$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: HVEH3k6gjuMq/l1j8bkIYr3yIJrbewKQa73cwkmwZKE= Subject key identifier: 1D:10:FA:D1:A6:D7:B5:5C:1E:BE:FC:C0:E4:2B:3C:A5:1D:AA:D8:17 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 1537 Signing time: Sun 02 Nov 2025 18:32:02 +0000 Manifest this update: Sun 02 Nov 2025 18:32:01 +0000 Manifest next update: Sun 09 Nov 2025 18:32:01 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: cJiILHeEqC5nUtSM8yitelM0HAfQm9/26j/jSKeuu3M=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2273 (0x8e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Nov 2 18:32:01 2025 GMT Not After : Nov 9 18:32:01 2025 GMT Subject: CN=6907a3a2-ae4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ae:6a:94:64:7b:a5:5a:f7:ba:b6:1c:8e:be: 6e:b7:f6:50:4c:4b:3e:f2:6c:54:a1:1d:8a:73:b7: 13:0e:e1:b8:f7:98:62:91:36:ac:ca:73:86:23:58: 33:62:18:f5:52:8e:16:fc:8e:10:74:6f:ed:41:0f: e0:e1:6f:ca:23:1d:a9:cf:59:80:ff:8f:54:1b:38: 5d:9f:7a:74:34:d4:c3:c9:15:7f:d8:f1:83:b5:f2: 7e:72:03:cb:03:e1:fa:59:a3:15:fd:d0:8f:d4:9e: cb:33:80:dd:63:55:e3:d6:60:48:e8:fc:78:44:0a: 7b:57:64:42:27:62:71:58:bf:59:56:78:36:82:fc: 34:75:20:f5:07:b6:b4:0c:6a:5d:70:57:21:a4:bf: b4:eb:fc:d1:a4:59:44:51:54:a6:50:b6:4a:9a:e2: 93:b2:d7:ca:7d:fa:61:44:26:67:ca:a3:90:dd:b8: 69:e2:61:88:1f:bb:7a:fe:3b:d7:73:85:d2:41:29: d1:19:98:0c:dc:5f:7b:c4:66:b8:43:22:85:45:d0: f4:32:7e:9f:08:66:d7:22:4b:17:35:48:ec:29:94: 93:3f:2f:82:15:28:e1:1e:49:be:08:48:f0:13:ee: d1:ce:ff:69:7f:f5:21:c5:74:1b:13:7b:bd:17:f1: b8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:10:FA:D1:A6:D7:B5:5C:1E:BE:FC:C0:E4:2B:3C:A5:1D:AA:D8:17 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:02:e0:38:40:8e:69:ac:8f:9d:d3:c1:4d:47:aa:2d:5b:f8: 23:b5:65:2a:c9:38:33:7f:31:18:8c:98:78:8d:ab:65:74:56: 41:75:77:9b:62:83:28:22:74:07:d7:bf:54:88:c5:48:6b:f6: bf:cd:e8:1c:05:91:b1:f0:76:8d:d5:7b:0d:80:6a:24:5b:a6: 08:e5:39:d5:72:f6:fa:17:83:9e:fb:f5:6c:b1:b2:a4:ff:e1: 29:8e:fd:45:58:f7:63:d9:56:61:d2:78:f7:74:cb:24:94:87: 67:cf:93:cf:c3:00:79:e1:20:56:d2:68:2a:b5:16:75:b0:2f: 49:6c:ab:b2:69:a2:a1:49:fa:32:e8:83:f7:34:ee:b4:86:f3: 9c:c0:2c:f8:27:c6:ac:44:35:0f:5b:d4:ac:7c:9a:15:45:ce: 12:40:01:2e:73:4e:a5:7b:bd:53:48:aa:01:3d:37:cf:ad:14: 0d:2a:1c:bb:b3:42:6a:b2:d9:7d:f2:3a:cc:a5:13:5f:fb:4b: a0:80:ed:8b:84:b6:0b:06:ee:cd:7a:82:fe:7c:43:d7:50:d2: bf:79:c1:7b:7b:2d:13:f4:bd:c0:17:88:19:d3:e8:a7:02:e6: eb:0a:ce:9f:eb:8b:b8:8a:be:32:eb:13:25:60:9d:1c:fb:f0: 48:ad:ed:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUxMTAyMTgzMjAxWhcNMjUxMTA5MTgzMjAxWjAYMRYwFAYD VQQDEw02OTA3YTNhMi1hZTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+65qlGR7pVr3urYcjr5ut/ZQTEs+8mxUoR2Kc7cTDuG495hikTasynOGI1gz Yhj1Uo4W/I4QdG/tQQ/g4W/KIx2pz1mA/49UGzhdn3p0NNTDyRV/2PGDtfJ+cgPL A+H6WaMV/dCP1J7LM4DdY1Xj1mBI6Px4RAp7V2RCJ2JxWL9ZVng2gvw0dSD1B7a0 DGpdcFchpL+06/zRpFlEUVSmULZKmuKTstfKffphRCZnyqOQ3bhp4mGIH7t6/jvX c4XSQSnRGZgM3F97xGa4QyKFRdD0Mn6fCGbXIksXNUjsKZSTPy+CFSjhHkm+CEjw E+7Rzv9pf/UhxXQbE3u9F/G4sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0Q+tGm 17VcHr78wOQrPKUdqtgXMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNAuA4QI5prI+d08FNR6otW/gjtWUqyTgzfzEYjJh4jatldFZBdXeb YoMoInQH179UiMVIa/a/zegcBZGx8HaN1XsNgGokW6YI5TnVcvb6F4Oe+/VssbKk /+Epjv1FWPdj2VZh0nj3dMsklIdnz5PPwwB54SBW0mgqtRZ1sC9JbKuyaaKhSfoy 6IP3NO60hvOcwCz4J8asRDUPW9SsfJoVRc4SQAEuc06le71TSKoBPTfPrRQNKhy7 s0Jqstl98jrMpRNf+0uggO2LhLYLBu7NeoL+fEPXUNK/ecF7ey0T9L3AF4gZ0+in AubrCs6f64u4ir4y6xMlYJ0c+/BIre1e -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:16 2025 by rpki-client