$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: vE++VUBNWFpZNiS4DPS76Go731nbAKLKh38kui8L7uo= Subject key identifier: 87:84:17:C6:F2:16:68:F5:86:D7:86:EE:4A:15:B9:84:9A:34:31:13 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 10E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 10CA Signing time: Sat 18 Oct 2025 17:51:47 +0000 Manifest this update: Sat 18 Oct 2025 17:51:47 +0000 Manifest next update: Sat 25 Oct 2025 17:51:47 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: OkpsdDp9Fjs/CquwjFJZE7rHpxea0LfdDppi3IHaNNI=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4325 (0x10e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Oct 18 17:51:47 2025 GMT Not After : Oct 25 17:51:47 2025 GMT Subject: CN=68f3d3b3-063e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:51:03:40:d5:d9:fd:d4:11:12:4c:4c:a9:5c: 05:f5:9b:44:ed:b9:6e:06:a1:0b:d4:0e:fe:6f:cd: fb:d5:a2:0b:ac:3e:42:f2:61:2c:03:34:a7:ff:67: 4b:3c:fc:8d:86:39:d1:2a:a3:ef:b5:91:28:c3:9e: e5:fd:06:68:87:cb:e0:17:de:ae:36:40:d0:ad:75: d5:b5:10:e6:81:f4:89:70:d3:c8:fd:e1:6e:68:6a: c8:3c:1c:c2:56:d6:e9:f9:e2:5b:ca:1f:a4:f1:74: 8d:d2:35:92:47:7c:fa:f6:cd:0a:bc:76:31:bb:45: 33:40:1e:5f:a2:a1:a8:1b:96:0c:2d:51:99:c9:63: 47:ec:af:9c:43:46:a5:fe:d9:ec:8e:98:08:18:26: f8:bd:9c:09:dc:98:d7:14:65:87:58:92:3b:e1:5f: 98:1d:32:0a:d6:e9:45:da:a6:72:4a:ee:9f:d1:2d: 3d:ef:49:59:94:ba:8e:72:28:01:65:e6:2c:a1:63: 0e:b3:0a:7f:86:e1:96:67:e6:c7:cf:fb:85:e1:1b: bd:96:96:cf:b4:ff:92:af:da:68:5b:1d:e8:25:8e: a3:a8:ab:62:fd:84:dd:6f:71:f1:2a:56:51:e9:ca: 64:bb:c5:3b:9e:8a:cd:6e:83:ba:be:67:64:2d:bf: d5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:84:17:C6:F2:16:68:F5:86:D7:86:EE:4A:15:B9:84:9A:34:31:13 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:3f:df:25:e3:59:c7:26:6a:6d:6f:2e:bc:8b:5d:a1:59:08: 77:be:67:20:59:cd:65:f2:67:b2:b3:e4:ea:c1:86:a8:f3:a4: 83:2a:0b:15:da:ee:35:27:9a:1f:f1:ce:d7:f7:82:79:11:37: aa:99:43:ce:e8:3e:03:8e:ef:6c:3f:2e:7d:da:3a:51:f9:9d: 4a:0d:4f:11:fc:8d:43:e1:16:48:de:d8:10:d0:ab:c6:1b:8a: 9e:1d:bc:78:97:60:f5:29:7a:e9:cc:4e:0c:ab:6f:f1:27:f6: ab:68:05:76:32:63:1b:4b:b7:1a:4c:e7:d6:e7:31:c3:fd:8b: 62:e4:f4:93:15:64:5e:fd:80:df:68:b9:c3:8e:e0:c3:bb:33: f9:2f:91:05:6f:74:92:2b:22:1d:d0:5a:c2:40:75:5e:39:32: 58:5b:52:77:36:2c:69:fe:1b:fa:d7:1b:68:49:71:bd:62:c5: eb:76:0a:4b:1a:eb:c8:17:9d:bf:df:88:88:a1:e3:8d:0b:fe: ee:33:9f:9f:5c:c6:08:b7:5f:51:f4:f6:59:d6:ff:50:0f:dd: ac:ff:9f:98:5a:a7:41:bd:a3:2e:1e:ce:f1:68:5d:9f:5c:fe: 46:90:e0:82:7f:a8:8b:0b:da:56:ef:33:a3:0b:07:5f:3f:87: 15:d4:3d:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUxMDE4MTc1MTQ3WhcNMjUxMDI1MTc1MTQ3WjAYMRYwFAYD VQQDEw02OGYzZDNiMy0wNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlEDQNXZ/dQREkxMqVwF9ZtE7bluBqEL1A7+b8371aILrD5C8mEsAzSn/2dL PPyNhjnRKqPvtZEow57l/QZoh8vgF96uNkDQrXXVtRDmgfSJcNPI/eFuaGrIPBzC Vtbp+eJbyh+k8XSN0jWSR3z69s0KvHYxu0UzQB5foqGoG5YMLVGZyWNH7K+cQ0al /tnsjpgIGCb4vZwJ3JjXFGWHWJI74V+YHTIK1ulF2qZySu6f0S0970lZlLqOcigB ZeYsoWMOswp/huGWZ+bHz/uF4Ru9lpbPtP+Sr9poWx3oJY6jqKti/YTdb3HxKlZR 6cpku8U7norNboO6vmdkLb/VGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeEF8by Fmj1hteG7koVuYSaNDETMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgP98l41nHJmptby68i12hWQh3vmcgWc1l8meys+TqwYao86SDKgsV 2u41J5of8c7X94J5ETeqmUPO6D4Dju9sPy592jpR+Z1KDU8R/I1D4RZI3tgQ0KvG G4qeHbx4l2D1KXrpzE4Mq2/xJ/araAV2MmMbS7caTOfW5zHD/Yti5PSTFWRe/YDf aLnDjuDDuzP5L5EFb3SSKyId0FrCQHVeOTJYW1J3Nixp/hv61xtoSXG9YsXrdgpL GuvIF52/34iIoeONC/7uM5+fXMYIt19R9PZZ1v9QD92s/5+YWqdBvaMuHs7xaF2f XP5GkOCCf6iLC9pW7zOjCwdfP4cV1D2Z -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:01 2025 by rpki-client