$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: BKESeuK6yo56Yhh8H7WNm3zpLfUOW1j3H7rRLfL+JkQ= Subject key identifier: 09:7A:44:E1:04:31:73:79:85:BF:4D:28:C6:5B:39:5C:4E:CE:04:36 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C03 Signing time: Sat 14 Jun 2025 18:37:36 +0000 Manifest this update: Sat 14 Jun 2025 18:37:35 +0000 Manifest next update: Sat 21 Jun 2025 18:37:35 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: JENacKcRbWITC+BYBcvn+z12/irVfsmD/NDkdMpjjuk=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3090 (0xc12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Jun 14 18:37:35 2025 GMT Not After : Jun 21 18:37:35 2025 GMT Subject: CN=684dc16f-f958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c5:84:34:61:65:6d:74:f6:fd:34:7d:87:cb: 7e:e0:7c:56:e2:67:61:6f:91:85:a3:c2:dc:23:a8: 18:29:34:81:76:cb:e7:c0:f8:0e:93:cc:77:40:68: 3d:68:fe:24:fb:a3:9c:4a:67:62:d2:6e:e9:7f:44: d7:b9:70:e6:48:50:ba:14:4a:7d:a4:7d:75:05:0a: bb:7c:9b:e1:97:50:0c:49:bc:5f:ca:6d:45:57:48: a7:4a:fd:a0:ab:68:9c:d6:62:af:b7:51:b3:8f:4a: 1d:3f:54:f0:e8:60:8a:32:45:a5:05:47:9e:32:4e: c2:31:2f:93:c5:98:d6:91:2e:e4:68:d4:c7:b7:aa: f7:46:a6:4c:72:2b:61:30:27:8d:93:57:8c:2a:d7: 1b:62:12:43:c8:d8:3b:f6:6f:97:5c:16:41:b9:ec: a9:5d:04:11:51:cd:c3:2f:c5:be:1a:7c:45:10:f9: fb:00:65:b4:8f:04:bc:6d:8e:40:85:40:aa:f7:cb: 98:ae:f2:dc:f0:ae:34:ee:3f:9a:02:37:e1:3b:18: 0c:f4:29:28:d2:3e:a0:43:bf:e0:80:97:64:91:1e: 50:09:ed:8b:a8:eb:e5:80:31:93:53:c3:9a:61:65: 82:39:6d:cb:5e:83:bb:5b:11:2a:81:83:a0:2b:1b: 4c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:7A:44:E1:04:31:73:79:85:BF:4D:28:C6:5B:39:5C:4E:CE:04:36 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:d3:a6:24:e5:7f:da:06:48:20:fc:32:6c:af:e9:06:c3:81: 25:f1:cf:96:5e:89:69:cd:ef:3c:b6:39:ea:ec:9f:49:95:d4: 16:22:a1:2d:0a:9c:e5:a7:55:f2:5b:cb:ce:60:ad:3f:88:78: 74:0a:3f:3d:07:50:95:06:07:9d:d8:09:c0:7e:49:08:91:a5: 15:a1:50:e6:c4:3b:e2:fc:91:36:b5:09:b3:95:e0:66:d6:5e: a9:82:bc:5f:8c:3f:71:cd:bd:6b:8f:dc:b6:fa:14:e5:1b:15: 1e:b7:41:1a:99:94:ef:b4:bd:8a:b7:97:04:2c:d3:58:61:ff: a7:4c:1b:78:19:fd:23:a5:23:05:91:bc:c9:28:93:f6:00:02: 98:1a:56:f7:de:75:dd:d0:6c:a6:ae:ce:bd:26:27:23:ab:0f: ae:7a:98:6d:16:fc:7e:7e:31:20:dd:5a:c1:c5:46:72:23:56: 69:4f:63:57:62:af:1b:15:2b:fb:3f:e7:22:60:f1:d5:8e:2b: 04:8c:7c:bd:ee:1c:b6:24:09:91:dd:12:7f:6d:6f:7b:90:27: 15:cc:3f:82:eb:34:55:b9:91:ba:ea:32:cd:99:86:87:65:01: 5f:35:19:c3:2d:4f:c4:96:5d:e7:cd:df:91:94:c7:8e:2b:a2: 32:d3:0e:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjUwNjE0MTgzNzM1WhcNMjUwNjIxMTgzNzM1WjAYMRYwFAYD VQQDEw02ODRkYzE2Zi1mOTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssWENGFlbXT2/TR9h8t+4HxW4mdhb5GFo8LcI6gYKTSBdsvnwPgOk8x3QGg9 aP4k+6OcSmdi0m7pf0TXuXDmSFC6FEp9pH11BQq7fJvhl1AMSbxfym1FV0inSv2g q2ic1mKvt1Gzj0odP1Tw6GCKMkWlBUeeMk7CMS+TxZjWkS7kaNTHt6r3RqZMcith MCeNk1eMKtcbYhJDyNg79m+XXBZBueypXQQRUc3DL8W+GnxFEPn7AGW0jwS8bY5A hUCq98uYrvLc8K407j+aAjfhOxgM9Cko0j6gQ7/ggJdkkR5QCe2LqOvlgDGTU8Oa YWWCOW3LXoO7WxEqgYOgKxtMKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAl6ROEE MXN5hb9NKMZbOVxOzgQ2MB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA606Yk5X/aBkgg/DJsr+kGw4El8c+WXolpze88tjnq7J9JldQWIqEt Cpzlp1XyW8vOYK0/iHh0Cj89B1CVBged2AnAfkkIkaUVoVDmxDvi/JE2tQmzleBm 1l6pgrxfjD9xzb1rj9y2+hTlGxUet0EamZTvtL2Kt5cELNNYYf+nTBt4Gf0jpSMF kbzJKJP2AAKYGlb33nXd0Gymrs69Jicjqw+uephtFvx+fjEg3VrBxUZyI1ZpT2NX Yq8bFSv7P+ciYPHVjisEjHy97hy2JAmR3RJ/bW97kCcVzD+C6zRVuZG66jLNmYaH ZQFfNRnDLU/Ell3nzd+RlMeOK6Iy0w6K -----END CERTIFICATE-----Generated at Sun Jun 15 09:33:17 2025 by rpki-client