$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: DEjhrDKsLp8VqURO37vdYGiS8Y+7SqBpOtHeJedSYHQ= Subject key identifier: 09:60:9C:9C:74:6A:67:66:FA:92:11:C6:57:13:C4:96:1A:78:18:AA Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 14B7 Signing time: Mon 30 Jun 2025 18:49:01 +0000 Manifest this update: Mon 30 Jun 2025 18:49:00 +0000 Manifest next update: Mon 07 Jul 2025 18:49:00 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: KHF2v3sKzpgTtJtg/te/sgq9vupAZB8G1BBRUtzYZLU=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2209 (0x8a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Jun 30 18:49:00 2025 GMT Not After : Jul 7 18:49:00 2025 GMT Subject: CN=6862dc1c-e307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8c:b5:7c:67:30:ab:f6:69:80:63:92:69:8a: 80:bd:34:10:6a:4d:ec:22:4b:03:83:54:60:0e:dd: 20:f2:e8:65:30:6a:f9:07:ef:a9:3f:45:a1:f3:d5: d9:2f:7b:18:a4:3c:b4:8b:1d:61:6a:1e:fe:a8:90: 64:be:7a:d7:7a:ae:58:fd:8e:9b:86:99:0a:8e:06: f0:5d:17:e3:3b:17:e7:ac:47:b8:b4:02:b4:0b:a7: 92:cd:71:fc:be:97:90:b8:94:51:66:19:76:52:cd: 46:fa:c7:6c:fc:11:f9:08:42:d8:2b:a9:c0:f1:fc: 18:4a:17:7a:80:27:58:d3:cf:ac:6c:14:8f:fe:38: e4:c4:44:2e:1d:da:78:2d:08:58:e7:aa:85:4e:eb: 47:0d:ce:c8:f6:37:ee:9d:ab:b6:08:48:e1:dc:21: 11:1c:80:65:d1:7b:d7:86:ff:f8:af:d9:62:7f:22: f7:c1:c7:e8:37:67:86:7c:2b:07:76:84:4f:e7:0f: b7:f0:98:5f:58:02:00:35:91:9c:18:eb:ba:30:27: c5:54:fe:c2:ee:78:83:a1:bc:8f:e9:da:dd:e7:72: 81:c8:8e:8c:86:59:b3:ef:70:3c:91:ea:b6:44:4a: 46:b5:53:1f:e1:12:b0:b7:eb:85:40:e2:56:19:7e: 70:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:60:9C:9C:74:6A:67:66:FA:92:11:C6:57:13:C4:96:1A:78:18:AA X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:6d:a9:2f:7e:df:88:74:83:e2:b7:65:ea:85:17:4b:40:bb: 17:93:65:cc:b4:85:8c:16:0b:9b:34:07:30:d0:ce:e1:57:7f: 8e:b7:06:43:82:2c:4a:e2:6a:bf:4f:e0:f8:ce:a3:ee:15:e6: 23:6d:45:4f:89:5b:68:3b:96:a3:97:f9:e0:15:8c:ad:21:ac: 03:7f:9f:8b:d7:3c:bd:2b:ef:c4:92:3c:6b:d5:08:49:3a:5d: d0:3a:cc:c5:04:4c:12:59:ac:f6:a6:66:fd:6b:1a:7d:da:e4: c9:78:00:b1:1f:d1:4d:b0:72:17:71:ce:ae:af:d8:09:a8:4e: eb:a9:0c:e0:87:31:c5:0d:e9:42:0b:55:f6:5d:9d:43:02:92: 1d:35:73:d4:5f:b6:20:45:16:31:3d:e5:a6:9d:80:61:3c:cd: 6d:20:95:39:9c:f5:61:dc:9d:6c:fe:5a:4c:b5:3b:64:26:5e: a0:4c:a1:8c:c6:f7:8c:fe:22:24:32:69:df:bb:b3:41:c0:0a: 5d:62:c4:05:62:d3:0f:e8:bf:4e:d4:91:74:1c:bc:3d:ef:3d: dd:0c:b1:75:33:9f:90:95:59:6b:47:40:e9:29:b8:ec:bc:96: c1:0b:f0:3a:d2:98:fb:74:9c:46:87:4a:bb:ad:9f:72:8e:e4: f7:fe:6f:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwNjMwMTg0OTAwWhcNMjUwNzA3MTg0OTAwWjAYMRYwFAYD VQQDEw02ODYyZGMxYy1lMzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYy1fGcwq/ZpgGOSaYqAvTQQak3sIksDg1RgDt0g8uhlMGr5B++pP0Wh89XZ L3sYpDy0ix1hah7+qJBkvnrXeq5Y/Y6bhpkKjgbwXRfjOxfnrEe4tAK0C6eSzXH8 vpeQuJRRZhl2Us1G+sds/BH5CELYK6nA8fwYShd6gCdY08+sbBSP/jjkxEQuHdp4 LQhY56qFTutHDc7I9jfunau2CEjh3CERHIBl0XvXhv/4r9lifyL3wcfoN2eGfCsH doRP5w+38JhfWAIANZGcGOu6MCfFVP7C7niDobyP6drd53KByI6Mhlmz73A8keq2 REpGtVMf4RKwt+uFQOJWGX5wNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlgnJx0 amdm+pIRxlcTxJYaeBiqMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATbakvft+IdIPit2XqhRdLQLsXk2XMtIWMFgubNAcw0M7hV3+OtwZD gixK4mq/T+D4zqPuFeYjbUVPiVtoO5ajl/ngFYytIawDf5+L1zy9K+/Ekjxr1QhJ Ol3QOszFBEwSWaz2pmb9axp92uTJeACxH9FNsHIXcc6ur9gJqE7rqQzghzHFDelC C1X2XZ1DApIdNXPUX7YgRRYxPeWmnYBhPM1tIJU5nPVh3J1s/lpMtTtkJl6gTKGM xveM/iIkMmnfu7NBwApdYsQFYtMP6L9O1JF0HLw97z3dDLF1M5+QlVlrR0DpKbjs vJbBC/A60pj7dJxGh0q7rZ9yjuT3/m/w -----END CERTIFICATE-----Generated at Tue Jul 1 19:40:29 2025 by rpki-client