$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: vH/T703vBnN+axiNo7rkeT97qDd4k2lyK+mDxKFcHn8= Subject key identifier: D7:05:F1:18:B4:56:68:ED:A3:6A:08:18:06:D2:2B:09:D2:BF:EB:16 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 1012 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 1006 Signing time: Fri 22 Aug 2025 17:35:20 +0000 Manifest this update: Fri 22 Aug 2025 17:35:20 +0000 Manifest next update: Fri 29 Aug 2025 17:35:20 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: S6WpPvG0day7XPlrYKsnY4Spo7i2r3OhcfFUjkDElzg=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:35:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4114 (0x1012) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Aug 22 17:35:20 2025 GMT Not After : Aug 29 17:35:20 2025 GMT Subject: CN=68a8aa58-c398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:49:da:ab:b1:fa:a5:de:8f:4f:d5:fc:71:3a: df:f9:16:2b:35:bb:76:c2:14:04:7d:77:8a:9f:ef: 1f:12:30:b1:7d:57:d5:af:ab:04:8a:3d:e5:1d:90: 71:ca:c4:f8:9b:ec:de:4e:32:53:40:66:65:51:73: 1a:c2:d0:35:97:b3:5f:89:80:3d:5b:20:59:76:db: 28:41:99:a5:34:9d:fd:19:be:1d:f7:65:cc:4b:79: 19:6a:86:ba:bd:ed:6d:57:0b:7a:ab:a6:3d:11:fc: 0c:32:ac:02:25:5a:69:2c:c1:e3:fa:d4:d9:aa:94: 9d:1b:72:6b:d6:0a:8c:61:6a:2e:0c:9c:1e:3b:74: ab:ae:3a:97:90:c2:7d:7d:4e:20:fe:69:f7:a2:9f: df:a4:37:49:1b:df:d7:f3:63:8c:0b:1e:b7:9a:be: 9a:45:9b:cb:b2:6a:58:0c:a2:64:9e:73:10:18:2c: ec:42:c4:46:1c:37:2f:0b:34:0c:60:49:63:cf:0e: 7b:3c:ec:24:91:eb:61:88:e6:75:49:1d:71:73:80: 29:7c:89:c1:5b:5d:94:2e:02:71:31:50:6c:36:d7: 54:13:68:73:38:d8:89:1a:9d:f7:31:8f:99:dc:17: 85:3c:b8:51:39:98:81:a2:72:0b:ba:c8:f4:37:24: 29:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:05:F1:18:B4:56:68:ED:A3:6A:08:18:06:D2:2B:09:D2:BF:EB:16 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:1a:23:96:5d:f5:d8:e5:6a:0a:96:f8:d1:2d:ea:da:2b:fd: 6b:b1:70:1b:99:14:46:0b:66:7a:48:c5:51:b9:c0:e6:79:22: 9b:fd:9e:6d:a3:8c:fb:1e:85:1e:8c:9e:e9:c8:0d:0c:b2:e8: 42:e9:b1:e4:a6:a2:77:59:3a:7e:dc:9f:90:cb:2a:bf:8d:b3: 8c:16:4c:e9:36:20:91:89:93:9f:8b:69:53:08:f7:6a:31:8f: 9f:ae:72:78:ce:dc:47:df:cc:66:66:aa:2a:aa:25:8c:87:f5: b7:0e:4d:93:30:87:7e:0c:da:0c:aa:01:bc:50:d3:9f:b3:9a: 5c:c3:4c:7b:cc:74:5d:23:22:48:28:c9:be:d3:da:03:1c:0d: 58:a3:94:0f:f6:ad:05:9b:61:7e:f1:bb:53:7f:41:21:7a:d8: f0:45:c8:72:10:0e:f2:42:3e:63:8e:e7:1e:68:d2:3e:80:32: d2:c2:42:d6:3f:e4:3d:7a:b3:0a:81:34:b1:81:74:ff:86:b2: 7d:fe:29:00:aa:d4:df:bf:69:0f:41:cb:ce:a7:41:ff:9d:9f: 87:d9:95:35:07:fc:d1:57:24:6f:fb:dc:fc:8c:06:86:ca:8c: 56:c0:d5:80:26:9b:98:2c:3a:57:ba:4e:d0:3c:f0:5c:d7:2d: 7f:d4:0c:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwODIyMTczNTIwWhcNMjUwODI5MTczNTIwWjAYMRYwFAYD VQQDEw02OGE4YWE1OC1jMzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Unaq7H6pd6PT9X8cTrf+RYrNbt2whQEfXeKn+8fEjCxfVfVr6sEij3lHZBx ysT4m+zeTjJTQGZlUXMawtA1l7NfiYA9WyBZdtsoQZmlNJ39Gb4d92XMS3kZaoa6 ve1tVwt6q6Y9EfwMMqwCJVppLMHj+tTZqpSdG3Jr1gqMYWouDJweO3SrrjqXkMJ9 fU4g/mn3op/fpDdJG9/X82OMCx63mr6aRZvLsmpYDKJknnMQGCzsQsRGHDcvCzQM YEljzw57POwkkethiOZ1SR1xc4ApfInBW12ULgJxMVBsNtdUE2hzONiJGp33MY+Z 3BeFPLhROZiBonILusj0NyQpaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcF8Ri0 Vmjto2oIGAbSKwnSv+sWMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFGiOWXfXY5WoKlvjRLeraK/1rsXAbmRRGC2Z6SMVRucDmeSKb/Z5t o4z7HoUejJ7pyA0MsuhC6bHkpqJ3WTp+3J+Qyyq/jbOMFkzpNiCRiZOfi2lTCPdq MY+frnJ4ztxH38xmZqoqqiWMh/W3Dk2TMId+DNoMqgG8UNOfs5pcw0x7zHRdIyJI KMm+09oDHA1Yo5QP9q0Fm2F+8btTf0EhetjwRchyEA7yQj5jjuceaNI+gDLSwkLW P+Q9erMKgTSxgXT/hrJ9/ikAqtTfv2kPQcvOp0H/nZ+H2ZU1B/zRVyRv+9z8jAaG yoxWwNWAJpuYLDpXuk7QPPBc1y1/1Az1 -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:55 2025 by rpki-client