$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: 6+7s6e//JYC5n0g5miOrxjTjJQ090dHhounRweRxjno= Subject key identifier: F5:8E:49:EA:E9:60:0A:7B:F0:2A:8F:6F:5F:77:EC:6B:E0:CE:A2:B1 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 10ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 10D2 Signing time: Sun 02 Nov 2025 17:19:33 +0000 Manifest this update: Sun 02 Nov 2025 17:19:32 +0000 Manifest next update: Sun 09 Nov 2025 17:19:32 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: Zeg+herGT+7lpop18RyBKApXLStiQRJ3K8sQ0QlRMyI=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4333 (0x10ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Nov 2 17:19:32 2025 GMT Not After : Nov 9 17:19:32 2025 GMT Subject: CN=690792a4-f404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8d:2f:a8:79:f9:26:24:b0:2f:66:7f:d6:5a: 4f:10:a8:fb:4f:68:74:8d:b4:5f:6d:1c:bd:fc:6c: a9:0d:90:1c:4e:9f:27:e1:6e:ca:d8:e1:a4:fa:26: 87:51:fb:35:96:50:e8:9e:93:0b:9a:51:fb:e9:d2: 18:f1:ef:de:44:b8:55:4f:29:26:e5:02:db:05:7a: 74:d3:1b:7d:4d:55:ed:11:36:af:3a:8d:5a:b0:05: 29:77:89:c1:28:06:20:09:e8:56:71:52:f7:25:93: ec:35:29:eb:53:80:13:d9:f7:1e:d2:cc:a0:d8:cf: b5:d9:4e:09:ec:b0:e4:8a:86:95:fb:d9:ea:eb:48: a3:ba:56:1f:58:4f:07:48:42:d7:29:c1:7f:e5:cb: 3e:d6:e2:3d:5c:5b:1b:66:da:11:42:9a:ae:ec:84: e6:84:45:8e:ec:3f:8a:a0:32:d9:01:84:38:a3:8e: 35:17:1a:66:0c:0f:f6:b7:61:9d:ba:3c:6c:16:bf: 09:5e:8b:06:a8:19:83:d7:74:83:e6:9e:50:7e:d0: bc:5f:04:f0:46:72:cf:84:5b:b0:9f:47:3e:c1:f1: 3b:3e:f9:31:30:b4:34:03:ad:ce:e7:e2:a4:08:25: 6a:b9:88:f0:f9:a6:4d:1f:20:c6:81:73:92:33:d3: 40:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:8E:49:EA:E9:60:0A:7B:F0:2A:8F:6F:5F:77:EC:6B:E0:CE:A2:B1 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:67:f3:7f:1c:e1:e9:cd:9d:5c:d1:8d:c9:72:ab:a2:3f:00: d1:7b:f8:4d:aa:5f:1b:10:79:4f:e1:6d:e8:00:49:a2:66:b2: e1:17:d2:07:13:b3:9c:e8:cc:17:a8:05:0b:0e:b8:5b:58:89: 7d:55:7a:d9:49:89:98:b5:01:52:f6:f1:be:5c:b2:e9:14:75: 9d:2b:8b:58:6e:52:2a:f9:ca:0a:f7:a2:1b:62:fb:c0:e7:9a: 35:42:92:2d:f0:78:09:35:cb:b5:51:f7:a7:60:b6:8d:04:19: 6f:8e:72:2b:2a:1d:f3:e3:3c:64:06:da:e5:52:b6:ee:24:39: 06:7d:02:67:f3:0d:d6:3c:7e:89:e7:1d:a5:db:eb:9c:39:25: 52:b3:c8:d4:34:00:23:bc:a5:5d:e7:8d:d3:01:65:58:07:50: 03:da:a4:f8:bb:dd:6d:02:90:97:2b:ea:96:e9:22:2b:6a:b2: f6:2d:f7:70:f6:ef:ae:2b:3b:09:87:87:5f:9f:f5:fa:90:bf: 68:77:6a:66:2a:88:f8:80:4c:93:9a:a1:02:c8:8f:8a:82:83: 97:55:f7:06:29:24:27:ff:4c:32:1c:b7:fb:66:94:11:5d:59: 2b:a4:e9:0c:e7:8c:30:08:cb:a6:9a:6f:a4:6d:4e:94:bb:64: 4c:70:9d:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUxMTAyMTcxOTMyWhcNMjUxMTA5MTcxOTMyWjAYMRYwFAYD VQQDEw02OTA3OTJhNC1mNDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnY0vqHn5JiSwL2Z/1lpPEKj7T2h0jbRfbRy9/GypDZAcTp8n4W7K2OGk+iaH Ufs1llDonpMLmlH76dIY8e/eRLhVTykm5QLbBXp00xt9TVXtETavOo1asAUpd4nB KAYgCehWcVL3JZPsNSnrU4AT2fce0syg2M+12U4J7LDkioaV+9nq60ijulYfWE8H SELXKcF/5cs+1uI9XFsbZtoRQpqu7ITmhEWO7D+KoDLZAYQ4o441FxpmDA/2t2Gd ujxsFr8JXosGqBmD13SD5p5QftC8XwTwRnLPhFuwn0c+wfE7PvkxMLQ0A63O5+Kk CCVquYjw+aZNHyDGgXOSM9NAoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWOSerp YAp78CqPb1937GvgzqKxMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvZ/N/HOHpzZ1c0Y3JcquiPwDRe/hNql8bEHlP4W3oAEmiZrLhF9IH E7Oc6MwXqAULDrhbWIl9VXrZSYmYtQFS9vG+XLLpFHWdK4tYblIq+coK96IbYvvA 55o1QpIt8HgJNcu1UfenYLaNBBlvjnIrKh3z4zxkBtrlUrbuJDkGfQJn8w3WPH6J 5x2l2+ucOSVSs8jUNAAjvKVd543TAWVYB1AD2qT4u91tApCXK+qW6SIrarL2Lfdw 9u+uKzsJh4dfn/X6kL9od2pmKoj4gEyTmqECyI+KgoOXVfcGKSQn/0wyHLf7ZpQR XVkrpOkM54wwCMummm+kbU6Uu2RMcJ2U -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:23 2025 by rpki-client