$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: 8JOnzHQIFpt259nw865SfqGAXJ/z/gPPzMC78MeFGCw= Subject key identifier: C2:2C:2E:47:0A:FC:88:A5:B2:05:B3:FC:80:AF:B0:6D:4A:0D:1C:B4 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 14B9 Signing time: Wed 02 Jul 2025 18:52:16 +0000 Manifest this update: Wed 02 Jul 2025 18:52:16 +0000 Manifest next update: Wed 09 Jul 2025 18:52:16 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: W+LjJ9Kh9VeZLUYeQc+K/3NxCa4gnLnpJiE47JlCIW8=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:52:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Jul 2 18:52:16 2025 GMT Not After : Jul 9 18:52:16 2025 GMT Subject: CN=68657fe0-761b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b6:15:b5:97:50:53:4c:e5:71:b9:da:b4:b8: 47:b7:52:ce:14:c4:87:2c:14:10:39:ac:d8:3c:ca: b5:8b:59:f5:2a:11:26:64:80:0c:ac:9c:36:b7:96: 95:76:fe:70:31:91:64:da:8a:30:97:1f:70:4d:63: b8:66:8d:70:63:b4:44:57:e5:7b:77:5d:b9:58:e7: 7b:05:36:be:16:93:3e:1f:31:ca:ab:5b:22:ee:cc: eb:5c:93:7c:bd:f3:63:fd:d9:e1:4f:9b:cb:43:d1: dc:37:a7:e1:c6:1f:14:f8:de:45:1f:53:0e:8b:7f: cf:cc:0d:b2:75:b6:00:1e:b3:42:ad:83:b7:07:cd: 0e:44:d2:92:1f:e9:c0:ee:10:2d:d5:ca:34:0f:ca: 56:51:52:10:44:d7:01:ab:95:7d:03:79:42:00:db: e5:41:1a:ce:2d:c6:c1:53:4a:1d:76:08:91:ef:87: 0d:0a:f4:4c:73:cf:1f:0c:2d:35:13:0e:c7:6c:6c: d7:48:92:64:64:68:82:4c:bd:c4:bb:b3:26:e1:f6: b0:c2:be:41:4e:89:7a:ba:68:31:3d:4a:63:ea:d3: 22:bd:01:30:a9:9f:38:ae:0c:20:10:b1:6a:4c:ef: a3:e1:1d:a5:9a:2c:4b:3e:a2:93:7a:c3:ff:e5:67: 76:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2C:2E:47:0A:FC:88:A5:B2:05:B3:FC:80:AF:B0:6D:4A:0D:1C:B4 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:76:6a:13:6f:0e:f7:7d:66:98:6e:fc:36:7f:98:1a:18:b2: d3:40:48:ff:2d:7e:39:46:6f:eb:56:8e:33:56:38:85:e6:86: 4a:c5:d5:3c:32:eb:df:58:df:af:88:bd:25:ab:90:0f:38:f3: 16:fd:ac:13:4c:68:fa:07:e4:71:23:22:3b:36:ed:06:a2:33: c8:ab:a6:0a:77:3c:ed:7e:fd:59:af:81:6e:95:d8:e7:7e:7e: e5:d7:35:14:87:8f:0f:af:8c:e1:55:29:ac:86:e0:a9:8a:66: 79:6a:fc:60:15:25:f0:9b:29:b2:a2:8e:d9:62:60:f2:05:d2: ac:18:ae:b8:dd:2d:1c:54:29:8f:95:f0:f3:99:9c:0c:77:33: d7:c9:1f:65:2c:2f:fc:4a:84:50:a5:20:ac:cb:4b:16:ee:28: 16:40:e2:0b:3f:78:29:63:44:69:49:1f:ba:7b:7d:0a:59:4d: 70:9a:43:c1:e0:3a:1b:39:1e:02:00:18:16:f9:79:80:33:e5: 85:36:5a:b4:12:e5:7d:a5:74:2c:86:2f:b1:35:2e:4e:e7:3d: 6f:c9:5b:8c:37:33:e3:ad:00:e3:d5:bd:41:7a:13:89:a8:3b: 42:92:c0:a5:d8:df:40:42:62:07:69:f1:e5:79:17:b5:d1:3c: 9a:fd:34:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwNzAyMTg1MjE2WhcNMjUwNzA5MTg1MjE2WjAYMRYwFAYD VQQDEw02ODY1N2ZlMC03NjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbYVtZdQU0zlcbnatLhHt1LOFMSHLBQQOazYPMq1i1n1KhEmZIAMrJw2t5aV dv5wMZFk2oowlx9wTWO4Zo1wY7REV+V7d125WOd7BTa+FpM+HzHKq1si7szrXJN8 vfNj/dnhT5vLQ9HcN6fhxh8U+N5FH1MOi3/PzA2ydbYAHrNCrYO3B80ORNKSH+nA 7hAt1co0D8pWUVIQRNcBq5V9A3lCANvlQRrOLcbBU0oddgiR74cNCvRMc88fDC01 Ew7HbGzXSJJkZGiCTL3Eu7Mm4fawwr5BTol6umgxPUpj6tMivQEwqZ84rgwgELFq TO+j4R2lmixLPqKTesP/5Wd23QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIsLkcK /IilsgWz/ICvsG1KDRy0MB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVdmoTbw73fWaYbvw2f5gaGLLTQEj/LX45Rm/rVo4zVjiF5oZKxdU8 MuvfWN+viL0lq5APOPMW/awTTGj6B+RxIyI7Nu0GojPIq6YKdzztfv1Zr4Fuldjn fn7l1zUUh48Pr4zhVSmshuCpimZ5avxgFSXwmymyoo7ZYmDyBdKsGK643S0cVCmP lfDzmZwMdzPXyR9lLC/8SoRQpSCsy0sW7igWQOILP3gpY0RpSR+6e30KWU1wmkPB 4DobOR4CABgW+XmAM+WFNlq0EuV9pXQshi+xNS5O5z1vyVuMNzPjrQDj1b1BehOJ qDtCksCl2N9AQmIHafHleRe10Tya/TTI -----END CERTIFICATE-----Generated at Thu Jul 3 05:21:32 2025 by rpki-client