$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: v3+4bTkf43U6FmaGLcB5VMVgy5xrzmiIRw7OqoBo0sU= Subject key identifier: 2F:DC:A2:04:28:0B:91:14:87:52:A2:E0:88:5B:EE:90:53:D4:33:82 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 102F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 1023 Signing time: Sat 18 Oct 2025 18:01:26 +0000 Manifest this update: Sat 18 Oct 2025 18:01:26 +0000 Manifest next update: Sat 25 Oct 2025 18:01:26 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: IXkI/bkHEBSLlR4c95JyI6z2ACXj8JXl6FSYmGuh0Tk=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4143 (0x102f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Oct 18 18:01:26 2025 GMT Not After : Oct 25 18:01:26 2025 GMT Subject: CN=68f3d5f6-f26b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:05:a2:22:cd:38:62:73:93:6d:62:18:1d:f4: 71:c4:20:11:9c:66:bc:48:52:5e:ed:9c:91:66:66: f6:35:d4:90:3e:42:7a:4e:c0:3e:65:6e:a3:1c:b2: 5d:ff:4b:25:14:a9:96:77:a4:f7:20:6f:b8:b8:f4: a6:ce:79:13:7f:b9:27:ba:79:b6:4a:13:d7:56:cd: 42:35:c3:86:75:a2:c8:85:76:3e:56:c1:0d:07:78: 01:08:fa:d6:d1:7d:c7:32:73:c6:7b:36:bb:d6:f9: 5f:f9:43:94:2e:44:b1:68:5d:c7:b0:b2:c1:dd:ec: 48:2a:8c:57:c1:82:f2:32:0f:e1:cc:f4:d7:3d:f0: ac:3a:0d:d9:2a:88:b7:df:d1:eb:c3:39:be:87:77: c4:87:c9:11:36:05:ed:f9:01:a2:6c:15:b3:e8:a7: d3:c7:4d:70:21:87:13:01:d9:f5:b6:ab:2d:3f:8c: e0:69:c5:61:1c:d2:8c:12:55:ef:8f:56:a5:30:3a: 40:f4:e0:d0:c5:24:55:15:77:8b:4e:24:34:89:8a: 74:c3:87:52:38:a0:54:ee:ee:54:75:db:19:7e:df: c7:f6:0a:7e:15:a0:0d:f2:4e:16:32:63:73:11:33: 0e:1a:0d:24:66:c4:1f:e9:8d:f6:3f:0e:73:eb:79: 6f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DC:A2:04:28:0B:91:14:87:52:A2:E0:88:5B:EE:90:53:D4:33:82 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:3c:5b:ed:10:75:ab:12:c3:89:18:ac:fe:ce:ef:e8:9c:2b: 3d:ae:15:57:7d:8b:6d:81:6d:5e:1c:08:b7:af:e0:85:eb:81: dc:19:05:f8:ea:b3:22:9b:c3:96:c7:d5:6c:96:5f:8d:77:fa: ef:46:17:55:3f:58:ff:c3:f5:e9:f6:4f:42:25:bf:f5:a6:4d: 8b:7a:b9:07:60:11:06:20:60:9e:fb:e4:f2:1b:5e:d4:1f:fa: 87:86:55:36:ee:9e:15:44:8e:53:d6:a5:68:01:db:b7:22:bf: a3:6d:69:a5:71:26:b6:d0:a8:00:18:e9:32:68:a3:6a:65:57: 45:fa:7d:50:c7:af:df:8e:88:b1:62:b4:92:ef:fe:93:ef:5f: c1:bd:62:37:65:d3:e1:4a:5f:a8:d5:3d:17:23:6b:1c:f7:5c: 25:ed:ab:8d:ad:51:2f:c0:83:d1:06:09:45:f5:3c:07:64:bb: 5f:c8:2b:77:41:30:38:d0:25:e8:7e:a6:3c:e5:1b:20:6b:99: e5:6c:ff:23:21:bd:8c:f5:f8:2a:0f:3a:63:3d:32:44:15:67: 1e:2f:44:8d:07:c9:4d:9c:41:7c:14:2a:b6:6b:0b:e0:1f:84: 0e:50:33:95:86:91:66:88:8f:25:74:3b:67:36:3e:60:ae:7e: 68:65:8e:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUxMDE4MTgwMTI2WhcNMjUxMDI1MTgwMTI2WjAYMRYwFAYD VQQDEw02OGYzZDVmNi1mMjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wWiIs04YnOTbWIYHfRxxCARnGa8SFJe7ZyRZmb2NdSQPkJ6TsA+ZW6jHLJd /0slFKmWd6T3IG+4uPSmznkTf7knunm2ShPXVs1CNcOGdaLIhXY+VsENB3gBCPrW 0X3HMnPGeza71vlf+UOULkSxaF3HsLLB3exIKoxXwYLyMg/hzPTXPfCsOg3ZKoi3 39Hrwzm+h3fEh8kRNgXt+QGibBWz6KfTx01wIYcTAdn1tqstP4zgacVhHNKMElXv j1alMDpA9ODQxSRVFXeLTiQ0iYp0w4dSOKBU7u5UddsZft/H9gp+FaAN8k4WMmNz ETMOGg0kZsQf6Y32Pw5z63lvbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/cogQo C5EUh1Ki4Ihb7pBT1DOCMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6PFvtEHWrEsOJGKz+zu/onCs9rhVXfYttgW1eHAi3r+CF64HcGQX4 6rMim8OWx9Vsll+Nd/rvRhdVP1j/w/Xp9k9CJb/1pk2LerkHYBEGIGCe++TyG17U H/qHhlU27p4VRI5T1qVoAdu3Ir+jbWmlcSa20KgAGOkyaKNqZVdF+n1Qx6/fjoix YrSS7/6T71/BvWI3ZdPhSl+o1T0XI2sc91wl7auNrVEvwIPRBglF9TwHZLtfyCt3 QTA40CXofqY85Rsga5nlbP8jIb2M9fgqDzpjPTJEFWceL0SNB8lNnEF8FCq2awvg H4QOUDOVhpFmiI8ldDtnNj5grn5oZY4s -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:19 2025 by rpki-client