$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: WtV3Co5rcKw+pTBgkFgVDqOEeJGK8Zpj9bjvtD/rM/0= Subject key identifier: 69:14:E4:33:D3:F8:38:67:32:F3:D2:23:0C:99:C1:C9:ED:1F:37:88 Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 03A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 039B Signing time: Thu 19 Jun 2025 00:38:36 +0000 Manifest this update: Thu 19 Jun 2025 00:38:35 +0000 Manifest next update: Thu 26 Jun 2025 00:38:35 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: F7EnydiRFEBuxbizne3tI/TrXgTvsfthDn3pTFApc40=) 2: 4D7F18D69F8911EC8270CE39C4F9AE02.roa (hash: 0t4pRp/9HpBWWGpsNbOV6QZlF+pCTN3GNbTfKEK0f+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7, serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: Jun 19 00:38:35 2025 GMT Not After : Jun 26 00:38:35 2025 GMT Subject: CN=68535c0c-fe58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:53:2f:62:4f:0c:23:0f:20:0f:ee:ff:0a:4a: 19:2b:d2:87:28:e5:6d:98:bc:3c:d3:59:70:be:0f: 55:a3:8c:b9:ed:e0:2f:70:b7:ce:58:b3:c6:f9:c7: 25:6b:32:a3:3c:18:9d:30:0b:3e:62:fc:4d:be:57: 38:42:d4:62:aa:91:e0:be:4f:70:f3:39:77:a1:50: be:80:20:4f:41:03:af:5a:17:67:21:7c:e1:41:69: 06:c8:90:7b:ca:de:7d:a6:9d:aa:f5:0d:e5:dc:ed: 45:07:33:dd:c2:08:69:1e:aa:e2:2f:37:87:ba:db: e2:dc:9e:f4:a4:f8:a7:fc:23:c2:97:13:5d:2a:cd: e2:56:85:44:30:24:6a:08:c9:a3:12:cc:50:ef:af: bb:1f:28:c8:50:b1:e6:54:80:50:6e:c3:ee:e3:ce: 93:15:ad:60:19:cb:e0:59:c8:4a:09:1e:e0:e6:59: 2b:1f:d1:6f:05:08:5f:84:b3:6e:12:13:b1:bb:eb: 2a:70:ba:d2:42:c0:e8:f1:4e:3d:48:28:f7:e7:03: e2:c8:38:09:a3:cb:23:b3:83:16:0d:29:58:50:ee: 16:5a:f1:28:97:eb:e8:89:2a:c0:83:da:4d:90:e8: 93:00:e4:f2:e9:7e:dc:c4:05:fb:86:65:5e:7d:e4: 29:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:14:E4:33:D3:F8:38:67:32:F3:D2:23:0C:99:C1:C9:ED:1F:37:88 X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:16:03:73:fc:cb:ac:df:73:7e:98:43:3c:af:32:3a:2a:8d: 37:ea:d7:19:33:8a:5c:a0:8b:83:99:c4:40:60:34:e1:d7:0f: ab:97:55:3c:7a:a8:23:73:96:36:ce:9b:53:b4:34:4c:4c:e2: 1b:f3:da:5c:14:3a:7d:24:68:04:6b:3e:2a:3f:d4:ff:c5:bd: f6:94:bf:50:3d:1d:de:7d:cf:a6:a8:6d:81:7c:bc:92:74:2d: 2f:2b:ab:e5:b5:9f:6d:df:99:ef:31:3e:0b:04:9c:b4:08:ee: e9:7a:82:57:9a:d2:cf:86:d9:7a:b5:e5:7f:69:1e:d6:a5:f3: 29:b5:1d:18:6d:d4:44:cb:d0:37:90:a7:82:f3:0a:54:97:37: 93:fe:9a:7a:92:4a:94:08:23:a1:ae:f3:43:5a:d5:66:c9:ed: d9:30:2a:cf:62:8f:cf:c7:1e:69:b4:b2:50:c8:49:3d:3a:61: 73:d7:53:6a:a7:30:87:96:5a:c8:1f:dd:8e:64:a2:a0:ff:90: 84:94:23:86:a1:bd:32:f8:2e:85:99:72:89:4e:aa:fd:a0:b6: aa:f4:35:52:c6:d6:6d:bb:46:29:0b:e9:ce:14:56:52:2d:d6: 20:54:8f:72:a1:bd:18:21:fc:a2:ea:05:e4:1a:fc:63:05:18: d7:8a:d9:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjUwNjE5MDAzODM1WhcNMjUwNjI2MDAzODM1WjAYMRYwFAYD VQQDEw02ODUzNWMwYy1mZTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFMvYk8MIw8gD+7/CkoZK9KHKOVtmLw801lwvg9Vo4y57eAvcLfOWLPG+ccl azKjPBidMAs+YvxNvlc4QtRiqpHgvk9w8zl3oVC+gCBPQQOvWhdnIXzhQWkGyJB7 yt59pp2q9Q3l3O1FBzPdwghpHqriLzeHutvi3J70pPin/CPClxNdKs3iVoVEMCRq CMmjEsxQ76+7HyjIULHmVIBQbsPu486TFa1gGcvgWchKCR7g5lkrH9FvBQhfhLNu EhOxu+sqcLrSQsDo8U49SCj35wPiyDgJo8sjs4MWDSlYUO4WWvEol+voiSrAg9pN kOiTAOTy6X7cxAX7hmVefeQptwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkU5DPT +DhnMvPSIwyZwcntHzeIMB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUFgNz/Mus33N+mEM8rzI6Ko036tcZM4pcoIuDmcRAYDTh1w+rl1U8 eqgjc5Y2zptTtDRMTOIb89pcFDp9JGgEaz4qP9T/xb32lL9QPR3efc+mqG2BfLyS dC0vK6vltZ9t35nvMT4LBJy0CO7peoJXmtLPhtl6teV/aR7WpfMptR0YbdREy9A3 kKeC8wpUlzeT/pp6kkqUCCOhrvNDWtVmye3ZMCrPYo/Pxx5ptLJQyEk9OmFz11Nq pzCHllrIH92OZKKg/5CElCOGob0y+C6FmXKJTqr9oLaq9DVSxtZtu0YpC+nOFFZS LdYgVI9yob0YIfyi6gXkGvxjBRjXitl4 -----END CERTIFICATE-----Generated at Thu Jun 19 16:09:06 2025 by rpki-client