$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: EnTMGCPMUN9lB3x22LDoZ5sS9aVz2esYCHIpB/1KXRQ= Subject key identifier: 3E:68:D9:AA:7B:6A:6C:13:9B:64:B8:B4:15:50:00:39:2C:EC:63:63 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C1F Signing time: Fri 08 Aug 2025 18:57:36 +0000 Manifest this update: Fri 08 Aug 2025 18:57:35 +0000 Manifest next update: Fri 15 Aug 2025 18:57:35 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: Tx4awxI2izIlNjcDa5kkIGU+nfjqUlTmutUIe3QDz3k=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3118 (0xc2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Aug 8 18:57:35 2025 GMT Not After : Aug 15 18:57:35 2025 GMT Subject: CN=6896489f-0d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3f:57:92:94:d0:af:8d:e0:8b:08:a6:18:03: 66:b2:43:1f:0b:2b:b5:e2:b1:6e:98:f5:ab:88:8f: 5f:0b:94:01:c5:c6:21:9e:2e:24:4f:56:d5:91:e5: fe:47:1e:49:ea:1b:8e:a6:8d:77:30:f8:ae:38:c8: 29:09:37:49:5d:03:3f:58:f7:8e:92:95:07:8a:4c: cc:3b:0d:9a:c7:1b:d3:e2:32:00:18:62:11:20:6b: 7c:5a:fe:b8:33:3f:be:15:f9:ad:44:dc:2f:37:eb: db:81:f1:56:ad:05:d1:4f:7a:57:dc:c3:01:03:07: e8:8b:51:35:f4:9d:89:c2:2f:d3:65:c6:b2:09:70: 4d:d4:6a:ff:95:56:ab:66:b7:ae:35:a2:7d:fe:a8: 86:74:2c:fb:d5:26:c2:a1:80:62:82:16:a5:4a:be: 10:48:2a:90:ec:59:27:58:bb:3e:4e:f2:1d:55:f6: 80:71:93:e3:59:44:f5:a4:d5:aa:99:d1:00:81:b9: 47:83:8a:55:98:bb:50:a3:47:1a:f8:ac:97:7d:eb: 8f:28:f4:8e:6e:da:f8:2a:94:ea:3e:48:be:21:70: 3c:2c:83:e5:3f:88:96:40:42:7d:25:9a:6c:1a:7b: 57:65:72:3c:e8:c5:94:6c:d8:5d:23:a4:57:e1:94: 5f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:68:D9:AA:7B:6A:6C:13:9B:64:B8:B4:15:50:00:39:2C:EC:63:63 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:85:ea:59:8a:aa:8e:f6:2e:d9:18:b1:d0:88:c7:34:af:c5: d9:b3:6f:03:8e:31:37:dd:20:8a:79:26:6a:bb:97:a8:0c:09: 37:62:c4:df:ae:b2:f2:6e:e9:db:7b:e8:34:cb:a7:64:9b:de: b0:19:f6:fb:be:be:9c:66:ed:72:97:6e:d3:e8:9f:57:64:99: b6:84:ad:fa:c9:92:66:6a:40:82:66:54:86:71:16:4b:91:09: f3:67:dd:a9:42:e6:13:39:3b:2f:84:50:cc:90:0b:ae:99:43: 55:d9:2a:d8:ec:e1:0d:86:6e:1e:e4:7e:8f:0a:62:ef:51:1f: ad:54:35:b3:92:29:9f:ec:7a:c5:ef:74:c3:72:d0:c5:cc:8e: ad:db:71:bf:3d:7a:31:a3:55:75:e2:38:36:2b:bd:66:65:2a: 08:57:83:20:08:3b:75:ce:69:c8:6c:f5:b3:de:9a:a0:e0:0d: 49:68:25:1b:cf:43:c9:b8:39:53:96:6e:72:9c:c4:92:70:50: 1f:2f:c7:f1:ef:83:90:38:61:45:5a:a1:ae:3f:04:1b:ed:1d: 25:90:ec:6f:80:50:32:09:19:71:98:59:0a:b7:4e:b3:17:9e: 99:19:0e:47:75:13:e1:ad:9d:20:95:27:fa:92:23:d4:15:c1: 57:38:89:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjUwODA4MTg1NzM1WhcNMjUwODE1MTg1NzM1WjAYMRYwFAYD VQQDEw02ODk2NDg5Zi0wZDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4z9XkpTQr43giwimGANmskMfCyu14rFumPWriI9fC5QBxcYhni4kT1bVkeX+ Rx5J6huOpo13MPiuOMgpCTdJXQM/WPeOkpUHikzMOw2axxvT4jIAGGIRIGt8Wv64 Mz++FfmtRNwvN+vbgfFWrQXRT3pX3MMBAwfoi1E19J2Jwi/TZcayCXBN1Gr/lVar ZreuNaJ9/qiGdCz71SbCoYBighalSr4QSCqQ7FknWLs+TvIdVfaAcZPjWUT1pNWq mdEAgblHg4pVmLtQo0ca+KyXfeuPKPSObtr4KpTqPki+IXA8LIPlP4iWQEJ9JZps GntXZXI86MWUbNhdI6RX4ZRfSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5o2ap7 amwTm2S4tBVQADks7GNjMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIhepZiqqO9i7ZGLHQiMc0r8XZs28DjjE33SCKeSZqu5eoDAk3YsTf rrLybunbe+g0y6dkm96wGfb7vr6cZu1yl27T6J9XZJm2hK36yZJmakCCZlSGcRZL kQnzZ92pQuYTOTsvhFDMkAuumUNV2SrY7OENhm4e5H6PCmLvUR+tVDWzkimf7HrF 73TDctDFzI6t23G/PXoxo1V14jg2K71mZSoIV4MgCDt1zmnIbPWz3pqg4A1JaCUb z0PJuDlTlm5ynMSScFAfL8fx74OQOGFFWqGuPwQb7R0lkOxvgFAyCRlxmFkKt06z F56ZGQ5HdRPhrZ0glSf6kiPUFcFXOInk -----END CERTIFICATE-----Generated at Sun Aug 10 10:38:45 2025 by rpki-client