68+OH5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1833 (0x729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411C0, serialNumber=C423B080326233DAC08CC30D74A65FF4A529D09A Validity Not Before: Nov 4 21:54:47 2025 GMT Not After : Nov 11 21:54:47 2025 GMT Subject: CN=690a7628-71c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fd:f2:10:64:c5:3a:b4:f9:72:60:17:91:22: bb:74:69:4f:07:d8:89:74:81:d6:97:bc:bf:3e:17: ce:0e:a5:21:8e:d6:6d:6d:80:42:f2:89:f3:78:42: 13:44:f2:6f:f7:79:30:5f:db:87:dd:15:03:05:cd: f6:ae:34:17:fb:a6:de:da:83:8e:8d:3f:bb:13:12: 52:50:04:6c:5c:55:c9:eb:f9:6b:34:9c:7a:10:bd: 6a:1b:70:7f:22:72:4f:88:41:aa:19:37:9f:29:fa: 55:80:4b:1d:63:83:48:36:3e:57:60:5e:84:56:44: 73:e8:55:da:69:f6:b9:29:be:46:3c:fc:29:b8:9d: 77:4d:f7:36:81:58:55:12:dc:a7:fb:2e:ec:13:e9: c3:f3:b7:9e:01:0f:c6:b8:0e:a1:05:f0:0d:1f:e7: b3:de:57:15:c2:0a:b9:26:3b:e6:c1:d7:c5:bd:11: 10:b7:df:32:ad:cb:f0:f5:75:38:f7:60:dd:15:79: ff:82:ef:9b:54:f6:8e:89:af:e5:19:4d:aa:83:73: 10:db:34:2a:1e:79:ca:78:e8:45:63:3c:fc:f9:7a: 9b:07:99:3d:65:94:bc:3f:3f:a7:7f:ad:b7:f7:2b: 1c:8b:bc:e4:3d:ba:c7:3a:8a:f2:0d:c5:43:a6:73: cc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:4F:BA:C7:D2:79:32:74:07:0D:86:56:56:10:A3:70:BA:C5:60:96 X509v3 Authority Key Identifier: keyid:C4:23:B0:80:32:62:33:DA:C0:8C:C3:0D:74:A6:5F:F4:A5:29:D0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:98:2e:4d:a9:9f:71:04:9d:a6:f1:0a:6a:d2:80:df:e1:f9: 8f:d5:0b:22:95:e5:1a:3d:79:3e:19:c0:05:1d:ea:bc:5c:23: 77:4d:f9:11:34:f3:df:4f:ce:c4:0a:46:b5:10:f0:4c:e8:47: e9:3f:29:2c:36:d0:97:17:3a:e4:10:8d:0d:75:cc:a0:98:56: d2:67:ec:73:1d:a6:9c:9a:09:02:18:74:bc:5d:44:4b:60:ab: c6:26:a3:b9:d4:4b:ba:c1:f2:af:8f:31:f2:9a:73:d7:68:e1: 46:71:bd:3c:b9:92:76:e4:48:89:d8:53:84:50:dd:5c:3c:17: 2a:af:c6:49:81:14:9a:bf:74:1d:75:5b:c0:5b:e7:e7:f6:b6: 12:d9:ae:07:6b:77:b4:05:76:79:c5:1d:99:00:65:aa:6c:37: 6f:71:22:0a:20:f8:4d:7d:80:b9:67:ab:f8:3f:8b:e5:70:42: 4e:9d:09:5d:bf:46:05:5e:2a:15:de:1f:57:06:24:d5:db:a5: 42:3a:5c:ae:53:bc:d5:ee:49:a3:49:3d:d7:b9:8f:2a:aa:8c: b1:8b:23:52:a1:3d:c2:a0:fa:4d:d6:63:6a:40:90:71:48:bc: 19:23:bf:bf:c2:87:6a:12:65:b7:e8:35:26:1b:c1:3f:72:d2: 1c:2f:36:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQzAxMTAvBgNVBAUTKEM0MjNCMDgwMzI2MjMzREFDMDhDQzMwRDc0QTY1RkY0 QTUyOUQwOUEwHhcNMjUxMTA0MjE1NDQ3WhcNMjUxMTExMjE1NDQ3WjAYMRYwFAYD VQQDEw02OTBhNzYyOC03MWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnf3yEGTFOrT5cmAXkSK7dGlPB9iJdIHWl7y/PhfODqUhjtZtbYBC8onzeEIT RPJv93kwX9uH3RUDBc32rjQX+6be2oOOjT+7ExJSUARsXFXJ6/lrNJx6EL1qG3B/ InJPiEGqGTefKfpVgEsdY4NINj5XYF6EVkRz6FXaafa5Kb5GPPwpuJ13Tfc2gVhV Etyn+y7sE+nD87eeAQ/GuA6hBfANH+ez3lcVwgq5JjvmwdfFvREQt98yrcvw9XU4 92DdFXn/gu+bVPaOia/lGU2qg3MQ2zQqHnnKeOhFYzz8+XqbB5k9ZZS8Pz+nf623 9ysci7zkPbrHOoryDcVDpnPMqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlPusfS eTJ0Bw2GVlYQo3C6xWCWMB8GA1UdIwQYMBaAFMQjsIAyYjPawIzDDXSmX/SlKdCa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFDMC9COTYwMzc1ODU1 RkYxMUVCQkMzNkM4NDNDNEY5QUUwMi94Q093Z0RKaU05ckFqTU1OZEtaZjlLVXAw Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDT3dnREppTTlyQWpNTU5kS1pmOUtVcDBKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFDMC9COTYwMzc1ODU1RkYxMUVCQkMzNkM4NDNDNEY5QUUwMi94Q093Z0RKaU05 ckFqTU1OZEtaZjlLVXAwSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTmC5NqZ9xBJ2m8Qpq0oDf4fmP1QsileUaPXk+GcAFHeq8XCN3TfkR NPPfT87ECka1EPBM6EfpPyksNtCXFzrkEI0NdcygmFbSZ+xzHaacmgkCGHS8XURL YKvGJqO51Eu6wfKvjzHymnPXaOFGcb08uZJ25EiJ2FOEUN1cPBcqr8ZJgRSav3Qd dVvAW+fn9rYS2a4Ha3e0BXZ5xR2ZAGWqbDdvcSIKIPhNfYC5Z6v4P4vlcEJOnQld v0YFXioV3h9XBiTV26VCOlyuU7zV7kmjST3XuY8qqoyxiyNSoT3CoPpN1mNqQJBx SLwZI7+/wodqEmW36DUmG8E/ctIcLzZr -----END CERTIFICATE-----Generated at Wed Nov 5 05:11:07 2025 by rpki-client