$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json) Hash identifier: BwjxRnd+910apLklYlO+NVXmnHwzeXPKHngd1QMq7jM= Subject key identifier: 48:CB:50:A7:03:87:1B:AE:8E:B8:63:F7:55:60:95:AD:34:BF:05:28 Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft Manifest number: 016F Signing time: Fri 13 Jun 2025 02:50:56 +0000 Manifest this update: Fri 13 Jun 2025 02:50:55 +0000 Manifest next update: Fri 20 Jun 2025 02:50:55 +0000 Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: UOiuOR/TmXUrL/ezSujT3iMEtd/cXMwcR5XP2XJ5C+k=) 2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: WJ3Am2HQwJLsBb4IAygJWTOhl2B7OGnwyXaVHWvKYoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B40, serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Validity Not Before: Jun 13 02:50:55 2025 GMT Not After : Jun 20 02:50:55 2025 GMT Subject: CN=684b9210-df40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:bc:00:b6:f8:f4:96:b7:3f:3f:01:a7:ec: c4:24:34:ea:66:a4:03:65:e6:12:94:36:15:cc:74: 5c:c2:bc:e7:61:ce:ab:53:41:a1:1e:ee:ad:a4:80: a7:c6:5b:08:ec:30:98:e4:aa:ba:3b:e9:43:92:ee: 1b:7d:5d:8e:42:2d:3a:be:68:d1:b6:e9:05:ae:1b: b4:d9:bb:3e:37:1b:40:67:bb:02:e6:0a:57:8f:4b: 8d:7a:eb:3f:4f:e0:fb:ec:7c:32:fe:31:74:1d:cb: 61:62:0f:92:dc:88:e4:c0:67:d1:fc:2f:9a:67:28: c7:21:01:a2:88:73:c0:87:53:ff:d2:68:ef:61:14: ce:10:70:e8:fe:b9:ed:2b:7a:ad:14:e5:d7:d0:65: 81:6d:f9:fe:79:25:53:6e:30:44:f8:3d:7a:ab:d0: ce:f7:31:b7:d1:92:ff:ad:7b:21:55:b9:25:60:66: ce:31:3f:35:51:de:83:c6:13:dd:f6:af:ad:27:2b: b9:ca:9b:18:2e:32:0e:4a:22:7f:88:84:0c:a8:97: 17:54:4a:93:9a:bb:48:ea:c7:eb:21:ba:6b:26:9d: 08:f2:2e:e5:c5:a8:9f:c8:49:ac:24:57:2b:de:41: c1:1a:f3:fe:53:8a:4f:8a:b9:6a:e5:1b:9c:68:b9: a2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CB:50:A7:03:87:1B:AE:8E:B8:63:F7:55:60:95:AD:34:BF:05:28 X509v3 Authority Key Identifier: keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ea:42:6c:b1:d5:e7:b0:40:85:61:4f:72:b1:d5:ff:03:de: 89:77:45:3c:21:39:aa:09:4e:86:75:6d:79:2b:77:31:2d:1a: 65:aa:63:be:0b:85:11:b0:a3:a5:e6:50:7f:20:82:c0:27:2c: dd:2a:a8:06:8a:c3:ba:1f:cd:c1:f6:2f:9e:8b:4f:05:89:3c: 6d:b6:cc:0d:f6:32:45:b0:f5:1c:53:03:42:32:0e:5b:fe:c5: 5a:6b:c8:c4:e7:5a:2f:d7:5d:61:86:4f:5d:51:01:ef:48:d2: 64:f0:ab:0b:9e:38:78:7d:39:5b:3b:e0:bb:c3:55:b5:c9:34: d8:34:c4:7d:9c:c2:2b:b8:b7:a4:9b:99:93:00:09:c7:43:92: b8:2f:68:a8:20:8f:0b:ac:d1:b0:1a:7a:48:52:c4:b3:7c:0a: bc:f8:50:79:49:c9:5e:89:5f:40:ee:49:0c:6a:19:c8:25:1b: f5:9b:e3:c7:5c:4f:2c:39:fc:40:48:95:ae:76:ac:39:98:ea: 97:4d:28:61:ab:12:59:9a:e0:01:02:0e:ae:72:a9:5e:3b:c8: 5a:7b:9b:71:93:d4:ec:c4:a7:5d:84:ec:15:69:fd:6d:bd:ea: cd:dc:02:1c:f0:09:41:5a:91:64:0a:ff:f7:8e:63:09:d2:58: ec:a1:db:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDAxMTAvBgNVBAUTKDNDQUNEQ0ZFMjdFODkwOERDNDdGMzNFRjkxNEFFM0M1 MDhCQTQ3QjMwHhcNMjUwNjEzMDI1MDU1WhcNMjUwNjIwMDI1MDU1WjAYMRYwFAYD VQQDEw02ODRiOTIxMC1kZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNi8ALb49Ja3Pz8Bp+zEJDTqZqQDZeYSlDYVzHRcwrznYc6rU0GhHu6tpICn xlsI7DCY5Kq6O+lDku4bfV2OQi06vmjRtukFrhu02bs+NxtAZ7sC5gpXj0uNeus/ T+D77Hwy/jF0HcthYg+S3IjkwGfR/C+aZyjHIQGiiHPAh1P/0mjvYRTOEHDo/rnt K3qtFOXX0GWBbfn+eSVTbjBE+D16q9DO9zG30ZL/rXshVbklYGbOMT81Ud6DxhPd 9q+tJyu5ypsYLjIOSiJ/iIQMqJcXVEqTmrtI6sfrIbprJp0I8i7lxaifyEmsJFcr 3kHBGvP+U4pPirlq5RucaLmiLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjLUKcD hxuujrhj91Vgla00vwUoMB8GA1UdIwQYMBaAFDys3P4n6JCNxH8z75FK48UIukez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0MC9GMDFDQTlDNjFC MjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJM0VmelB2a1VyanhRaTZS N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BLemNfaWZva0kzRWZ6UHZrVXJqeFFpNlI3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0MC9GMDFDQTlDNjFCMjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJ M0VmelB2a1VyanhRaTZSN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm6kJssdXnsECFYU9ysdX/A96Jd0U8ITmqCU6GdW15K3cxLRplqmO+ C4URsKOl5lB/IILAJyzdKqgGisO6H83B9i+ei08FiTxttswN9jJFsPUcUwNCMg5b /sVaa8jE51ov111hhk9dUQHvSNJk8KsLnjh4fTlbO+C7w1W1yTTYNMR9nMIruLek m5mTAAnHQ5K4L2ioII8LrNGwGnpIUsSzfAq8+FB5ScleiV9A7kkMahnIJRv1m+PH XE8sOfxASJWudqw5mOqXTShhqxJZmuABAg6ucqleO8hae5txk9TsxKddhOwVaf1t verN3AIc8AlBWpFkCv/3jmMJ0ljsodt0 -----END CERTIFICATE-----Generated at Sat Jun 14 19:40:50 2025 by rpki-client