$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: 1rbx/op8M5ttmaedMODF4g+h3YUwCcILX6MgBuR/OnQ= Subject key identifier: CF:AA:9D:C5:65:C2:38:BA:1C:8F:CE:0B:55:FE:6B:7D:60:78:99:88 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 0FEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 0FE3 Signing time: Sat 14 Jun 2025 17:24:59 +0000 Manifest this update: Sat 14 Jun 2025 17:24:58 +0000 Manifest next update: Sat 21 Jun 2025 17:24:58 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: +gIe45f4DgDB5+awDsSgny4Vq2vSVw5ypP1s8uWkFVA=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4079 (0xfef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Jun 14 17:24:58 2025 GMT Not After : Jun 21 17:24:58 2025 GMT Subject: CN=684db06a-50d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b2:e6:8a:61:cb:bf:01:e7:37:63:9f:47:b6: b0:52:4a:fe:44:1e:40:d6:c8:68:a3:f0:56:16:ba: d3:df:d2:cd:11:ed:bf:c7:f9:74:fb:0e:ab:eb:20: 11:5b:4c:18:c3:d2:61:d7:b7:94:30:9c:53:b2:ff: 34:f1:86:00:65:96:8c:7b:bc:c7:12:be:0d:52:a4: 19:e9:ba:87:ab:55:be:fe:5f:17:3a:d6:52:18:ed: c4:99:a4:0f:bf:4d:e0:b4:87:3b:89:f9:c1:9e:c9: 60:bd:1b:98:f8:0f:7e:b0:7b:86:cf:a9:2a:b5:fa: 8e:1c:e0:41:a5:8d:5b:7a:81:c5:1d:be:5a:b7:a8: 8b:5c:a1:1d:42:49:89:31:7a:c9:5a:b0:25:ee:44: c5:e5:16:3c:f1:c6:ea:06:d9:36:d9:fc:b1:cc:26: a8:4c:6b:98:06:cd:11:3e:0b:c2:cd:ec:f5:a2:46: 53:43:33:ee:e9:aa:a9:56:e6:32:bc:9f:16:cb:4e: d2:86:03:62:51:55:db:b3:d2:5e:81:a8:47:f9:7a: e1:31:6b:1d:cf:19:f7:6b:e3:bf:57:2a:45:f0:f6: 4d:01:56:51:38:3c:14:c9:dd:ec:76:77:f0:81:50: 19:11:64:2f:2f:e9:fb:72:f2:93:16:3e:e0:6f:96: 60:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AA:9D:C5:65:C2:38:BA:1C:8F:CE:0B:55:FE:6B:7D:60:78:99:88 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:8c:b6:43:b8:68:3c:53:bc:0e:8b:41:71:24:e5:12:9a:ab: 0c:37:44:58:59:47:72:bf:7c:d2:42:53:d8:dd:68:68:db:28: 78:4c:ef:9a:02:64:7f:83:28:43:e4:0d:1d:fb:86:51:46:62: 23:c0:c9:3c:cd:dc:d6:f0:7d:82:a4:51:02:12:9b:44:27:7c: e4:1b:40:3c:ca:27:ef:3b:ba:06:66:4c:6a:31:a2:17:8d:2a: 9d:98:d2:cd:4c:3e:36:7a:22:02:99:33:26:88:3b:78:aa:68: 34:2a:f4:78:ca:40:e0:c9:e3:d9:3f:28:58:8e:7d:4d:cd:4d: ae:a7:17:c1:77:8b:ae:63:50:37:24:18:62:7e:47:d8:13:d0: e2:c9:f4:70:d5:d5:7b:a4:e8:24:d2:7a:39:2d:b9:89:1b:a5: eb:e8:68:9d:76:96:8d:4d:e3:36:6e:a8:1e:d9:e0:59:06:0f: 34:dc:c8:36:c4:93:f5:ce:c4:27:ec:51:e8:ac:22:5d:38:64: 8d:f9:ca:b9:7e:6e:04:fc:f9:b6:e7:d9:8c:46:ab:91:6e:c2: f9:83:41:c3:d7:5e:b2:6a:b3:dc:61:7e:20:63:97:0d:16:f5: ce:73:bd:24:fc:8f:b7:57:53:c8:79:26:6b:c2:82:63:84:ce: 4c:82:8c:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwNjE0MTcyNDU4WhcNMjUwNjIxMTcyNDU4WjAYMRYwFAYD VQQDEw02ODRkYjA2YS01MGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3bLmimHLvwHnN2OfR7awUkr+RB5A1shoo/BWFrrT39LNEe2/x/l0+w6r6yAR W0wYw9Jh17eUMJxTsv808YYAZZaMe7zHEr4NUqQZ6bqHq1W+/l8XOtZSGO3EmaQP v03gtIc7ifnBnslgvRuY+A9+sHuGz6kqtfqOHOBBpY1beoHFHb5at6iLXKEdQkmJ MXrJWrAl7kTF5RY88cbqBtk22fyxzCaoTGuYBs0RPgvCzez1okZTQzPu6aqpVuYy vJ8Wy07ShgNiUVXbs9JegahH+XrhMWsdzxn3a+O/VypF8PZNAVZRODwUyd3sdnfw gVAZEWQvL+n7cvKTFj7gb5ZgBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+qncVl wji6HI/OC1X+a31geJmIMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkjLZDuGg8U7wOi0FxJOUSmqsMN0RYWUdyv3zSQlPY3Who2yh4TO+a AmR/gyhD5A0d+4ZRRmIjwMk8zdzW8H2CpFECEptEJ3zkG0A8yifvO7oGZkxqMaIX jSqdmNLNTD42eiICmTMmiDt4qmg0KvR4ykDgyePZPyhYjn1NzU2upxfBd4uuY1A3 JBhifkfYE9DiyfRw1dV7pOgk0no5LbmJG6Xr6GiddpaNTeM2bqge2eBZBg803Mg2 xJP1zsQn7FHorCJdOGSN+cq5fm4E/Pm259mMRquRbsL5g0HD116yarPcYX4gY5cN FvXOc70k/I+3V1PIeSZrwoJjhM5MgowF -----END CERTIFICATE-----Generated at Sun Jun 15 09:52:06 2025 by rpki-client