$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: Dgf4xsbx357CmhDoIWAIN5IL8Bn7HoC6T7EjPnIAHR4= Subject key identifier: 93:8F:F0:9D:71:45:E1:DD:33:D5:46:D8:BA:06:C2:2E:5E:34:22:D2 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 1037 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 102B Signing time: Sun 02 Nov 2025 17:27:23 +0000 Manifest this update: Sun 02 Nov 2025 17:27:23 +0000 Manifest next update: Sun 09 Nov 2025 17:27:23 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: ugTnd1uoQqMg3rOIKPE1Dn5eO94uYaJPzoqEtIFI0nE=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: h2Z0WowEDdcT+vihpwqc3ZmmFIzfzbEzcf903yWEHbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4151 (0x1037) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Nov 2 17:27:23 2025 GMT Not After : Nov 9 17:27:23 2025 GMT Subject: CN=6907947b-de96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:86:b7:52:23:90:e2:89:dc:fa:65:6d:fa:18: 5c:0b:be:e1:23:9c:8e:01:a8:64:ee:34:ec:8b:6a: 71:82:b4:96:46:80:34:04:96:54:19:e5:44:2d:94: 28:c7:00:d3:c8:45:f5:7c:7d:e5:80:c6:0f:0a:ba: d1:55:53:48:a5:19:6b:3b:66:6c:8e:47:bc:ce:68: 4e:da:9a:01:b0:d9:7d:f0:16:ea:35:de:d4:3b:d7: d5:00:20:52:75:bf:b7:72:e0:41:dd:dd:0c:f5:7e: fc:83:be:cd:78:ce:42:6d:1e:af:ae:6e:2c:c3:0f: 90:bc:cb:4c:e7:3f:80:84:09:f9:47:3d:a7:a7:74: b6:cb:0a:44:d6:c7:d8:f9:07:5b:5e:4a:db:bd:7b: 17:8b:e3:50:c0:f9:bc:e0:a6:99:d1:f6:d7:ff:fd: 8d:b0:dc:2a:9d:39:5e:e2:da:f6:14:30:c0:99:49: 89:36:f5:98:ac:82:ec:22:97:60:a7:f8:35:37:05: 26:16:05:0f:14:a4:cf:cb:ce:ce:95:9c:cd:2d:6b: 82:e4:de:bb:ac:99:05:c8:8b:18:04:57:87:53:63: 87:ac:f4:da:f6:c8:bb:66:85:03:31:87:65:ff:83: c9:10:a5:fe:f8:ab:45:2a:d4:cb:8b:3c:65:ff:b3: 6f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:8F:F0:9D:71:45:E1:DD:33:D5:46:D8:BA:06:C2:2E:5E:34:22:D2 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:7b:19:b9:14:07:0b:fe:e1:00:78:87:cc:4f:d1:b7:66:3e: a9:80:36:d9:eb:04:fc:42:87:30:11:57:9a:c5:a8:ce:48:1d: dc:57:28:5f:b7:9f:52:10:56:c7:49:6c:cd:4a:df:1b:9e:d7: 05:82:24:25:38:17:06:82:fd:07:3d:7d:0f:2e:6b:50:ae:3a: 15:93:72:a2:4f:21:a0:83:fb:79:e2:a4:f3:ba:08:61:a9:29: 53:ab:42:e3:96:a9:bb:4e:da:1b:ec:14:1a:53:f0:97:79:8b: 4b:30:c0:47:1c:86:76:df:dc:92:2f:c4:44:b2:05:04:23:5c: 5d:02:22:19:e2:fe:bb:c6:08:c1:68:61:dd:58:e6:b3:74:34: 80:58:b9:b4:57:d6:f3:13:fb:57:fe:58:c3:51:76:0f:58:fe: 17:ad:43:5b:3b:e2:80:08:19:65:66:25:8b:77:df:3a:ae:ea: bc:fa:7d:9c:d3:99:85:b8:63:5f:9c:8f:d6:75:aa:d0:d3:a4: 9c:3e:6a:6c:a9:95:29:ec:f8:3f:1f:4c:a6:7c:2d:d3:86:d8: 02:05:a8:80:69:37:d4:ed:0a:2b:a6:e6:05:10:b3:bf:2b:5d: f6:84:ae:d2:1c:8b:92:1c:fd:e7:9f:14:64:d4:58:99:58:68: 6f:97:17:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUxMTAyMTcyNzIzWhcNMjUxMTA5MTcyNzIzWjAYMRYwFAYD VQQDEw02OTA3OTQ3Yi1kZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYa3UiOQ4onc+mVt+hhcC77hI5yOAahk7jTsi2pxgrSWRoA0BJZUGeVELZQo xwDTyEX1fH3lgMYPCrrRVVNIpRlrO2Zsjke8zmhO2poBsNl98BbqNd7UO9fVACBS db+3cuBB3d0M9X78g77NeM5CbR6vrm4sww+QvMtM5z+AhAn5Rz2np3S2ywpE1sfY +QdbXkrbvXsXi+NQwPm84KaZ0fbX//2NsNwqnTle4tr2FDDAmUmJNvWYrILsIpdg p/g1NwUmFgUPFKTPy87OlZzNLWuC5N67rJkFyIsYBFeHU2OHrPTa9si7ZoUDMYdl /4PJEKX++KtFKtTLizxl/7NvLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOP8J1x ReHdM9VG2LoGwi5eNCLSMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzexm5FAcL/uEAeIfMT9G3Zj6pgDbZ6wT8QocwEVeaxajOSB3cVyhf t59SEFbHSWzNSt8bntcFgiQlOBcGgv0HPX0PLmtQrjoVk3KiTyGgg/t54qTzughh qSlTq0Ljlqm7Ttob7BQaU/CXeYtLMMBHHIZ239ySL8REsgUEI1xdAiIZ4v67xgjB aGHdWOazdDSAWLm0V9bzE/tX/ljDUXYPWP4XrUNbO+KACBllZiWLd986ruq8+n2c 05mFuGNfnI/WdarQ06ScPmpsqZUp7Pg/H0ymfC3ThtgCBaiAaTfU7QorpuYFELO/ K132hK7SHIuSHP3nnxRk1FiZWGhvlxcl -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:55 2025 by rpki-client