$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: DdecJYIkdEIIh4Xx6P6DfwHJmsGcb8wCwoB1x9uBm0I= Subject key identifier: CD:51:6E:47:4E:CE:E2:E6:2C:48:35:6A:C3:16:E1:41:30:45:BA:D5 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 0FD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 0FCA Signing time: Thu 24 Apr 2025 17:29:51 +0000 Manifest this update: Thu 24 Apr 2025 17:29:50 +0000 Manifest next update: Thu 01 May 2025 17:29:50 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: gQ+VI8k3857g06gsS+WeyO7p2xT94C/0CrT1RgVeTDE=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4054 (0xfd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Apr 24 17:29:50 2025 GMT Not After : May 1 17:29:50 2025 GMT Subject: CN=680a750e-2f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:89:e1:6d:24:1a:fa:7c:06:22:96:85:cd:27: 13:a3:c1:f4:c7:e4:b4:f1:d9:cc:bb:8f:45:ff:eb: 45:96:38:69:db:fb:8e:78:c5:5c:4e:8b:0e:b5:ca: 66:6d:b0:1c:c4:cd:de:41:19:43:a4:1e:e9:72:67: c6:15:84:19:e5:9b:aa:57:29:f1:9e:3e:d3:08:8c: c0:fe:f2:2e:97:ee:24:f7:74:47:ab:32:d6:0f:17: 24:54:fa:86:b2:77:6e:6e:be:62:15:4c:9f:c3:ed: e2:64:e9:61:f3:45:1d:9a:63:57:7e:6b:3a:ee:27: ea:97:8c:20:25:f9:be:3a:03:b1:ce:1d:04:b8:c4: dc:12:23:33:75:e7:4f:9b:23:1b:78:79:34:46:fb: b9:7e:0c:5e:91:12:25:fa:a9:61:d9:29:55:c8:43: 4f:68:c3:40:5f:d7:7b:4e:0b:01:73:7e:ed:15:7a: 63:3c:ed:b4:2c:18:45:f9:e0:16:54:b1:ee:c3:d1: 37:89:d5:9a:d9:d2:82:21:51:79:fa:29:a0:88:d2: 8b:ad:24:16:f0:da:d4:b6:a4:9a:74:0b:b1:04:3c: 18:58:21:99:8c:ee:9e:8f:7c:24:44:62:8d:36:08: ca:51:c4:68:2a:8f:04:e7:59:0b:fd:76:c2:99:ea: 2d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:51:6E:47:4E:CE:E2:E6:2C:48:35:6A:C3:16:E1:41:30:45:BA:D5 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c2:31:75:4a:7c:95:2c:af:b7:c5:25:3d:ea:3d:8a:bf:78: ad:2a:cb:21:ad:72:af:e4:24:d5:fd:70:6f:84:be:2e:50:1b: b7:31:da:ee:f5:40:fe:87:6c:ba:e9:4c:08:21:5b:ed:ac:8d: 38:bf:b0:47:d2:12:21:7d:12:b8:fe:48:53:5c:5e:36:5f:a8: b2:05:5e:a7:aa:70:5d:c1:1d:fd:a4:60:52:d7:8a:e1:89:a3: 92:49:2f:90:85:3f:09:be:29:00:b4:c3:dd:ad:b7:82:d0:5d: 7a:ce:4f:69:b9:c1:22:83:9e:8f:4e:ae:63:4a:a3:7b:3a:00: ef:44:c9:5e:79:ca:e1:17:95:1e:c1:93:78:7e:dd:0b:55:3a: 20:e5:73:22:00:d0:e8:d5:1d:d3:dd:05:f8:b8:53:c7:5a:9c: 75:ef:24:a6:dc:da:83:a3:d1:ab:ca:af:c7:eb:fc:f2:4f:18: b5:50:f8:9b:0f:e4:f7:c0:6b:fc:93:5e:91:54:c8:94:51:09: eb:f4:55:9c:32:f3:d9:cd:c4:4f:17:e5:a0:4d:b0:1e:03:8e: 12:83:78:42:94:68:f3:de:cc:55:d7:f2:d2:56:a5:c5:d1:72: 9c:82:53:f6:f1:e7:6c:f7:1d:32:d2:d4:02:52:6a:c0:c9:d9: 6d:ff:16:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwNDI0MTcyOTUwWhcNMjUwNTAxMTcyOTUwWjAYMRYwFAYD VQQDEw02ODBhNzUwZS0yZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YnhbSQa+nwGIpaFzScTo8H0x+S08dnMu49F/+tFljhp2/uOeMVcTosOtcpm bbAcxM3eQRlDpB7pcmfGFYQZ5ZuqVynxnj7TCIzA/vIul+4k93RHqzLWDxckVPqG sndubr5iFUyfw+3iZOlh80UdmmNXfms67ifql4wgJfm+OgOxzh0EuMTcEiMzdedP myMbeHk0Rvu5fgxekRIl+qlh2SlVyENPaMNAX9d7TgsBc37tFXpjPO20LBhF+eAW VLHuw9E3idWa2dKCIVF5+imgiNKLrSQW8NrUtqSadAuxBDwYWCGZjO6ej3wkRGKN NgjKUcRoKo8E51kL/XbCmeotNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1RbkdO zuLmLEg1asMW4UEwRbrVMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWwjF1SnyVLK+3xSU96j2Kv3itKsshrXKv5CTV/XBvhL4uUBu3Mdru 9UD+h2y66UwIIVvtrI04v7BH0hIhfRK4/khTXF42X6iyBV6nqnBdwR39pGBS14rh iaOSSS+QhT8JvikAtMPdrbeC0F16zk9pucEig56PTq5jSqN7OgDvRMleecrhF5Ue wZN4ft0LVTog5XMiANDo1R3T3QX4uFPHWpx17ySm3NqDo9Gryq/H6/zyTxi1UPib D+T3wGv8k16RVMiUUQnr9FWcMvPZzcRPF+WgTbAeA44Sg3hClGjz3sxV1/LSVqXF 0XKcglP28eds9x0y0tQCUmrAydlt/xam -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:37 2025 by rpki-client