$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: HJljwEf8brDF3MbBMHLk0PSlQukK3Ww62caQH/MJ8yY= Subject key identifier: 16:18:24:9D:BF:6B:F8:49:44:86:83:9F:E1:6F:F4:45:81:E4:CB:0B Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 14EF Signing time: Sun 24 Aug 2025 18:34:40 +0000 Manifest this update: Sun 24 Aug 2025 18:34:39 +0000 Manifest next update: Sun 31 Aug 2025 18:34:39 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: C5CrzIvICEDglFYX0HCLvUTXd1km9243SOWUCSgAoRA=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2237 (0x8bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Aug 24 18:34:39 2025 GMT Not After : Aug 31 18:34:39 2025 GMT Subject: CN=68ab5b3f-4893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d5:63:0a:40:54:e7:a1:a8:60:ee:5f:e6:a8: e7:f9:6f:62:9e:93:ee:67:5d:89:d9:56:7d:6c:4a: 00:6d:10:d5:46:ed:ae:66:9f:29:59:05:19:57:10: e9:c4:49:e2:5c:70:bc:f2:fc:77:10:dc:5f:1f:7d: 2d:a9:ff:8a:6e:58:b1:bd:09:76:b3:f4:74:0d:6e: 83:92:7f:56:8d:6f:27:cd:8a:96:e1:26:5c:86:60: ca:7c:be:62:97:7b:f7:f1:8e:09:0a:19:09:3b:c2: 4f:8b:4f:ba:c9:99:2f:d5:51:7d:c1:1c:43:60:77: 19:68:0f:fb:a8:67:eb:44:3d:6b:bd:c3:8d:98:6a: 5a:33:3b:ca:ea:7d:f9:99:7d:3c:4b:a9:e2:07:6e: 94:93:e7:6e:4e:55:e2:31:2d:6b:3a:94:ef:9d:2a: 3d:af:4b:c7:c6:11:02:32:4f:d6:2d:ea:c1:e1:5e: 23:84:3a:06:38:5c:ac:d6:b4:0e:b5:49:25:14:16: f2:74:b8:b5:8f:7f:73:1b:96:58:2c:36:38:e8:d7: 57:96:67:47:7b:f6:3e:14:cb:30:79:a7:ac:a3:ed: 24:ab:ba:82:b4:db:17:e4:c7:d3:19:52:4d:d8:cd: 6d:a2:26:b3:41:12:e9:01:79:03:dc:5d:c1:11:9d: eb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:18:24:9D:BF:6B:F8:49:44:86:83:9F:E1:6F:F4:45:81:E4:CB:0B X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:65:81:bd:66:dd:6f:a6:e7:b6:ca:89:ee:a3:d7:06:31:10: 5d:31:7b:2c:08:be:e2:f1:43:a5:e2:06:ce:2a:f0:9c:0c:e2: 93:01:f6:81:71:20:23:3a:86:0a:03:c2:d5:e7:53:59:fa:92: b6:af:d0:24:37:09:5e:23:7d:59:08:e7:66:d4:27:aa:14:75: 4b:c1:a7:da:ad:c0:eb:cc:0e:58:79:06:a1:6d:90:ca:74:d6: 01:58:09:ae:cd:42:d3:66:ee:3a:b6:69:99:76:bb:de:4f:72: 65:dd:26:8d:e3:92:3d:ef:30:e2:18:0c:cb:8a:b9:5f:42:8e: 1e:94:7f:4e:fd:f6:e0:ea:fc:37:b6:43:15:8b:bd:58:82:89: 47:17:78:8f:3b:e6:69:a8:88:20:e9:ff:7a:2a:96:43:91:d2: 66:85:fe:82:54:61:d3:61:1b:96:d9:ff:15:81:77:06:61:a9: f3:a9:75:50:a3:e4:cd:b0:31:2d:62:93:1a:5d:34:44:a0:79: ba:9f:9a:02:27:6e:56:95:34:b5:59:98:14:04:bd:3a:a3:7b: b2:85:47:f2:d5:c5:3b:b6:0c:72:fc:f8:92:e1:52:96:26:9d: d1:7a:42:28:3a:89:1e:07:95:54:43:cb:83:e7:b4:5a:54:c7: a1:d2:58:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwODI0MTgzNDM5WhcNMjUwODMxMTgzNDM5WjAYMRYwFAYD VQQDEw02OGFiNWIzZi00ODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNVjCkBU56GoYO5f5qjn+W9inpPuZ12J2VZ9bEoAbRDVRu2uZp8pWQUZVxDp xEniXHC88vx3ENxfH30tqf+KblixvQl2s/R0DW6Dkn9WjW8nzYqW4SZchmDKfL5i l3v38Y4JChkJO8JPi0+6yZkv1VF9wRxDYHcZaA/7qGfrRD1rvcONmGpaMzvK6n35 mX08S6niB26Uk+duTlXiMS1rOpTvnSo9r0vHxhECMk/WLerB4V4jhDoGOFys1rQO tUklFBbydLi1j39zG5ZYLDY46NdXlmdHe/Y+FMsweaeso+0kq7qCtNsX5MfTGVJN 2M1toiazQRLpAXkD3F3BEZ3rLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYYJJ2/ a/hJRIaDn+Fv9EWB5MsLMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjZYG9Zt1vpue2yonuo9cGMRBdMXssCL7i8UOl4gbOKvCcDOKTAfaB cSAjOoYKA8LV51NZ+pK2r9AkNwleI31ZCOdm1CeqFHVLwafarcDrzA5YeQahbZDK dNYBWAmuzULTZu46tmmZdrveT3Jl3SaN45I97zDiGAzLirlfQo4elH9O/fbg6vw3 tkMVi71YgolHF3iPO+ZpqIgg6f96KpZDkdJmhf6CVGHTYRuW2f8VgXcGYanzqXVQ o+TNsDEtYpMaXTREoHm6n5oCJ25WlTS1WZgUBL06o3uyhUfy1cU7tgxy/PiS4VKW Jp3RekIoOokeB5VUQ8uD57RaVMeh0lhk -----END CERTIFICATE-----Generated at Sun Aug 24 22:11:24 2025 by rpki-client