$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: uIMnsAF1U0R2M5gNvM0V5Y2CWxtEaCInmYWFG/ldsgY= Subject key identifier: B1:EA:A5:56:23:C4:B0:49:F3:44:49:C1:85:AB:BB:08:9A:B0:A8:D5 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 1539 Signing time: Tue 04 Nov 2025 18:39:11 +0000 Manifest this update: Tue 04 Nov 2025 18:39:10 +0000 Manifest next update: Tue 11 Nov 2025 18:39:10 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: /5Ip36DfJSKXa7ex4u1vB220J0ejYII0s4XWs+4xdY4=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2274 (0x8e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Nov 4 18:39:10 2025 GMT Not After : Nov 11 18:39:10 2025 GMT Subject: CN=690a484f-a4c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f1:49:47:59:fb:1e:35:ea:ec:ab:c6:6e:ab: 3a:69:fc:d4:07:4e:fd:f4:bb:b9:24:f3:65:ee:09: c1:79:fd:e8:7d:cf:dc:a3:32:32:72:7e:16:13:a4: 0f:59:76:e0:2b:85:05:e7:24:ba:c4:08:fc:a9:99: ca:2b:61:9d:b0:c0:e1:d4:d7:44:6b:78:e6:fb:78: d3:00:4a:9a:4c:65:b5:93:91:c2:26:02:8d:ec:ec: f9:ae:09:7c:fa:38:3b:82:57:72:0b:ae:4b:a9:41: 1c:a9:16:ad:d0:1a:a3:2c:19:a2:26:d2:47:d3:73: 37:4c:25:86:68:12:90:44:9c:46:28:af:0f:1e:89: 97:9e:11:7e:15:57:8e:56:f9:1b:78:b9:e5:5b:de: 06:0c:92:f3:67:cf:bc:55:0c:c8:95:2b:f8:d5:0a: 59:3e:a2:40:8b:86:9b:15:5b:b0:8f:39:5d:26:cc: 24:e4:1f:ee:b6:99:ae:d3:4e:a0:8a:81:01:a7:b4: d1:2d:e6:f9:71:a5:08:86:63:2a:e4:51:29:58:fa: b0:6e:f5:12:b7:47:86:ec:d5:5b:9a:3e:de:5a:fc: 74:49:a5:e0:c3:13:36:38:31:3c:45:dc:73:05:5f: fe:6c:43:59:88:82:80:5d:f8:53:f4:5d:9c:88:4d: 24:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EA:A5:56:23:C4:B0:49:F3:44:49:C1:85:AB:BB:08:9A:B0:A8:D5 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:21:e8:c2:03:37:73:30:92:93:0a:71:51:36:cd:eb:be:28: 8c:9f:78:4b:07:91:00:ce:e4:b1:ae:40:4f:f7:82:de:4d:a8: d7:82:50:5f:8a:1f:d0:79:40:a5:21:3e:89:a9:7d:77:5b:e3: a1:6b:f5:6d:f8:5f:b1:59:6f:05:e2:33:69:3a:c7:6c:48:b2: 69:60:83:9d:9a:de:aa:5d:a2:54:bb:e4:f8:18:9c:14:42:36: c7:3e:50:85:04:3b:ab:4c:08:8d:e7:b5:b3:f3:e8:7a:15:57: e2:7b:37:1b:3a:cf:41:c0:3a:67:e0:7e:c2:14:bc:26:c9:b3: 30:2c:3f:b1:9e:c6:9d:e9:b6:df:09:fd:1b:e0:44:56:ae:4b: 6e:5e:f1:52:8d:a8:9e:8e:ab:45:a4:b7:1c:01:61:db:ce:b2: e9:8c:0e:65:63:6d:df:06:c0:83:c9:63:8b:37:3b:76:9a:9f: 9e:6a:56:47:d2:61:f2:50:37:c8:e0:36:3d:28:86:32:5c:16: 42:ee:de:1f:05:b1:23:48:2d:db:e2:e2:0f:c7:21:f8:f4:02: 37:4f:f3:36:b9:45:42:cb:bb:37:c7:07:90:3e:cb:73:42:cc: f6:07:dc:9b:43:f2:a8:fd:f5:eb:3c:a3:33:5c:37:a1:fb:37: 34:69:40:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUxMTA0MTgzOTEwWhcNMjUxMTExMTgzOTEwWjAYMRYwFAYD VQQDEw02OTBhNDg0Zi1hNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfFJR1n7HjXq7KvGbqs6afzUB0799Lu5JPNl7gnBef3ofc/cozIycn4WE6QP WXbgK4UF5yS6xAj8qZnKK2GdsMDh1NdEa3jm+3jTAEqaTGW1k5HCJgKN7Oz5rgl8 +jg7gldyC65LqUEcqRat0BqjLBmiJtJH03M3TCWGaBKQRJxGKK8PHomXnhF+FVeO VvkbeLnlW94GDJLzZ8+8VQzIlSv41QpZPqJAi4abFVuwjzldJswk5B/utpmu006g ioEBp7TRLeb5caUIhmMq5FEpWPqwbvUSt0eG7NVbmj7eWvx0SaXgwxM2ODE8Rdxz BV/+bENZiIKAXfhT9F2ciE0kVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHqpVYj xLBJ80RJwYWruwiasKjVMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmIejCAzdzMJKTCnFRNs3rviiMn3hLB5EAzuSxrkBP94LeTajXglBf ih/QeUClIT6JqX13W+Oha/Vt+F+xWW8F4jNpOsdsSLJpYIOdmt6qXaJUu+T4GJwU QjbHPlCFBDurTAiN57Wz8+h6FVfiezcbOs9BwDpn4H7CFLwmybMwLD+xnsad6bbf Cf0b4ERWrktuXvFSjaiejqtFpLccAWHbzrLpjA5lY23fBsCDyWOLNzt2mp+ealZH 0mHyUDfI4DY9KIYyXBZC7t4fBbEjSC3b4uIPxyH49AI3T/M2uUVCy7s3xweQPstz Qsz2B9ybQ/Ko/fXrPKMzXDeh+zc0aUDH -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:38 2025 by rpki-client