$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: qU90R59wmhqSK0G4rqKo4oJ1zEX7PfQZ2yP8LuoBZYs= Subject key identifier: AE:A8:C4:B9:86:30:8B:4B:B8:27:D5:F0:E2:78:76:BC:DC:04:49:22 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 0FF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 0FED Signing time: Fri 04 Jul 2025 17:46:42 +0000 Manifest this update: Fri 04 Jul 2025 17:46:42 +0000 Manifest next update: Fri 11 Jul 2025 17:46:42 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: TvFN9a6kQYc+anaRCtVPCM2SvXKRKbE283oMFaf8Ut4=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4089 (0xff9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Jul 4 17:46:42 2025 GMT Not After : Jul 11 17:46:42 2025 GMT Subject: CN=68681382-8aef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9f:4d:32:e1:e0:b8:42:b0:d7:2e:3d:16:f6: 35:7a:d2:61:fd:1b:6a:46:df:f1:f0:80:66:a2:4d: 45:07:2e:17:e7:75:fb:98:71:58:aa:71:9d:8b:7d: 07:78:6c:52:f6:2c:ab:29:b0:7c:6f:48:06:ee:f8: 55:af:cd:d5:1f:86:2c:9a:6a:de:4f:ba:99:44:3f: fa:2a:83:d9:af:e9:52:82:83:37:f7:11:85:c9:09: 17:64:ee:cb:a6:a1:35:25:d6:b4:7c:4a:bb:1c:21: ad:34:50:b3:8f:32:fb:aa:74:ba:bb:31:81:4f:dc: b2:d3:0c:c0:43:4c:c2:83:b0:e7:ae:36:9a:ce:5f: 4d:02:9d:b6:2a:ec:c7:05:e7:ae:fa:66:ad:d6:e1: 66:bd:0e:7a:5f:bd:79:4b:74:2d:4d:6d:50:2a:02: 6b:ae:7f:61:bd:f6:72:3f:60:72:44:39:a0:3a:0f: 5c:f5:27:79:7c:43:81:8b:fb:97:06:04:73:59:8e: 8a:88:bc:09:f7:aa:05:db:f3:03:1c:04:0e:fa:e0: 70:d4:79:94:f9:e4:9c:cb:f6:7f:c9:b9:83:25:fe: 6a:9c:8b:3b:e1:93:d9:44:ce:09:a1:e3:20:99:19: ed:a6:97:84:0a:11:1b:19:d6:6b:79:4a:bb:67:0c: f4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A8:C4:B9:86:30:8B:4B:B8:27:D5:F0:E2:78:76:BC:DC:04:49:22 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:3c:cc:e0:0a:2f:03:53:c0:e2:f9:3b:72:5c:6a:0d:bd:c0: 31:62:45:76:0f:37:0f:00:c6:8a:f3:88:61:78:2c:d5:ca:29: 1c:56:54:f4:7a:8f:af:be:27:3e:f9:61:f0:a1:67:c2:6c:e5: 73:be:f0:e6:40:75:f6:ca:f7:08:cc:86:c3:0c:95:e8:08:d0: ae:5c:fd:3b:11:cd:18:1b:35:c9:c0:aa:3e:f6:39:52:b9:28: d1:68:58:be:95:6a:54:b2:4a:24:b7:f3:5b:12:7e:fe:05:17: 02:04:32:59:bd:bf:83:73:03:4b:1f:38:b5:57:bd:7f:9c:bf: d9:17:2f:fc:ae:19:44:a8:8c:80:fb:74:17:5f:c4:67:91:c8: 2e:2f:7b:de:f2:9a:08:87:3f:2e:69:3f:df:21:96:22:3c:f2: 03:6c:6a:ba:12:d4:d4:b2:e2:24:13:59:a1:d6:af:05:ad:2e: e6:4f:43:9a:39:b5:d8:3b:22:55:a8:1f:3e:fb:77:54:a6:43: e2:49:5f:69:7d:c0:ce:1a:cc:9a:3e:c7:d0:63:0e:b1:d4:4a: f4:37:4f:1c:d2:cb:0d:59:b8:ae:90:8b:1e:8c:c2:3c:37:83: 7b:4c:39:26:3a:d3:c0:90:e8:54:57:70:7c:5f:0a:19:92:0b: 39:ff:11:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwNzA0MTc0NjQyWhcNMjUwNzExMTc0NjQyWjAYMRYwFAYD VQQDEw02ODY4MTM4Mi04YWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA459NMuHguEKw1y49FvY1etJh/RtqRt/x8IBmok1FBy4X53X7mHFYqnGdi30H eGxS9iyrKbB8b0gG7vhVr83VH4YsmmreT7qZRD/6KoPZr+lSgoM39xGFyQkXZO7L pqE1Jda0fEq7HCGtNFCzjzL7qnS6uzGBT9yy0wzAQ0zCg7Dnrjaazl9NAp22KuzH Beeu+mat1uFmvQ56X715S3QtTW1QKgJrrn9hvfZyP2ByRDmgOg9c9Sd5fEOBi/uX BgRzWY6KiLwJ96oF2/MDHAQO+uBw1HmU+eScy/Z/ybmDJf5qnIs74ZPZRM4JoeMg mRntppeEChEbGdZreUq7Zwz05QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6oxLmG MItLuCfV8OJ4drzcBEkiMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArPMzgCi8DU8Di+TtyXGoNvcAxYkV2DzcPAMaK84hheCzVyikcVlT0 eo+vvic++WHwoWfCbOVzvvDmQHX2yvcIzIbDDJXoCNCuXP07Ec0YGzXJwKo+9jlS uSjRaFi+lWpUskokt/NbEn7+BRcCBDJZvb+DcwNLHzi1V71/nL/ZFy/8rhlEqIyA +3QXX8RnkcguL3ve8poIhz8uaT/fIZYiPPIDbGq6EtTUsuIkE1mh1q8FrS7mT0Oa ObXYOyJVqB8++3dUpkPiSV9pfcDOGsyaPsfQYw6x1Er0N08c0ssNWbiukIsejMI8 N4N7TDkmOtPAkOhUV3B8XwoZkgs5/xGy -----END CERTIFICATE-----Generated at Sat Jul 5 14:52:27 2025 by rpki-client