$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json) Hash identifier: affWzD3AfG8eoAZpCZPme39gpK83JWN5BC8cwt6rLkU= Subject key identifier: 70:C7:76:58:52:16:76:52:8D:65:53:95:97:C3:F5:A4:D9:5F:1F:9A Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft Manifest number: 018E Signing time: Wed 13 Aug 2025 03:59:45 +0000 Manifest this update: Wed 13 Aug 2025 03:59:44 +0000 Manifest next update: Wed 20 Aug 2025 03:59:44 +0000 Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: bCAvjeGcAWQD8D4iejWMC8/c6gkdHtXMtoA/Es62vSM=) 2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: WJ3Am2HQwJLsBb4IAygJWTOhl2B7OGnwyXaVHWvKYoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 03:59:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B40, serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Validity Not Before: Aug 13 03:59:44 2025 GMT Not After : Aug 20 03:59:44 2025 GMT Subject: CN=689c0db1-467d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7b:f1:27:14:4f:65:0f:08:46:67:62:f9:b4: 2d:80:44:b0:b2:34:53:e6:97:eb:c6:8d:e1:20:be: cc:86:c2:58:8d:4d:95:9e:1d:45:f1:0c:8e:af:e3: 5b:a3:3a:ea:26:24:2d:9b:c8:a2:15:00:0c:d5:30: 52:9c:bc:c3:33:36:c9:e2:dd:40:fb:de:9f:2e:4b: af:71:29:9a:2e:ec:f6:16:79:f2:b4:69:5b:33:08: 73:19:60:7b:f4:5b:a8:cf:83:47:3e:88:63:11:5e: 9f:05:ac:8c:8d:61:df:79:9d:18:87:0a:80:d7:17: b1:ab:1c:61:e1:f7:94:a9:f4:27:4b:d7:1d:a1:cb: 4f:52:80:65:b2:96:cd:6a:cc:e0:22:12:67:15:2c: eb:04:b3:ec:da:72:6e:7a:07:af:58:20:ef:3e:30: 34:05:79:2b:bc:25:ad:0e:9f:62:b5:59:ef:7e:20: 4e:e7:c5:a3:47:6a:71:05:85:08:c2:44:37:8b:b1: 17:78:97:47:8d:cc:dc:43:46:eb:50:34:8b:f2:2f: 89:c9:7d:3c:3f:a3:59:8f:3a:a3:4c:09:a3:54:3b: 9c:13:29:c9:d3:c0:3e:e2:49:1b:d0:1e:07:4b:3c: ee:fc:a4:f7:f2:9f:d7:b6:2b:1e:7c:cd:47:13:3d: 5f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C7:76:58:52:16:76:52:8D:65:53:95:97:C3:F5:A4:D9:5F:1F:9A X509v3 Authority Key Identifier: keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:45:a6:30:f4:71:bb:b3:e9:47:a6:b0:7f:5e:db:b8:73:8f: e7:c1:f1:a4:31:f7:9b:6d:68:83:90:74:42:02:bd:b9:96:45: 67:da:f2:d1:57:0f:6a:15:61:4b:bc:01:e8:3b:92:8e:b1:a6: a7:52:39:7f:9a:f2:c1:53:b1:c4:f9:b4:0e:16:9e:57:10:2f: 09:bc:09:ff:4f:30:04:9b:2d:c5:26:dc:c0:ae:59:d2:2b:2c: aa:62:87:ec:d1:7c:59:79:ca:54:9d:40:01:cc:ee:5a:df:5b: 57:42:0d:fe:75:ce:33:a8:7a:51:6c:ba:7f:ac:c8:f9:75:f8: ae:df:95:71:41:4e:19:39:42:5c:71:f7:18:36:88:60:94:dd: 46:74:26:52:46:6c:f5:fa:c8:f0:61:86:55:d9:b7:d1:7f:ea: 14:91:a8:65:b8:99:4e:2b:d9:ad:e9:10:a2:23:88:65:d4:35: 11:51:6c:3a:95:7d:6f:62:c6:47:48:9c:cc:ca:ee:6a:28:9f: 2d:ce:42:0f:ca:99:dc:f7:9b:46:a3:ef:cf:54:5f:fe:f9:26: 15:09:5c:90:aa:60:cf:b9:9e:80:7e:36:52:a7:99:bb:65:e7: 2a:44:2f:1d:13:b3:e0:16:d7:53:20:ef:82:b1:9b:5b:e2:bd: e2:0c:fc:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDAxMTAvBgNVBAUTKDNDQUNEQ0ZFMjdFODkwOERDNDdGMzNFRjkxNEFFM0M1 MDhCQTQ3QjMwHhcNMjUwODEzMDM1OTQ0WhcNMjUwODIwMDM1OTQ0WjAYMRYwFAYD VQQDEw02ODljMGRiMS00NjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3vxJxRPZQ8IRmdi+bQtgESwsjRT5pfrxo3hIL7MhsJYjU2Vnh1F8QyOr+Nb ozrqJiQtm8iiFQAM1TBSnLzDMzbJ4t1A+96fLkuvcSmaLuz2FnnytGlbMwhzGWB7 9Fuoz4NHPohjEV6fBayMjWHfeZ0YhwqA1xexqxxh4feUqfQnS9cdoctPUoBlspbN aszgIhJnFSzrBLPs2nJuegevWCDvPjA0BXkrvCWtDp9itVnvfiBO58WjR2pxBYUI wkQ3i7EXeJdHjczcQ0brUDSL8i+JyX08P6NZjzqjTAmjVDucEynJ08A+4kkb0B4H Szzu/KT38p/XtisefM1HEz1f7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDHdlhS FnZSjWVTlZfD9aTZXx+aMB8GA1UdIwQYMBaAFDys3P4n6JCNxH8z75FK48UIukez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0MC9GMDFDQTlDNjFC MjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJM0VmelB2a1VyanhRaTZS N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BLemNfaWZva0kzRWZ6UHZrVXJqeFFpNlI3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0MC9GMDFDQTlDNjFCMjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJ M0VmelB2a1VyanhRaTZSN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFRaYw9HG7s+lHprB/Xtu4c4/nwfGkMfebbWiDkHRCAr25lkVn2vLR Vw9qFWFLvAHoO5KOsaanUjl/mvLBU7HE+bQOFp5XEC8JvAn/TzAEmy3FJtzArlnS KyyqYofs0XxZecpUnUABzO5a31tXQg3+dc4zqHpRbLp/rMj5dfiu35VxQU4ZOUJc cfcYNohglN1GdCZSRmz1+sjwYYZV2bfRf+oUkahluJlOK9mt6RCiI4hl1DURUWw6 lX1vYsZHSJzMyu5qKJ8tzkIPypnc95tGo+/PVF/++SYVCVyQqmDPuZ6AfjZSp5m7 ZecqRC8dE7PgFtdTIO+CsZtb4r3iDPzM -----END CERTIFICATE-----Generated at Wed Aug 13 05:37:44 2025 by rpki-client