$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: 2+alHDAhoB1KL4UPj+59haNkPNCex428pSS2UrpBzbs= Subject key identifier: 59:9D:11:20:92:2D:8E:A4:31:85:BB:3B:5F:7F:9B:D1:2A:FE:88:1B Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 100B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 0FFF Signing time: Fri 08 Aug 2025 17:40:00 +0000 Manifest this update: Fri 08 Aug 2025 17:40:00 +0000 Manifest next update: Fri 15 Aug 2025 17:40:00 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: /SsJ1WA/7oPFmwatjANHTM3jcg2kLK6f4jeofz1NUOw=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4107 (0x100b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Aug 8 17:40:00 2025 GMT Not After : Aug 15 17:40:00 2025 GMT Subject: CN=68963670-6089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c6:b9:e8:bf:55:6a:1c:aa:3a:d1:aa:77:61: f6:f7:5d:fb:fd:d0:39:e9:1f:56:b5:42:e2:80:55: 2b:25:4c:3c:e5:c4:83:3d:49:8a:b9:d7:6c:27:04: 21:25:30:d8:1a:8b:64:b5:be:e3:6e:4f:af:ad:38: fa:bf:6f:0f:10:c4:80:f8:f4:f4:37:ce:0f:37:ac: a0:ab:54:31:61:a7:94:6d:54:0a:f6:db:30:ed:f5: 6c:cb:c4:db:22:72:ea:a3:2d:96:4c:51:74:40:50: cf:56:45:21:3b:c6:18:67:08:0c:98:4e:46:5a:5f: 6c:f7:c5:c0:f9:29:ed:cb:73:92:59:c1:10:ac:48: 9a:a9:54:62:01:d5:af:c8:c0:45:31:6d:b9:b4:a0: 0c:75:ff:2a:19:57:f9:c8:3f:54:62:4f:3c:4c:93: b3:32:0b:e3:8a:9b:95:98:90:95:8f:53:88:ac:78: 9e:73:0c:0c:72:42:ce:c2:75:af:32:e8:41:dd:6a: 07:0b:73:f9:4f:67:79:d5:5f:c4:ed:06:8c:ac:1b: 2a:ab:b2:d0:8d:f7:b7:64:05:b9:ac:7e:02:37:a0: a3:06:fd:e4:6b:e7:80:7a:d7:6e:5c:30:60:e0:2f: 57:68:7a:0b:6e:33:67:b3:9b:c5:4e:7d:f3:f7:19: 56:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9D:11:20:92:2D:8E:A4:31:85:BB:3B:5F:7F:9B:D1:2A:FE:88:1B X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:a0:08:36:d1:77:07:c4:fb:47:39:15:c2:e3:09:8f:9f:4b: e2:e8:d4:e6:88:f7:ad:9f:87:3d:72:6c:d8:78:f7:56:dd:b4: 1b:d6:ae:da:f8:9e:e8:a7:e9:b6:83:68:6c:61:d8:6e:13:06: 8e:ae:56:de:99:17:b1:22:88:de:04:5b:c8:a2:61:b7:11:05: 2c:68:29:13:f8:81:9a:ac:63:bb:8f:f2:58:d8:c7:ba:12:68: 32:bb:0c:99:04:d8:e5:e4:2e:85:00:06:10:dd:17:9a:fc:20: 96:80:95:92:88:6b:d1:1f:c0:1d:55:21:49:e5:53:4d:37:a6: 58:28:02:6e:f0:7c:6c:1e:79:dc:26:5b:f6:a0:aa:2e:ee:8e: 9c:51:7a:e2:51:53:29:fa:08:84:56:8e:b7:70:8e:0c:0f:b2: 2c:06:d9:c7:90:4e:d6:17:64:40:97:86:0f:7f:7c:58:23:89: 7e:3e:a4:90:e7:a2:81:b4:07:a1:93:3b:40:46:19:d2:96:cc: 5b:83:e4:52:9b:a1:99:a5:db:dd:2d:3c:bc:7d:3e:7a:70:74: 80:55:ed:d9:00:38:a3:ed:e5:94:86:51:b7:4e:7e:4c:1f:dd: 22:db:b2:69:96:26:ab:1e:6c:06:2e:66:a0:ea:eb:1e:c2:04: ee:9c:ac:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwODA4MTc0MDAwWhcNMjUwODE1MTc0MDAwWjAYMRYwFAYD VQQDEw02ODk2MzY3MC02MDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlsa56L9VahyqOtGqd2H29137/dA56R9WtULigFUrJUw85cSDPUmKuddsJwQh JTDYGotktb7jbk+vrTj6v28PEMSA+PT0N84PN6ygq1QxYaeUbVQK9tsw7fVsy8Tb InLqoy2WTFF0QFDPVkUhO8YYZwgMmE5GWl9s98XA+Snty3OSWcEQrEiaqVRiAdWv yMBFMW25tKAMdf8qGVf5yD9UYk88TJOzMgvjipuVmJCVj1OIrHiecwwMckLOwnWv MuhB3WoHC3P5T2d51V/E7QaMrBsqq7LQjfe3ZAW5rH4CN6CjBv3ka+eAetduXDBg 4C9XaHoLbjNns5vFTn3z9xlW6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmdESCS LY6kMYW7O19/m9Eq/ogbMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeoAg20XcHxPtHORXC4wmPn0vi6NTmiPetn4c9cmzYePdW3bQb1q7a +J7op+m2g2hsYdhuEwaOrlbemRexIojeBFvIomG3EQUsaCkT+IGarGO7j/JY2Me6 EmgyuwyZBNjl5C6FAAYQ3Rea/CCWgJWSiGvRH8AdVSFJ5VNNN6ZYKAJu8HxsHnnc Jlv2oKou7o6cUXriUVMp+giEVo63cI4MD7IsBtnHkE7WF2RAl4YPf3xYI4l+PqSQ 56KBtAehkztARhnSlsxbg+RSm6GZpdvdLTy8fT56cHSAVe3ZADij7eWUhlG3Tn5M H90i27JpliarHmwGLmag6usewgTunKzc -----END CERTIFICATE-----Generated at Sun Aug 10 16:09:14 2025 by rpki-client