$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: 4FLN1/sP8fO5/36Ft/VXNmqyBfJRRAh3Koo4ZNUsPnw= Subject key identifier: AA:04:80:02:A1:92:FE:CB:20:94:68:9D:01:63:F2:0C:D8:A1:7F:74 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 0899 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 14A7 Signing time: Sat 14 Jun 2025 18:31:26 +0000 Manifest this update: Sat 14 Jun 2025 18:31:26 +0000 Manifest next update: Sat 21 Jun 2025 18:31:26 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: O+mnR+BiKiH5BzSrPpZ5vvmnj17Oy/E8ot/arWKf/to=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2201 (0x899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Jun 14 18:31:26 2025 GMT Not After : Jun 21 18:31:26 2025 GMT Subject: CN=684dbffe-8d53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3f:b9:8f:ed:a7:4c:31:ef:2c:9f:be:f0:f7: ce:14:ff:41:e0:dd:1a:6c:24:ed:1c:b9:92:93:1d: 6a:31:d3:b9:0d:c6:7e:84:98:26:ac:cf:30:f0:86: 48:3a:95:ca:22:4a:54:c5:a2:df:2d:4b:b1:4d:2f: db:6e:db:9c:f9:27:b2:6d:20:46:c9:02:1f:4f:70: 22:6b:4a:d2:f8:18:ec:33:1a:b2:e9:3e:b4:3f:01: c2:84:a0:b6:b0:c4:1a:13:c8:b6:ab:cb:d1:3e:c8: dc:97:5d:03:62:48:94:4e:0f:b2:98:cb:38:bd:c8: 20:34:df:45:77:72:e8:b9:d9:a6:c0:c1:ec:ed:94: 19:31:1a:bf:da:ec:81:dc:e9:3c:be:17:55:ff:73: 0a:23:30:dc:f2:fb:ea:ed:37:b5:ed:a2:19:0d:6b: c9:2e:7d:7c:4b:65:d7:eb:d8:2c:96:94:cf:14:76: 46:a0:0a:a3:f4:d9:e2:f9:ed:c8:c4:c8:d5:af:d4: eb:4f:09:ee:15:2b:8c:16:d6:85:0f:b1:81:7f:11: e0:c2:dc:68:ad:00:80:64:8a:1c:ef:7a:5c:76:ab: 32:11:da:e9:26:32:6d:0f:aa:82:22:ac:f0:ba:3f: 72:d3:b1:ff:96:de:41:e6:63:b5:77:6a:68:d7:c4: 3b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:04:80:02:A1:92:FE:CB:20:94:68:9D:01:63:F2:0C:D8:A1:7F:74 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:58:1e:8c:16:bf:a7:21:0a:15:1a:fc:31:e8:e7:1d:ac:f7: cb:97:d5:c8:23:a5:30:b2:20:89:9b:b8:9e:b4:8d:82:2f:6e: 62:0d:18:50:27:aa:d3:c6:ae:db:0d:d3:d7:03:2e:df:ab:5e: 27:4c:0d:8a:35:25:55:7a:45:6f:d5:1f:94:96:97:27:2e:99: 51:40:b6:c4:01:31:59:90:5a:04:0c:7a:69:5f:9d:26:f9:30: ad:0c:24:b4:cc:16:53:4c:da:58:5a:73:fa:0f:54:c7:17:a3: d6:a3:db:2e:2a:b5:df:65:4b:95:32:0a:1b:2d:5f:2d:f1:2c: 03:0c:68:f1:c2:2e:3b:bb:c5:78:e3:4e:ca:c4:a7:82:d6:5b: 4d:48:9c:26:f5:91:b6:1a:6d:5c:8a:93:aa:15:79:07:1e:09: bd:dd:3d:15:3e:40:94:34:74:a1:f1:27:cd:47:04:54:24:ee: 80:44:2f:a7:47:b9:ff:44:ec:4e:ce:68:8b:e2:a2:4b:f3:71: 8e:35:20:74:32:0d:a6:ec:72:85:b2:a8:d0:55:37:4d:1d:d8: 7d:66:b7:66:c1:c6:08:38:77:2d:34:0e:44:d1:ab:43:ae:6a: c6:da:7b:24:96:6d:a1:f3:4c:3f:f4:86:2d:41:2f:b2:38:87: 53:cb:6b:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwNjE0MTgzMTI2WhcNMjUwNjIxMTgzMTI2WjAYMRYwFAYD VQQDEw02ODRkYmZmZS04ZDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzz+5j+2nTDHvLJ++8PfOFP9B4N0abCTtHLmSkx1qMdO5DcZ+hJgmrM8w8IZI OpXKIkpUxaLfLUuxTS/bbtuc+SeybSBGyQIfT3Aia0rS+BjsMxqy6T60PwHChKC2 sMQaE8i2q8vRPsjcl10DYkiUTg+ymMs4vcggNN9Fd3LoudmmwMHs7ZQZMRq/2uyB 3Ok8vhdV/3MKIzDc8vvq7Te17aIZDWvJLn18S2XX69gslpTPFHZGoAqj9Nni+e3I xMjVr9TrTwnuFSuMFtaFD7GBfxHgwtxorQCAZIoc73pcdqsyEdrpJjJtD6qCIqzw uj9y07H/lt5B5mO1d2po18Q7OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoEgAKh kv7LIJRonQFj8gzYoX90MB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmWB6MFr+nIQoVGvwx6OcdrPfLl9XII6UwsiCJm7ietI2CL25iDRhQ J6rTxq7bDdPXAy7fq14nTA2KNSVVekVv1R+UlpcnLplRQLbEATFZkFoEDHppX50m +TCtDCS0zBZTTNpYWnP6D1THF6PWo9suKrXfZUuVMgobLV8t8SwDDGjxwi47u8V4 407KxKeC1ltNSJwm9ZG2Gm1cipOqFXkHHgm93T0VPkCUNHSh8SfNRwRUJO6ARC+n R7n/ROxOzmiL4qJL83GONSB0Mg2m7HKFsqjQVTdNHdh9ZrdmwcYIOHctNA5E0atD rmrG2nsklm2h80w/9IYtQS+yOIdTy2vd -----END CERTIFICATE-----Generated at Sun Jun 15 09:40:32 2025 by rpki-client