$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: aCyQlckM8jjOdxUKj0IGg0RVAvw6dlm20J2FS4lyQTY= Subject key identifier: 6F:6C:59:4A:C6:58:ED:E6:08:D2:8F:97:2C:8B:90:04:35:FA:D9:80 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 14ED Signing time: Fri 22 Aug 2025 18:43:27 +0000 Manifest this update: Fri 22 Aug 2025 18:43:26 +0000 Manifest next update: Fri 29 Aug 2025 18:43:26 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: Te9g5BIGx081vUfrU0RMkI9FOFXPjqVspAkLGPVCJ98=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2236 (0x8bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Aug 22 18:43:26 2025 GMT Not After : Aug 29 18:43:26 2025 GMT Subject: CN=68a8ba4e-7238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:fc:0c:ee:75:03:5d:af:6f:33:5c:44:65:70: c8:b4:da:a2:fa:82:83:63:22:c1:72:fd:0e:c0:9a: 7d:6e:88:e9:f1:79:86:16:c8:1d:78:28:07:62:bb: 20:ef:04:5b:01:1a:67:ab:19:aa:57:12:32:f9:d5: 84:90:a6:1a:62:dc:d7:4f:f7:64:38:f4:cb:f4:b5: 6e:b3:54:6a:68:3d:ac:a5:7b:d1:5c:17:9e:c7:37: 16:f1:1a:89:9b:da:b3:e6:4a:a1:c5:09:65:3c:0b: a6:a2:09:1c:0f:64:cd:80:e8:9d:04:7c:78:2c:3c: c7:7f:13:b0:7f:77:42:21:63:ce:15:16:d6:ac:c8: dd:9c:a2:e4:4f:c9:5d:51:71:30:32:ea:13:33:6c: 9e:d6:90:b7:7f:73:d5:9d:e7:cb:6b:eb:e6:25:b5: 31:a2:60:51:71:f8:80:77:99:92:bc:df:08:a2:70: f6:0f:9a:ca:40:49:3f:c1:10:de:df:36:63:27:28: 50:61:f7:d2:00:ab:f9:60:a6:ed:4a:88:38:b6:26: 56:b7:e9:f8:61:e9:67:59:14:50:02:17:19:a7:2f: e1:75:c7:00:94:41:0c:a3:b3:d3:fe:07:90:12:06: 15:ae:0c:d4:82:ec:98:e0:a5:43:d9:99:0f:ad:ef: c9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:6C:59:4A:C6:58:ED:E6:08:D2:8F:97:2C:8B:90:04:35:FA:D9:80 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:18:35:95:ec:49:64:21:8d:37:fa:60:95:35:16:69:b2:ca: a7:a1:f7:35:d4:82:00:20:27:b1:18:d4:78:6e:2d:94:16:f4: 61:11:81:3a:47:09:c7:5e:e9:db:91:72:fa:a4:e3:02:17:08: 42:a3:01:9d:1d:f3:d7:e0:a2:bb:5f:e9:43:4e:69:ae:3d:5c: 0e:dc:29:8b:66:37:df:ef:ff:c2:01:87:83:e7:b8:bc:10:1d: 51:ce:8f:2c:22:84:fd:41:ec:49:26:20:f1:78:ef:44:d8:b9: 94:fe:dd:51:51:0a:e8:f3:ae:15:8e:df:6d:ac:13:3d:e0:d8: 62:b3:a8:57:95:4a:2d:37:e4:95:e5:8e:11:48:09:de:f8:26: 66:0b:13:ad:22:c2:c7:2b:d1:ab:7a:2b:aa:69:e7:0f:18:c0: 0d:63:7a:61:1b:ba:f8:f0:70:a6:d9:65:0b:48:a9:b3:2c:33: b6:84:3e:2b:96:8e:ef:a3:a6:62:37:05:a1:e4:e1:51:80:53: 29:cb:9c:a9:89:3e:c8:49:d1:4e:4e:d4:74:af:54:76:a5:98: 0c:43:4a:5d:92:3d:97:a2:4d:54:96:9b:d8:61:cf:99:89:d7: 56:b3:d5:8c:8c:e5:e8:a5:cd:e2:37:a2:7f:12:fb:27:ea:65: a4:c8:ba:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwODIyMTg0MzI2WhcNMjUwODI5MTg0MzI2WjAYMRYwFAYD VQQDEw02OGE4YmE0ZS03MjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfwM7nUDXa9vM1xEZXDItNqi+oKDYyLBcv0OwJp9bojp8XmGFsgdeCgHYrsg 7wRbARpnqxmqVxIy+dWEkKYaYtzXT/dkOPTL9LVus1RqaD2spXvRXBeexzcW8RqJ m9qz5kqhxQllPAumogkcD2TNgOidBHx4LDzHfxOwf3dCIWPOFRbWrMjdnKLkT8ld UXEwMuoTM2ye1pC3f3PVnefLa+vmJbUxomBRcfiAd5mSvN8IonD2D5rKQEk/wRDe 3zZjJyhQYffSAKv5YKbtSog4tiZWt+n4YelnWRRQAhcZpy/hdccAlEEMo7PT/geQ EgYVrgzUguyY4KVD2ZkPre/JtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9sWUrG WO3mCNKPlyyLkAQ1+tmAMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADGDWV7ElkIY03+mCVNRZpssqnofc11IIAICexGNR4bi2UFvRhEYE6 RwnHXunbkXL6pOMCFwhCowGdHfPX4KK7X+lDTmmuPVwO3CmLZjff7//CAYeD57i8 EB1Rzo8sIoT9QexJJiDxeO9E2LmU/t1RUQro864Vjt9trBM94Nhis6hXlUotN+SV 5Y4RSAne+CZmCxOtIsLHK9GreiuqaecPGMANY3phG7r48HCm2WULSKmzLDO2hD4r lo7vo6ZiNwWh5OFRgFMpy5ypiT7ISdFOTtR0r1R2pZgMQ0pdkj2Xok1UlpvYYc+Z iddWs9WMjOXopc3iN6J/Evsn6mWkyLqp -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:29 2025 by rpki-client