$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json) Hash identifier: SAJdyxXGUVWL8hW+vk2KPlsE1uax0FvUwUcwSRBYF+0= Subject key identifier: FA:E9:11:EA:41:9C:50:A8:36:7D:C7:13:71:9D:6D:72:27:81:3D:11 Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft Manifest number: 0193 Signing time: Sat 23 Aug 2025 03:34:38 +0000 Manifest this update: Sat 23 Aug 2025 03:34:38 +0000 Manifest next update: Sat 30 Aug 2025 03:34:38 +0000 Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: 93eRhuhASB+0ceMIsHqDJ+4IXPhKDcUIlKCU1aPYPB8=) 2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: WJ3Am2HQwJLsBb4IAygJWTOhl2B7OGnwyXaVHWvKYoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B40, serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Validity Not Before: Aug 23 03:34:38 2025 GMT Not After : Aug 30 03:34:38 2025 GMT Subject: CN=68a936ce-87e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:55:50:92:ab:8c:33:fd:3c:01:da:57:93:18: d6:4c:d3:a1:c3:6a:48:5d:1b:3a:37:f0:d5:79:5d: b8:16:5b:26:b4:1d:19:f7:e9:ec:87:8a:65:88:30: 1c:4d:0e:b8:97:bc:4e:f2:86:31:d0:be:ab:6e:43: 5a:ab:e4:03:f6:be:f1:c6:c8:26:2a:5f:1a:7d:0a: fa:70:96:16:ad:37:31:af:a9:6d:08:16:a4:c5:8e: 1c:97:a0:55:aa:91:0d:28:d6:59:a8:c5:b7:be:e0: af:be:00:9b:61:c5:16:6c:2a:64:1c:ee:fd:c4:70: 5b:51:98:2c:ff:5e:18:e8:0c:10:b3:09:62:22:74: 4a:60:8c:23:63:5b:25:01:7f:3d:4e:59:f8:dd:f8: 2f:4d:4d:89:d6:07:0b:b7:5b:a9:bf:ba:bc:4a:8c: 25:8e:af:3b:a1:a9:b7:91:3f:96:a1:50:d2:29:9a: bb:31:6a:1c:df:e2:97:75:ac:34:1f:21:a8:cb:a2: 8d:fe:41:fb:af:a3:66:fa:9c:26:7f:45:22:16:bf: 8b:83:82:68:79:8b:c1:44:49:77:11:bb:73:8b:d6: 75:1d:cc:ce:00:44:27:8c:39:93:a6:1e:80:96:bc: 06:71:bd:06:13:39:1a:4f:b6:44:86:ee:b5:b4:64: 66:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E9:11:EA:41:9C:50:A8:36:7D:C7:13:71:9D:6D:72:27:81:3D:11 X509v3 Authority Key Identifier: keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ae:9f:01:19:4e:a0:26:00:16:14:ae:5a:1e:7a:d8:f2:50: fc:36:60:81:67:91:75:14:34:21:44:8c:6d:d3:20:1b:27:78: 9f:8e:e4:e3:e2:73:fe:7c:6f:c2:a2:58:2a:4e:f0:02:38:cb: b6:e3:83:a5:ab:55:c4:6b:e4:f0:9a:4f:21:dd:c2:ba:d3:fa: bf:f9:03:82:78:22:df:14:6d:20:50:de:85:f6:d4:bf:7c:57: 7e:03:70:f2:35:63:41:fc:6b:69:c6:01:de:98:0b:62:19:ae: 15:5b:f5:54:ba:94:45:d7:e1:82:19:17:06:6d:59:03:1b:10: 47:09:c7:10:a9:c3:cd:79:83:70:bd:12:55:be:78:18:18:69: 84:85:bc:1a:9a:69:b0:dd:4c:8a:06:ca:2f:c8:40:f1:99:d6: 52:b0:d6:e7:4b:a7:b5:0f:26:ec:0f:c9:a7:8b:f7:ef:4f:aa: e1:ff:0c:f6:b5:f6:6b:b9:25:92:86:18:9e:5d:fa:25:a7:5f: 75:d1:11:f0:51:a2:36:18:cc:86:33:29:23:b2:34:86:26:10: d2:1d:39:6a:01:ba:72:03:95:63:65:a8:a2:5c:f0:18:41:b2: 37:8b:8a:58:18:f1:f5:cb:06:0b:f3:e9:70:c6:eb:38:f1:09: ad:eb:1f:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDAxMTAvBgNVBAUTKDNDQUNEQ0ZFMjdFODkwOERDNDdGMzNFRjkxNEFFM0M1 MDhCQTQ3QjMwHhcNMjUwODIzMDMzNDM4WhcNMjUwODMwMDMzNDM4WjAYMRYwFAYD VQQDEw02OGE5MzZjZS04N2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFVQkquMM/08AdpXkxjWTNOhw2pIXRs6N/DVeV24FlsmtB0Z9+nsh4pliDAc TQ64l7xO8oYx0L6rbkNaq+QD9r7xxsgmKl8afQr6cJYWrTcxr6ltCBakxY4cl6BV qpENKNZZqMW3vuCvvgCbYcUWbCpkHO79xHBbUZgs/14Y6AwQswliInRKYIwjY1sl AX89Tln43fgvTU2J1gcLt1upv7q8Sowljq87oam3kT+WoVDSKZq7MWoc3+KXdaw0 HyGoy6KN/kH7r6Nm+pwmf0UiFr+Lg4JoeYvBREl3Ebtzi9Z1HczOAEQnjDmTph6A lrwGcb0GEzkaT7ZEhu61tGRmfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrpEepB nFCoNn3HE3GdbXIngT0RMB8GA1UdIwQYMBaAFDys3P4n6JCNxH8z75FK48UIukez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0MC9GMDFDQTlDNjFC MjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJM0VmelB2a1VyanhRaTZS N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BLemNfaWZva0kzRWZ6UHZrVXJqeFFpNlI3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0MC9GMDFDQTlDNjFCMjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJ M0VmelB2a1VyanhRaTZSN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsrp8BGU6gJgAWFK5aHnrY8lD8NmCBZ5F1FDQhRIxt0yAbJ3ifjuTj 4nP+fG/ColgqTvACOMu244Olq1XEa+Twmk8h3cK60/q/+QOCeCLfFG0gUN6F9tS/ fFd+A3DyNWNB/GtpxgHemAtiGa4VW/VUupRF1+GCGRcGbVkDGxBHCccQqcPNeYNw vRJVvngYGGmEhbwammmw3UyKBsovyEDxmdZSsNbnS6e1DybsD8mni/fvT6rh/wz2 tfZruSWShhieXfolp1910RHwUaI2GMyGMykjsjSGJhDSHTlqAbpyA5VjZaiiXPAY QbI3i4pYGPH1ywYL8+lwxus48Qmt6x++ -----END CERTIFICATE-----Generated at Sun Aug 24 05:17:50 2025 by rpki-client