$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: mOhHbxqlJcFm9r34vi0kLxWN0L6YcRrPkdL+n3jEPCo= Subject key identifier: 3A:7E:4B:9F:C0:7B:29:71:51:E8:14:3A:38:BB:A2:08:E9:9B:A7:DA Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 14E3 Signing time: Tue 12 Aug 2025 18:47:49 +0000 Manifest this update: Tue 12 Aug 2025 18:47:48 +0000 Manifest next update: Tue 19 Aug 2025 18:47:48 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: 4efCgM/CvQSbhrzoWy34bwmSbsTFuyH4yqCNNKbvSFQ=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 18:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2231 (0x8b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Aug 12 18:47:48 2025 GMT Not After : Aug 19 18:47:48 2025 GMT Subject: CN=689b8c54-4913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e7:17:5e:98:4c:7d:99:83:5b:3c:0c:49:85: 25:af:81:eb:6e:ee:39:df:5d:46:0d:97:2a:aa:cf: 0f:9c:13:40:53:61:a4:7a:70:da:50:e6:18:67:f0: 7c:f1:db:31:2f:72:a9:e3:07:64:87:c9:b6:14:43: b4:fb:5e:db:ef:9c:1e:f5:4b:be:2e:2d:c4:45:56: be:b9:09:57:e0:05:b3:69:14:ae:c0:3c:be:78:14: d7:3e:07:12:d8:96:e0:41:6e:95:b0:2d:d6:1e:65: 73:9e:b7:19:cf:52:29:6e:45:f2:a8:d2:49:2c:70: ae:84:ea:14:20:5e:ed:ec:ef:2c:46:0b:5f:0f:5b: 97:d5:ea:27:d5:07:02:e5:35:08:7d:1f:4f:c5:5c: 70:1e:7f:67:8e:83:96:de:2f:6c:18:c4:f4:e0:54: 2d:12:e1:cd:37:39:dd:46:3b:b3:3b:a9:23:1a:dd: 32:c6:3e:ea:a5:5b:62:7c:87:de:f4:6f:c0:56:f5: d0:11:b6:69:51:0e:7d:50:f5:98:0f:70:b5:ad:6c: f5:42:b2:58:fe:84:e4:c0:fd:97:87:b7:9a:89:86: c9:cc:32:bb:49:8f:f9:0c:78:13:be:98:ff:68:34: 49:0a:4d:6d:f1:6c:45:2b:3d:fe:07:24:90:a3:40: 0c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:7E:4B:9F:C0:7B:29:71:51:E8:14:3A:38:BB:A2:08:E9:9B:A7:DA X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:52:df:6c:14:7f:52:ae:94:79:6c:96:a2:cc:6d:ea:22:96: c3:c1:1b:ec:f7:59:02:28:41:43:dd:d6:bc:18:06:8f:5c:0a: 6a:9b:7c:f3:c6:ba:02:17:cd:ab:5e:ac:1a:80:c5:2a:05:0b: 9e:77:67:b5:d7:48:72:ba:81:8d:97:f5:7d:af:57:61:dd:78: ea:0e:97:0f:13:d4:aa:73:c7:c1:3b:bf:7a:7c:f8:0c:79:6c: 50:ae:f8:8c:4e:19:41:1c:7e:ac:57:a5:e2:ba:f8:3a:a2:bd: 74:0f:62:41:12:26:45:3a:fe:23:ca:8b:fa:fd:5c:e7:5b:51: 46:e8:c2:17:2d:90:5d:99:bf:f9:5e:cf:cc:8e:c9:4b:f1:1d: 77:8d:3f:a2:06:7f:0e:26:94:33:81:83:5b:ef:cd:b3:be:9c: 9f:ef:db:76:11:28:93:17:d0:44:59:ed:32:76:f7:e7:2a:cc: c0:b8:8a:9e:e5:36:60:0d:9b:af:b3:b2:1a:c8:e4:87:8c:74: cb:43:9b:df:75:da:32:69:5b:c7:c4:e4:fe:d9:08:cb:4b:12: 4e:d2:96:31:f3:cc:21:e7:ba:59:4f:3c:84:22:d6:aa:86:78: 8f:4b:d0:68:75:a2:35:80:b3:0a:b6:23:7e:1a:b6:7d:26:e1: be:f8:bd:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwODEyMTg0NzQ4WhcNMjUwODE5MTg0NzQ4WjAYMRYwFAYD VQQDEw02ODliOGM1NC00OTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OcXXphMfZmDWzwMSYUlr4Hrbu45311GDZcqqs8PnBNAU2GkenDaUOYYZ/B8 8dsxL3Kp4wdkh8m2FEO0+17b75we9Uu+Li3ERVa+uQlX4AWzaRSuwDy+eBTXPgcS 2JbgQW6VsC3WHmVznrcZz1IpbkXyqNJJLHCuhOoUIF7t7O8sRgtfD1uX1eon1QcC 5TUIfR9PxVxwHn9njoOW3i9sGMT04FQtEuHNNzndRjuzO6kjGt0yxj7qpVtifIfe 9G/AVvXQEbZpUQ59UPWYD3C1rWz1QrJY/oTkwP2Xh7eaiYbJzDK7SY/5DHgTvpj/ aDRJCk1t8WxFKz3+BySQo0AMZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDp+S5/A eylxUegUOji7ogjpm6faMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSUt9sFH9SrpR5bJaizG3qIpbDwRvs91kCKEFD3da8GAaPXApqm3zz xroCF82rXqwagMUqBQued2e110hyuoGNl/V9r1dh3XjqDpcPE9Sqc8fBO796fPgM eWxQrviMThlBHH6sV6Xiuvg6or10D2JBEiZFOv4jyov6/VznW1FG6MIXLZBdmb/5 Xs/MjslL8R13jT+iBn8OJpQzgYNb782zvpyf79t2ESiTF9BEWe0ydvfnKszAuIqe 5TZgDZuvs7IayOSHjHTLQ5vfddoyaVvHxOT+2QjLSxJO0pYx88wh57pZTzyEItaq hniPS9BodaI1gLMKtiN+GrZ9JuG++L0K -----END CERTIFICATE-----Generated at Tue Aug 12 22:53:59 2025 by rpki-client