$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: YpYnpBgQ8XnbNNwXFCdoHZn0jhsbKI/kSvbpzmfRYeU= Subject key identifier: 87:5E:32:A5:F5:AC:95:6D:D2:08:20:AD:37:A9:70:62:3A:00:71:1F Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 0FC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 0FBE Signing time: Fri 04 Apr 2025 17:37:23 +0000 Manifest this update: Fri 04 Apr 2025 17:37:22 +0000 Manifest next update: Fri 11 Apr 2025 17:37:22 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: mALcxytVGkWvTpWfDF6k8Ij5z64G91U4QCGov+I6NWw=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: M4kuuW3GF+4cw4z3e2X8np8DXjwWrvLRqULDvRRViYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4041 (0xfc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC Validity Not Before: Apr 4 17:37:22 2025 GMT Not After : Apr 11 17:37:22 2025 GMT Subject: CN=67f018d3-45c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d3:fe:62:8e:57:4e:2c:50:e6:88:c5:c1:a1: 59:4c:4a:7f:aa:b7:cd:0d:8c:14:11:0a:ea:51:3b: e8:7b:ab:1a:18:6c:e4:fa:eb:78:cc:34:d1:d2:d8: 53:5e:c8:8c:cf:75:48:0c:b1:35:c2:be:4e:53:c0: 34:8d:df:8d:c1:00:a7:3b:df:4e:58:75:13:64:a4: 20:71:bc:ea:10:9a:8e:cf:43:11:d0:88:00:d8:4a: a8:90:15:7e:33:ce:97:98:3e:a1:88:80:56:ec:c9: 4c:a7:a0:ba:58:82:ec:6f:f9:ef:aa:34:3f:87:7c: 7c:5f:d4:6b:e8:2e:07:5e:cd:1f:f3:c4:79:b9:ac: e7:3a:b5:cb:ab:23:ca:1a:24:a6:4b:08:94:54:72: d8:f8:f8:91:b1:2e:e6:5f:54:0c:c0:49:d5:b4:08: 1d:b9:98:be:e3:58:91:3b:3b:3f:ea:b4:0e:ad:f9: be:cc:b6:99:3b:c9:8f:89:4f:c8:22:a4:9d:04:a2: 63:7b:2c:30:60:39:4e:2c:93:a1:9f:0b:db:17:f0: 02:a7:79:31:5b:77:e2:fa:46:19:be:c1:1d:63:3f: 56:33:6f:0e:4b:41:a4:39:e8:df:5b:1d:cd:91:68: a0:89:60:16:5e:00:eb:f1:af:ca:c1:7c:2f:9b:45: ae:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5E:32:A5:F5:AC:95:6D:D2:08:20:AD:37:A9:70:62:3A:00:71:1F X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:eb:f2:3b:fc:c7:eb:a3:fa:94:3b:91:f1:bf:b8:66:b2:c9: b8:05:04:7b:a4:03:5e:ff:9e:40:39:44:6b:ed:0e:27:5d:8e: 86:70:51:af:d2:e4:71:55:65:8a:13:ba:4b:56:42:42:5e:06: ae:b6:30:aa:b0:2c:e2:4f:20:3e:9c:ff:dc:cf:23:9e:4d:b6: 54:cc:3a:97:bc:b6:bc:dd:0d:12:b7:aa:ee:02:af:b2:a0:52: 28:e0:e7:62:5c:06:04:07:87:70:72:65:c4:0e:69:d4:ef:99: c6:63:6f:6e:f2:8a:3f:f5:14:5a:3e:0f:5c:25:6b:df:af:b1: 1a:b0:18:56:4e:b1:29:dc:26:b9:3b:b7:00:3d:78:7c:ca:8e: 58:c7:2d:e3:fb:78:c5:b0:41:81:76:ac:17:24:6a:db:ab:1f: 3b:36:1c:8a:d7:9e:24:7b:94:cc:42:9d:4e:8f:84:da:9d:ea: 68:7a:0f:94:b5:15:61:51:95:70:54:0c:07:8b:9f:db:bb:8a: bb:56:a0:0a:b2:5b:48:96:ce:68:29:6c:bb:e9:69:a9:d7:82: 87:24:22:46:e9:64:96:5d:02:6f:aa:81:f0:be:7d:57:f1:b4: 08:ae:66:81:ec:53:74:01:3b:10:f5:a1:88:b7:10:f6:39:22: 26:6f:ac:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwNDA0MTczNzIyWhcNMjUwNDExMTczNzIyWjAYMRYwFAYD VQQDEw02N2YwMThkMy00NWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NP+Yo5XTixQ5ojFwaFZTEp/qrfNDYwUEQrqUTvoe6saGGzk+ut4zDTR0thT XsiMz3VIDLE1wr5OU8A0jd+NwQCnO99OWHUTZKQgcbzqEJqOz0MR0IgA2EqokBV+ M86XmD6hiIBW7MlMp6C6WILsb/nvqjQ/h3x8X9Rr6C4HXs0f88R5uaznOrXLqyPK GiSmSwiUVHLY+PiRsS7mX1QMwEnVtAgduZi+41iROzs/6rQOrfm+zLaZO8mPiU/I IqSdBKJjeywwYDlOLJOhnwvbF/ACp3kxW3fi+kYZvsEdYz9WM28OS0GkOejfWx3N kWigiWAWXgDr8a/KwXwvm0WuswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdeMqX1 rJVt0gggrTepcGI6AHEfMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE6/I7/Mfro/qUO5Hxv7hmssm4BQR7pANe/55AOURr7Q4nXY6GcFGv 0uRxVWWKE7pLVkJCXgautjCqsCziTyA+nP/czyOeTbZUzDqXvLa83Q0St6ruAq+y oFIo4OdiXAYEB4dwcmXEDmnU75nGY29u8oo/9RRaPg9cJWvfr7EasBhWTrEp3Ca5 O7cAPXh8yo5Yxy3j+3jFsEGBdqwXJGrbqx87NhyK154ke5TMQp1Oj4Tanepoeg+U tRVhUZVwVAwHi5/bu4q7VqAKsltIls5oKWy76Wmp14KHJCJG6WSWXQJvqoHwvn1X 8bQIrmaB7FN0ATsQ9aGItxD2OSImb6yM -----END CERTIFICATE-----Generated at Sat Apr 5 23:46:03 2025 by rpki-client