$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: uKYbK8vr4NCh02fKzIBFccFtSSAtJlEPQYm5emej2+E= Subject key identifier: B8:28:F5:A0:34:86:0C:10:BE:62:71:00:5C:E4:3C:EF:B7:0A:AF:2B Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0A34 Signing time: Thu 12 Jun 2025 19:43:08 +0000 Manifest this update: Thu 12 Jun 2025 19:43:08 +0000 Manifest next update: Thu 19 Jun 2025 19:43:08 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: ASgN45biQJQHjfhD3f3FZzB0SWj62Axspn+N/74DSCE=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: qbK0SRsjZmgPEhHCvpQ8WHXr9ovPv+iMo1ylb0vxYmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Jun 12 19:43:08 2025 GMT Not After : Jun 19 19:43:08 2025 GMT Subject: CN=684b2dcc-aa44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c3:b8:f8:15:6b:60:05:d9:15:31:c8:90:1d: 88:74:dc:7e:35:b8:8b:d9:b1:2c:90:ea:fe:da:47: bc:6c:e5:ec:fd:d8:da:26:ee:26:6b:81:68:5e:77: c3:c7:c1:09:c5:2e:46:9f:50:4c:79:d5:c7:e4:c7: d4:af:b8:66:fb:f7:97:cb:4c:8f:d8:0d:8c:dd:a6: 5c:35:29:8c:5e:38:ad:03:a1:13:41:af:02:1d:0a: f7:d5:b5:55:b2:9c:6b:c4:6f:d7:2e:37:c7:c2:af: 22:8d:bd:10:69:32:f2:ae:f7:7c:b0:9f:89:f3:b5: 20:4b:69:e6:49:36:59:ce:9e:ad:3c:51:f1:8b:5c: 5e:0c:d1:c6:05:0a:22:3c:91:85:27:4b:1f:4d:9f: f6:dc:39:c3:e0:4e:43:89:83:df:58:bf:c1:dd:75: 0f:91:3a:53:e7:b4:1a:5f:8a:37:e4:2d:65:64:a3: b9:f4:9a:32:6e:1b:5b:8a:f3:b3:86:39:b0:d5:94: c6:5f:e2:5d:a8:14:7c:a8:98:0a:1f:24:7d:78:d9: ee:cf:6b:75:75:8b:4a:39:3e:5a:64:52:1a:60:0a: 44:ef:ef:a4:17:87:9e:a7:fd:6e:50:bd:87:ae:cb: d5:79:ac:5b:6a:bb:39:fb:8b:5d:15:77:9e:6a:0c: be:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:28:F5:A0:34:86:0C:10:BE:62:71:00:5C:E4:3C:EF:B7:0A:AF:2B X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:f0:9f:79:82:2f:4b:4c:b0:81:b7:97:d3:7e:ed:40:52:b1: f1:dc:b2:01:a1:bd:c3:25:33:9a:f6:79:5e:20:90:d2:f7:6d: 91:e2:80:95:a4:da:e1:04:29:c2:c5:36:3b:40:b7:3a:e8:44: 67:11:de:95:f0:4d:ac:aa:c4:84:eb:98:bd:fb:9f:c2:03:ca: c0:b7:78:48:f4:14:ee:b6:6f:c9:f8:f5:bd:06:12:55:54:ab: 3a:4d:f3:16:ce:06:e6:17:81:83:9c:6b:59:e1:56:6e:db:cc: 70:3a:a7:6c:a4:f2:0a:46:a8:3b:4e:ef:99:d0:1f:62:9c:95: 6b:7d:9e:1a:d3:4b:31:0e:6c:29:dc:f8:88:46:66:1f:11:04: 44:e7:47:75:ac:0f:89:24:64:18:4c:ef:8d:dc:8c:1a:00:c6: 7f:5e:76:4b:6c:db:54:20:8d:ba:54:97:96:98:b1:db:a7:8e: 2c:c6:ef:76:ad:8d:05:80:d1:a2:b1:88:e4:2f:69:d3:cd:66: d0:bf:f3:bd:20:78:db:05:6a:e6:7b:6d:80:2f:51:cd:7d:d0: ca:52:a3:a8:62:ad:0d:38:a6:d3:18:b1:91:71:f6:70:ee:a7: ff:0c:60:43:45:2e:1e:a4:b8:c7:b2:74:06:28:23:72:0b:4a: 7f:c4:7a:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFDOTExMC8GA1UEBRMoREU0Q0U5NjBBMzkzMEFCNEMyMjdGQ0U4Rjg1N0MwODQx OTdGMDhEMDAeFw0yNTA2MTIxOTQzMDhaFw0yNTA2MTkxOTQzMDhaMBgxFjAUBgNV BAMTDTY4NGIyZGNjLWFhNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5w7j4FWtgBdkVMciQHYh03H41uIvZsSyQ6v7aR7xs5ez92Nom7iZrgWhed8PH wQnFLkafUEx51cfkx9SvuGb795fLTI/YDYzdplw1KYxeOK0DoRNBrwIdCvfVtVWy nGvEb9cuN8fCryKNvRBpMvKu93ywn4nztSBLaeZJNlnOnq08UfGLXF4M0cYFCiI8 kYUnSx9Nn/bcOcPgTkOJg99Yv8HddQ+ROlPntBpfijfkLWVko7n0mjJuG1uK87OG ObDVlMZf4l2oFHyomAofJH142e7Pa3V1i0o5PlpkUhpgCkTv76QXh56n/W5QvYeu y9V5rFtquzn7i10Vd55qDL4RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuCj1oDSG DBC+YnEAXOQ877cKryswHwYDVR0jBBgwFoAU3kzpYKOTCrTCJ/zo+FfAhBl/CNAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUM5LzZBNTdBQjhDN0Y5 NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2t6cFlLT1RDclRDSl96by1GZkFoQmxfQ05BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUM5LzZBNTdBQjhDN0Y5NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JU Q0pfem8tRmZBaEJsX0NOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANzwn3mCL0tMsIG3l9N+7UBSsfHcsgGhvcMlM5r2eV4gkNL3bZHigJWk 2uEEKcLFNjtAtzroRGcR3pXwTayqxITrmL37n8IDysC3eEj0FO62b8n49b0GElVU qzpN8xbOBuYXgYOca1nhVm7bzHA6p2yk8gpGqDtO75nQH2KclWt9nhrTSzEObCnc +IhGZh8RBETnR3WsD4kkZBhM743cjBoAxn9edkts21QgjbpUl5aYsdunjizG73at jQWA0aKxiOQvadPNZtC/870geNsFauZ7bYAvUc190MpSo6hirQ04ptMYsZFx9nDu p/8MYENFLh6kuMeydAYoI3ILSn/EejU= -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:36 2025 by rpki-client