$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: kPHzuDDE2M9VhM8duBxROM/v5+Bnjxz4WKbjfhpuR8Q= Subject key identifier: DE:AF:C1:C9:E9:E1:B0:FB:66:E8:53:68:D5:31:CC:19:8D:EB:39:46 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 10C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 10AD Signing time: Fri 22 Aug 2025 17:27:18 +0000 Manifest this update: Fri 22 Aug 2025 17:27:17 +0000 Manifest next update: Fri 29 Aug 2025 17:27:17 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: qkQxAm8f7quSZneY0zBw05INb8VY+x26ymHuF3d/498=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4296 (0x10c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Aug 22 17:27:17 2025 GMT Not After : Aug 29 17:27:17 2025 GMT Subject: CN=68a8a875-d674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8f:36:af:48:f7:e1:78:94:ec:5c:43:40:38: d5:db:d4:80:da:57:bc:de:f9:f4:2f:dc:4d:75:25: ae:0b:a8:f7:82:6a:91:e9:73:5a:e4:66:15:a9:02: 87:86:34:bc:c6:1d:7d:e3:7a:e5:b8:36:f9:3c:9c: 25:b2:c5:2f:d9:97:92:43:ba:75:02:75:35:0e:0d: 4a:ad:90:65:a5:5e:d0:64:46:5c:a3:76:a6:e8:10: b9:5e:d3:72:c2:1c:95:29:f0:20:55:b1:9a:c5:45: 66:58:b3:0e:3a:0d:8b:5c:9b:62:da:0d:ad:5d:c9: 3b:32:c8:1e:25:46:04:7f:76:c7:7d:25:ea:3d:f4: 55:0a:70:eb:04:53:3e:14:49:79:d4:ef:b1:4b:a5: a1:b6:7d:50:9d:81:1e:37:a8:7c:23:6d:68:57:7f: 91:a9:44:4f:f3:87:e3:7d:20:89:0d:53:c6:94:13: cb:06:bd:b6:f5:cc:fb:2a:08:5c:c9:56:75:90:71: 57:4c:c3:30:03:78:b7:b6:ef:d0:d0:bc:84:d3:5b: ac:0b:23:d8:36:f7:c4:e4:18:2e:c3:bb:1d:47:f2: d4:32:7a:35:74:c1:8e:f5:66:89:f7:07:02:2e:61: f8:b0:6f:b1:99:88:c9:51:9b:4f:d5:5e:22:65:67: e1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AF:C1:C9:E9:E1:B0:FB:66:E8:53:68:D5:31:CC:19:8D:EB:39:46 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:1f:a8:9a:bf:df:d0:90:6d:fa:a6:14:b9:e6:a8:96:a7:00: 9f:24:63:23:64:22:07:d7:f6:07:ab:ff:9c:31:6a:9e:b2:c0: 76:72:a8:d7:09:f7:4e:27:1d:d0:11:0d:9e:41:c5:75:00:ee: 9f:27:41:0e:8d:36:c2:b4:55:c2:43:82:a7:50:95:a0:4a:14: 99:a5:c6:0a:a5:e8:18:35:e6:8b:33:ca:13:5f:eb:12:b8:18: 63:4d:a8:74:3f:dc:df:02:b9:51:8c:61:07:90:f2:d2:d6:c8: b8:9a:18:fc:14:09:64:d8:95:7c:fa:5a:00:34:59:3b:99:62: b2:02:c3:ba:7c:d5:1a:4e:6f:9e:1a:5f:02:54:dc:2a:87:4f: 26:0a:8a:b0:0a:d6:c9:97:ea:9d:cc:07:46:3a:0b:bc:bb:88: 60:94:84:0d:e4:ef:04:e5:bf:7f:be:c2:6d:ca:be:f8:92:62: 4d:c2:a8:2b:96:ca:51:53:d1:46:29:ca:e4:26:08:98:98:2c: 22:5f:ea:69:25:1c:a6:0a:b0:fd:45:9b:ff:0d:c5:f9:73:7d: 04:94:84:17:cf:0e:ae:71:bf:b5:f3:b7:0c:2c:a4:02:f5:c1: ce:f8:a5:75:7e:d3:f5:46:9e:e5:e7:8b:ca:83:8c:cd:bb:5e: 1f:bb:16:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUwODIyMTcyNzE3WhcNMjUwODI5MTcyNzE3WjAYMRYwFAYD VQQDEw02OGE4YTg3NS1kNjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs482r0j34XiU7FxDQDjV29SA2le83vn0L9xNdSWuC6j3gmqR6XNa5GYVqQKH hjS8xh1943rluDb5PJwlssUv2ZeSQ7p1AnU1Dg1KrZBlpV7QZEZco3am6BC5XtNy whyVKfAgVbGaxUVmWLMOOg2LXJti2g2tXck7MsgeJUYEf3bHfSXqPfRVCnDrBFM+ FEl51O+xS6Whtn1QnYEeN6h8I21oV3+RqURP84fjfSCJDVPGlBPLBr229cz7Kghc yVZ1kHFXTMMwA3i3tu/Q0LyE01usCyPYNvfE5Bguw7sdR/LUMno1dMGO9WaJ9wcC LmH4sG+xmYjJUZtP1V4iZWfhgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6vwcnp 4bD7ZuhTaNUxzBmN6zlGMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnH6iav9/QkG36phS55qiWpwCfJGMjZCIH1/YHq/+cMWqessB2cqjX CfdOJx3QEQ2eQcV1AO6fJ0EOjTbCtFXCQ4KnUJWgShSZpcYKpegYNeaLM8oTX+sS uBhjTah0P9zfArlRjGEHkPLS1si4mhj8FAlk2JV8+loANFk7mWKyAsO6fNUaTm+e Gl8CVNwqh08mCoqwCtbJl+qdzAdGOgu8u4hglIQN5O8E5b9/vsJtyr74kmJNwqgr lspRU9FGKcrkJgiYmCwiX+ppJRymCrD9RZv/DcX5c30ElIQXzw6ucb+187cMLKQC 9cHO+KV1ftP1Rp7l54vKg4zNu14fuxY/ -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:19 2025 by rpki-client