$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: 3osE8ZWh0BtUo7ccwpMZyGAvZED8I9tOGebqhBxwAxM= Subject key identifier: 57:6E:91:A3:9D:C8:42:91:D9:CF:04:1F:90:9C:30:9F:4F:10:AE:3A Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 10C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 10A6 Signing time: Fri 08 Aug 2025 17:31:33 +0000 Manifest this update: Fri 08 Aug 2025 17:31:33 +0000 Manifest next update: Fri 15 Aug 2025 17:31:33 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: SXFX3TXRyooFUFJdLJC4EuK+Gu9x6l9P8JJS0dPnGOQ=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4289 (0x10c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Aug 8 17:31:33 2025 GMT Not After : Aug 15 17:31:33 2025 GMT Subject: CN=68963475-43ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:28:1a:10:3b:1c:ba:23:c5:b2:42:62:e5:b5: 8e:ce:fb:5d:7c:96:64:a7:b3:e2:dc:af:a5:b1:5b: 0b:db:10:83:80:62:4d:5c:94:a3:72:01:9d:c8:02: b9:d4:04:d8:e3:82:4f:ce:b5:a2:f0:39:9d:f3:90: 8e:31:90:0d:32:5d:f0:70:95:bd:b3:64:5a:d8:62: 25:72:a7:77:b7:c4:4f:48:4e:fa:26:7d:c1:9b:75: 29:78:43:58:1c:e7:15:ea:5b:09:53:0d:39:2b:ba: 77:f6:70:43:98:ae:18:d8:bb:d9:59:34:0f:22:01: 62:8c:5b:b0:2d:97:b1:04:38:35:26:35:a4:a9:dd: 75:bf:10:74:ce:93:a2:d1:65:d6:e2:8a:1c:77:25: 5b:2d:d1:86:f1:db:b1:a8:09:85:7e:7a:fa:2a:f2: d7:06:7b:3c:a4:0f:11:2d:51:c1:c6:37:04:2b:c2: f9:4f:c7:5c:36:ee:0f:39:87:15:93:00:3d:01:7c: b2:6d:1b:66:f4:ef:91:6b:8c:9a:02:f9:f0:02:f7: 1a:de:c1:55:b4:01:6f:94:e1:28:e6:c9:34:56:d1: 84:aa:99:ce:ca:d3:ba:eb:5f:7b:82:75:67:50:0d: 8c:50:0d:2c:a5:2d:d2:fb:c6:1f:f9:f0:98:0e:84: 26:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6E:91:A3:9D:C8:42:91:D9:CF:04:1F:90:9C:30:9F:4F:10:AE:3A X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b6:89:e2:80:2d:9f:af:0e:81:f2:c5:91:6a:e2:a8:e3:2a: b2:16:39:23:7f:7c:af:ce:53:ae:ba:a2:9a:28:81:f1:c6:dc: 84:cf:eb:2d:c0:1f:db:f4:2c:93:dd:c9:93:c3:00:af:d1:27: ab:4d:96:cd:dd:dc:3e:57:3f:e2:18:0f:16:db:c7:62:5e:d8: ad:59:77:5b:11:1a:94:b6:a0:6a:da:cf:e2:6d:dc:fa:6b:9b: 39:88:51:a9:0d:24:34:b4:eb:12:54:89:3d:55:b2:5b:bb:8e: 0d:d3:42:38:9d:48:bb:d7:47:b5:6b:7f:ef:68:80:e7:91:de: 3b:00:a5:5e:4b:61:4b:00:8e:14:f0:18:21:b1:b4:84:08:e0: c1:8d:a1:9e:ac:98:13:8a:a1:67:00:30:da:b3:cd:80:e1:1a: 84:7e:33:11:8c:c2:ac:0d:a9:b5:9b:ff:5f:51:30:1e:f1:84: ee:e2:57:00:df:9c:df:5c:1c:07:77:c1:7c:35:ad:64:99:8b: e4:ed:1d:3d:6d:ea:e3:bb:b5:5f:07:56:46:d6:07:f8:eb:e9: 69:10:f2:36:90:b1:77:8f:23:43:77:5d:b4:94:b4:66:c0:59: e7:94:4e:b8:ea:10:84:0b:07:25:44:dc:1c:75:51:cb:a5:41: de:16:c3:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUwODA4MTczMTMzWhcNMjUwODE1MTczMTMzWjAYMRYwFAYD VQQDEw02ODk2MzQ3NS00M2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8CgaEDscuiPFskJi5bWOzvtdfJZkp7Pi3K+lsVsL2xCDgGJNXJSjcgGdyAK5 1ATY44JPzrWi8Dmd85COMZANMl3wcJW9s2Ra2GIlcqd3t8RPSE76Jn3Bm3UpeENY HOcV6lsJUw05K7p39nBDmK4Y2LvZWTQPIgFijFuwLZexBDg1JjWkqd11vxB0zpOi 0WXW4oocdyVbLdGG8duxqAmFfnr6KvLXBns8pA8RLVHBxjcEK8L5T8dcNu4POYcV kwA9AXyybRtm9O+Ra4yaAvnwAvca3sFVtAFvlOEo5sk0VtGEqpnOytO66197gnVn UA2MUA0spS3S+8Yf+fCYDoQmkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdukaOd yEKR2c8EH5CcMJ9PEK46MB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwtonigC2frw6B8sWRauKo4yqyFjkjf3yvzlOuuqKaKIHxxtyEz+st wB/b9CyT3cmTwwCv0SerTZbN3dw+Vz/iGA8W28diXtitWXdbERqUtqBq2s/ibdz6 a5s5iFGpDSQ0tOsSVIk9VbJbu44N00I4nUi710e1a3/vaIDnkd47AKVeS2FLAI4U 8BghsbSECODBjaGerJgTiqFnADDas82A4RqEfjMRjMKsDam1m/9fUTAe8YTu4lcA 35zfXBwHd8F8Na1kmYvk7R09berju7VfB1ZG1gf46+lpEPI2kLF3jyNDd120lLRm wFnnlE646hCECwclRNwcdVHLpUHeFsNw -----END CERTIFICATE-----Generated at Sun Aug 10 04:14:32 2025 by rpki-client