$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: 7T+yKKrJ17tNULkig0irFqKTt85S8WaE2MP2yJLQtLk= Subject key identifier: 7D:CD:6D:66:79:38:9E:66:B7:3D:DE:C9:4B:B4:CD:61:78:43:6A:67 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 0FE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 0FD4 Signing time: Wed 14 May 2025 17:36:59 +0000 Manifest this update: Wed 14 May 2025 17:36:58 +0000 Manifest next update: Wed 21 May 2025 17:36:58 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: gkcR1xMoyv5EOqQl5pUxzdeGIxNYXdvDAJjigM4nvBE=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4064 (0xfe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: May 14 17:36:58 2025 GMT Not After : May 21 17:36:58 2025 GMT Subject: CN=6824d4bb-157c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e6:0b:13:b1:1f:f4:23:05:36:db:27:dc:15: 8d:1c:7c:82:75:50:72:1a:d4:f1:cc:e2:c5:5e:f4: b5:0f:bb:dc:3e:b8:26:9d:79:94:bd:cf:5c:37:db: ef:57:6f:ca:20:aa:29:01:89:e3:e0:b8:ec:3f:2b: ba:c8:65:4a:9d:9f:d5:c0:3d:1c:31:fa:d3:25:9c: 02:8d:94:d9:e1:ea:16:7e:d7:31:f2:0e:7a:7f:c3: 8f:8d:da:33:e8:1d:2e:e6:42:c3:5a:95:cc:f9:a8: 34:fd:d3:b5:51:1b:36:f9:7c:61:b2:cd:27:7a:5c: 09:cb:a6:42:19:07:cf:ef:fa:23:66:c1:6c:ec:aa: dc:47:2b:0d:04:d3:0b:96:cd:ec:05:fb:97:31:f0: b7:45:a1:fe:10:cc:ce:f2:cf:c5:ff:1e:41:7f:d2: 93:11:33:f8:54:ec:73:98:a8:06:2d:01:27:1c:ab: be:67:62:44:07:68:58:3f:4d:67:db:91:ca:01:36: 23:5b:62:eb:39:80:d6:f0:70:a3:dd:2d:57:69:fc: cb:1c:49:00:43:ab:d2:aa:9c:2d:f0:a8:c6:ce:12: 67:24:f2:bc:48:d7:af:58:eb:af:e5:5d:ec:60:c4: 31:54:af:f8:a0:65:aa:6c:38:b4:54:69:33:4d:25: f2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CD:6D:66:79:38:9E:66:B7:3D:DE:C9:4B:B4:CD:61:78:43:6A:67 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:f6:10:83:fa:70:fd:7c:f1:b4:0e:32:e0:a5:9e:32:f9:70: 5f:57:65:12:5a:ca:95:92:65:73:6d:2d:28:d4:e7:22:d5:93: c2:c9:d2:b8:35:57:d5:4c:ea:76:3c:68:ca:69:fa:99:be:da: 18:5f:ba:96:3f:80:a8:2a:3a:db:8d:aa:d4:ac:b0:0d:3c:05: c5:fa:fc:cc:7d:b6:7e:6e:52:7e:02:a7:d0:7f:83:b8:00:85: ef:41:7b:fb:40:9b:6c:ee:c1:4c:18:20:a4:6c:18:c6:43:bd: 5c:94:25:bd:5e:bb:8f:4c:f7:20:69:2b:22:b2:d7:24:59:37: 4d:a7:63:d5:ef:fd:07:e7:62:82:9e:09:7f:1a:b6:28:bf:c0: 28:e7:51:7e:81:4d:10:dd:85:72:6d:8d:3f:ef:f8:d1:c2:54: e1:47:09:9d:97:bf:98:20:3a:d5:46:a5:4b:3b:70:cf:72:d0: 3b:12:2a:15:21:f2:64:92:07:de:e4:30:50:29:68:71:a3:87: 3f:15:6c:76:d4:00:fc:1f:81:f4:4e:5e:29:63:b6:2f:1f:66: d3:d1:f8:19:43:be:55:bb:fd:73:74:da:fc:ad:4e:a9:58:e5: 84:b8:5a:a6:c8:9b:df:e3:36:15:8d:9e:16:32:92:dc:d6:b4: 9e:1f:45:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwNTE0MTczNjU4WhcNMjUwNTIxMTczNjU4WjAYMRYwFAYD VQQDEw02ODI0ZDRiYi0xNTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OYLE7Ef9CMFNtsn3BWNHHyCdVByGtTxzOLFXvS1D7vcPrgmnXmUvc9cN9vv V2/KIKopAYnj4LjsPyu6yGVKnZ/VwD0cMfrTJZwCjZTZ4eoWftcx8g56f8OPjdoz 6B0u5kLDWpXM+ag0/dO1URs2+Xxhss0nelwJy6ZCGQfP7/ojZsFs7KrcRysNBNML ls3sBfuXMfC3RaH+EMzO8s/F/x5Bf9KTETP4VOxzmKgGLQEnHKu+Z2JEB2hYP01n 25HKATYjW2LrOYDW8HCj3S1XafzLHEkAQ6vSqpwt8KjGzhJnJPK8SNevWOuv5V3s YMQxVK/4oGWqbDi0VGkzTSXywwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3NbWZ5 OJ5mtz3eyUu0zWF4Q2pnMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy9hCD+nD9fPG0DjLgpZ4y+XBfV2USWsqVkmVzbS0o1Oci1ZPCydK4 NVfVTOp2PGjKafqZvtoYX7qWP4CoKjrbjarUrLANPAXF+vzMfbZ+blJ+AqfQf4O4 AIXvQXv7QJts7sFMGCCkbBjGQ71clCW9XruPTPcgaSsistckWTdNp2PV7/0H52KC ngl/GrYov8Ao51F+gU0Q3YVybY0/7/jRwlThRwmdl7+YIDrVRqVLO3DPctA7EioV IfJkkgfe5DBQKWhxo4c/FWx21AD8H4H0Tl4pY7YvH2bT0fgZQ75Vu/1zdNr8rU6p WOWEuFqmyJvf4zYVjZ4WMpLc1rSeH0Uc -----END CERTIFICATE-----Generated at Thu May 15 03:39:51 2025 by rpki-client