$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: cKbv/Et3TaltEIb1/IR9+/8VfDSPCh1zZEaQnX93sEU= Subject key identifier: C2:68:8E:66:47:DE:3E:4E:01:9E:4B:03:D5:DA:FC:BD:94:8D:A6:6C Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0A70 Signing time: Sun 10 Aug 2025 19:53:11 +0000 Manifest this update: Sun 10 Aug 2025 19:53:10 +0000 Manifest next update: Sun 17 Aug 2025 19:53:10 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: rgc3zNLYxHcfpdvFJYhueeCYJoUxfm6gggUs997wdsc=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: qbK0SRsjZmgPEhHCvpQ8WHXr9ovPv+iMo1ylb0vxYmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Aug 10 19:53:10 2025 GMT Not After : Aug 17 19:53:10 2025 GMT Subject: CN=6898f8a7-c31a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a2:82:24:f4:99:ff:ad:8a:3f:8b:b5:a9:d5: f9:6f:9f:2e:c9:79:06:47:22:d8:01:de:02:c7:26: 7d:75:9d:e6:8c:e2:b3:b9:48:bb:70:e5:6d:01:bf: 0a:ce:64:61:98:a8:03:7b:53:eb:58:fc:e5:8c:28: c8:bf:99:b9:72:f5:5c:53:25:26:f5:a7:9a:c4:b3: eb:3e:3d:7d:c2:fe:bc:c3:98:cd:50:9b:0d:6b:ca: 8d:83:db:04:a9:48:db:aa:cc:73:fc:26:d9:78:86: 2d:6a:16:eb:19:7c:09:46:d0:f8:29:48:b5:cf:ab: 6b:25:34:2b:d0:25:73:2c:93:7c:22:51:a6:a1:7f: 74:24:e3:b5:fa:42:1c:16:84:99:40:e1:63:8c:e6: 2a:07:b7:75:07:c3:69:cc:04:88:2e:c9:ea:20:58: 26:96:0c:fb:4c:5e:1a:ee:f8:b4:64:92:c9:52:c2: dc:66:9b:d8:01:69:fb:83:8c:77:4b:ab:39:6b:69: 14:35:b4:c6:7b:2f:da:52:de:ca:66:7a:27:d0:80: e3:e1:f5:51:bd:be:2e:44:e9:cb:76:08:fd:33:8d: 1c:28:b5:3e:e0:38:6d:4f:88:57:cb:30:b0:74:63: 58:28:24:06:a9:32:0d:80:9c:cd:3e:3b:a7:41:45: 78:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:68:8E:66:47:DE:3E:4E:01:9E:4B:03:D5:DA:FC:BD:94:8D:A6:6C X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:3f:12:ba:c9:f9:90:2d:94:3a:12:93:9d:8b:3f:20:79:fb: e0:c1:77:4d:34:c5:03:fb:ec:33:d9:05:6f:27:d1:c1:a6:e5: 2c:c1:62:d4:34:a8:a5:34:64:b8:f7:09:f9:9c:22:5c:9b:a6: 97:2c:45:a4:47:f7:56:6c:6f:a5:4d:ee:dd:0d:21:58:f9:c0: 27:f2:17:31:be:96:cb:91:82:69:78:fb:34:bb:f0:e5:b2:50: 5f:f6:82:00:1d:1f:30:9b:5f:dd:55:19:e0:87:02:cd:9b:59: 66:75:7f:db:c1:b3:5c:79:f4:6a:7e:5f:92:8a:7a:58:54:bd: 3f:f0:b3:3e:ce:81:41:d5:ee:ad:a0:a9:9c:3c:1d:82:2b:33: 6e:9a:55:3e:34:82:20:b0:40:7f:fc:ea:a4:94:87:54:ca:0a: f4:0b:38:88:8c:3f:51:9f:c1:35:31:75:94:3b:a1:e0:44:14: 25:74:75:7a:0f:5a:d1:19:9f:72:45:ac:90:38:c5:f2:ad:3d: e9:27:8c:2a:e7:85:da:e5:93:09:3a:40:bf:04:16:9c:d5:7d: c1:e4:0b:46:5a:9e:76:0d:02:ff:82:fc:b1:e9:55:e8:f7:b5: e3:cf:11:50:2d:78:e1:41:22:66:21:45:91:41:ef:ea:c0:33: b3:96:bf:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFDOTExMC8GA1UEBRMoREU0Q0U5NjBBMzkzMEFCNEMyMjdGQ0U4Rjg1N0MwODQx OTdGMDhEMDAeFw0yNTA4MTAxOTUzMTBaFw0yNTA4MTcxOTUzMTBaMBgxFjAUBgNV BAMTDTY4OThmOGE3LWMzMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsooIk9Jn/rYo/i7Wp1flvny7JeQZHItgB3gLHJn11neaM4rO5SLtw5W0BvwrO ZGGYqAN7U+tY/OWMKMi/mbly9VxTJSb1p5rEs+s+PX3C/rzDmM1Qmw1ryo2D2wSp SNuqzHP8Jtl4hi1qFusZfAlG0PgpSLXPq2slNCvQJXMsk3wiUaahf3Qk47X6QhwW hJlA4WOM5ioHt3UHw2nMBIguyeogWCaWDPtMXhru+LRkkslSwtxmm9gBafuDjHdL qzlraRQ1tMZ7L9pS3spmeifQgOPh9VG9vi5E6ct2CP0zjRwotT7gOG1PiFfLMLB0 Y1goJAapMg2AnM0+O6dBRXg3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwmiOZkfe Pk4BnksD1dr8vZSNpmwwHwYDVR0jBBgwFoAU3kzpYKOTCrTCJ/zo+FfAhBl/CNAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUM5LzZBNTdBQjhDN0Y5 NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2t6cFlLT1RDclRDSl96by1GZkFoQmxfQ05BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUM5LzZBNTdBQjhDN0Y5NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JU Q0pfem8tRmZBaEJsX0NOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL4/ErrJ+ZAtlDoSk52LPyB5++DBd000xQP77DPZBW8n0cGm5SzBYtQ0 qKU0ZLj3CfmcIlybppcsRaRH91Zsb6VN7t0NIVj5wCfyFzG+lsuRgml4+zS78OWy UF/2ggAdHzCbX91VGeCHAs2bWWZ1f9vBs1x59Gp+X5KKelhUvT/wsz7OgUHV7q2g qZw8HYIrM26aVT40giCwQH/86qSUh1TKCvQLOIiMP1GfwTUxdZQ7oeBEFCV0dXoP WtEZn3JFrJA4xfKtPeknjCrnhdrlkwk6QL8EFpzVfcHkC0ZannYNAv+C/LHpVej3 tePPEVAteOFBImYhRZFB7+rAM7OWv00= -----END CERTIFICATE-----Generated at Mon Aug 11 04:32:22 2025 by rpki-client