$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: U9wB30glT9Pby4oO7EJ/JEynxadIS0kkevnfDSsyEfQ= Subject key identifier: FD:06:71:9A:D2:CE:59:09:B6:24:4C:D3:B7:CA:3E:5B:5E:92:DA:3F Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 1527 Signing time: Sat 18 Oct 2025 19:20:07 +0000 Manifest this update: Sat 18 Oct 2025 19:20:06 +0000 Manifest next update: Sat 25 Oct 2025 19:20:06 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: 54WVi3V2T+LcUWJhNi+4HgDKqp0ZPEiABHNIPjnPbCg=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2265 (0x8d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Oct 18 19:20:06 2025 GMT Not After : Oct 25 19:20:06 2025 GMT Subject: CN=68f3e867-4df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:61:61:7c:41:45:06:d7:32:62:6f:fb:7c:22: 30:f4:40:52:7d:c2:d5:38:3e:42:9e:ca:e7:67:ac: b7:52:ad:83:a2:a0:87:b9:de:77:3c:b9:7c:c9:ec: 37:b1:9e:0f:2c:37:25:51:f3:21:e4:3e:2b:7f:03: 57:ef:59:0f:33:a9:82:1d:c2:b1:ba:a5:1f:2b:51: 5b:ce:76:1d:d7:77:67:21:47:9c:13:d5:d9:5d:a5: d5:89:58:46:8f:48:3b:72:57:26:3e:e1:25:9d:e4: 75:0b:b8:a3:63:85:6c:3f:ba:66:e6:63:b8:fb:a8: 0c:f6:39:89:02:37:40:b2:4f:98:d5:b3:41:18:d9: 18:17:8f:e5:ec:d7:72:df:ca:e5:ca:12:86:2e:af: f3:fd:e3:b1:ce:76:99:30:6c:9a:a8:b6:9b:74:b7: 1c:c1:3a:0d:57:74:9f:f5:52:09:ac:c1:b5:55:e7: 18:c2:9d:99:e3:cf:67:5d:2b:63:04:55:cf:97:0d: f5:1b:3c:7e:4a:63:28:0e:68:50:a3:ae:4e:5c:1b: b2:b7:e0:5e:56:d1:78:63:98:63:eb:c9:ba:f7:72: 6b:28:dc:d6:6c:62:0e:c0:2b:c4:0e:52:30:3f:d0: 98:a6:f6:a2:19:50:9d:cc:2d:f1:86:5e:e3:f7:63: 37:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:06:71:9A:D2:CE:59:09:B6:24:4C:D3:B7:CA:3E:5B:5E:92:DA:3F X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:43:a6:84:c6:e2:00:1b:ee:76:de:d5:75:ab:58:ad:fc:91: 5c:1c:0b:f4:6c:84:4a:a1:d1:ad:77:34:19:a6:f9:a9:40:97: 75:ca:17:fd:71:18:31:aa:06:34:e4:22:28:14:e5:d5:df:bd: e2:0b:e0:07:70:3d:71:64:e3:0b:81:d4:c2:c7:d2:db:48:12: 91:7a:3e:2d:06:39:6e:1a:f5:bb:ad:7d:fa:95:56:7f:ca:d9: ae:6d:27:c0:80:72:11:32:3b:09:a4:b9:8b:5d:7e:b2:1a:27: 10:b5:ef:df:98:60:03:e3:0c:c0:02:16:86:5b:82:35:a4:f0: ad:f3:0e:c3:d4:7f:7e:c5:9e:d0:ab:20:61:3d:d5:68:9d:3d: e2:19:a4:dd:20:26:29:fa:32:f2:01:53:f1:71:21:e8:54:1c: 46:fc:f2:8c:3c:72:12:5e:2b:18:4d:67:71:90:55:a6:d1:64: 91:cc:09:5d:cf:d8:55:db:e3:77:13:04:d1:70:ad:d4:6c:0e: 94:1e:2f:bc:7c:c1:d5:8e:27:73:48:18:e9:cc:c4:2d:3e:5a: 5f:af:ad:a0:14:b1:a0:26:6b:e4:88:18:3c:94:a1:0e:fe:43: f7:d8:1a:c5:04:7b:2b:de:a2:04:dd:6c:12:be:0f:81:03:e6: ca:26:31:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUxMDE4MTkyMDA2WhcNMjUxMDI1MTkyMDA2WjAYMRYwFAYD VQQDEw02OGYzZTg2Ny00ZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWFhfEFFBtcyYm/7fCIw9EBSfcLVOD5CnsrnZ6y3Uq2DoqCHud53PLl8yew3 sZ4PLDclUfMh5D4rfwNX71kPM6mCHcKxuqUfK1FbznYd13dnIUecE9XZXaXViVhG j0g7clcmPuElneR1C7ijY4VsP7pm5mO4+6gM9jmJAjdAsk+Y1bNBGNkYF4/l7Ndy 38rlyhKGLq/z/eOxznaZMGyaqLabdLccwToNV3Sf9VIJrMG1VecYwp2Z489nXStj BFXPlw31Gzx+SmMoDmhQo65OXBuyt+BeVtF4Y5hj68m693JrKNzWbGIOwCvEDlIw P9CYpvaiGVCdzC3xhl7j92M32QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0GcZrS zlkJtiRM07fKPltekto/MB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVQ6aExuIAG+523tV1q1it/JFcHAv0bIRKodGtdzQZpvmpQJd1yhf9 cRgxqgY05CIoFOXV373iC+AHcD1xZOMLgdTCx9LbSBKRej4tBjluGvW7rX36lVZ/ ytmubSfAgHIRMjsJpLmLXX6yGicQte/fmGAD4wzAAhaGW4I1pPCt8w7D1H9+xZ7Q qyBhPdVonT3iGaTdICYp+jLyAVPxcSHoVBxG/PKMPHISXisYTWdxkFWm0WSRzAld z9hV2+N3EwTRcK3UbA6UHi+8fMHVjidzSBjpzMQtPlpfr62gFLGgJmvkiBg8lKEO /kP32BrFBHsr3qIE3WwSvg+BA+bKJjFT -----END CERTIFICATE-----Generated at Mon Oct 20 12:42:04 2025 by rpki-client