$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json) Hash identifier: AB0HlnwOamnLb9q339IuLUthy1KJMBtVJzscEUH5mMo= Subject key identifier: 22:AF:B1:83:AF:D8:B6:FD:6E:9F:3F:5B:3A:53:9A:5D:5E:CB:BC:80 Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft Manifest number: 0179 Signing time: Thu 03 Jul 2025 03:50:09 +0000 Manifest this update: Thu 03 Jul 2025 03:50:08 +0000 Manifest next update: Thu 10 Jul 2025 03:50:08 +0000 Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: tTqQ3E3E+D9pGK9BvrkkHQhERoFeepiO4yZo2ZjzVjo=) 2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: WJ3Am2HQwJLsBb4IAygJWTOhl2B7OGnwyXaVHWvKYoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B40, serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Validity Not Before: Jul 3 03:50:08 2025 GMT Not After : Jul 10 03:50:08 2025 GMT Subject: CN=6865fdf0-4f27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d1:23:56:f7:7c:8c:50:34:e4:68:5e:30:07: 71:77:1c:57:40:49:7b:e2:ac:bc:50:9d:b4:32:d4: c4:11:97:8e:6e:23:3d:ab:44:b8:bc:2f:14:c2:3d: 0b:9a:53:0a:27:0a:1f:7d:01:ac:54:e0:6c:27:2f: 14:7a:5c:86:0e:2d:f4:e6:02:52:25:cc:f5:a2:d4: 6f:0a:a7:eb:15:59:69:38:d5:57:4c:c3:59:63:c4: 7e:a0:59:9a:cf:46:93:f6:8c:df:fc:10:ed:59:a5: a1:3c:64:a6:a7:d6:fe:e5:5a:e2:e6:ab:55:f3:f4: e7:77:7f:c2:95:98:d7:77:93:fc:60:9e:e2:f2:c6: 72:e6:72:54:e2:91:9a:47:36:55:fe:34:7b:ca:be: d8:61:3b:b7:1f:d1:07:9c:ed:49:8e:e6:c8:2a:e7: 0f:af:c3:2a:13:7c:66:c4:ec:5c:50:c7:da:97:f7: 77:14:40:c2:b9:41:6a:6b:44:a0:b9:8a:f5:3d:5c: 8a:ee:83:d7:90:e4:43:26:3c:11:43:ae:a4:db:74: 00:2b:35:e2:de:75:b1:e1:53:24:1d:df:67:7a:88: c7:5a:98:2b:95:d2:ef:e9:ee:97:45:07:0f:cd:33: 21:27:bf:6d:ef:98:96:0f:36:82:aa:95:34:d5:6b: c1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AF:B1:83:AF:D8:B6:FD:6E:9F:3F:5B:3A:53:9A:5D:5E:CB:BC:80 X509v3 Authority Key Identifier: keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:6f:f7:d9:75:80:01:bf:40:24:77:85:80:d0:68:5b:2f:88: 9f:55:f4:36:c4:ce:9b:03:8e:dd:5b:ac:da:10:c8:08:62:e4: 56:c4:ef:06:f1:89:57:0d:a5:77:7e:10:c1:1e:1e:94:37:39: ad:1a:a6:78:79:63:e4:91:17:1c:e9:65:93:01:8a:0e:05:99: 9f:5c:6f:9f:38:b9:64:c4:fe:33:aa:e9:3b:f5:e2:91:e6:29: 30:8e:e4:6a:f4:f4:7c:e3:05:68:dd:17:cd:92:2e:a6:eb:9f: 15:5d:f4:b5:ee:bf:b7:5e:c1:65:5f:a8:f7:9c:a0:85:fe:b3: a7:f0:83:1d:c8:3f:c3:68:b7:93:2e:c0:e2:05:60:22:81:19: da:21:da:54:7b:d1:8f:14:07:b2:fe:46:45:ce:f1:1b:36:e4: ff:0d:f7:f6:af:3c:44:bc:a3:03:4c:25:e9:6f:19:15:1f:60: d0:22:23:12:2b:c8:4a:c1:c2:f2:e9:66:01:c1:12:cc:98:8d: 1b:3d:7c:9c:df:92:c5:89:f3:0d:1e:40:8d:11:17:e4:7f:63: b1:51:e2:01:76:51:1f:87:d9:49:39:98:1a:ad:b9:66:d2:2b: b5:4f:f5:8f:b9:d5:f8:5f:ad:f4:20:f7:2c:bf:c4:2a:c7:e7: 55:69:a5:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDAxMTAvBgNVBAUTKDNDQUNEQ0ZFMjdFODkwOERDNDdGMzNFRjkxNEFFM0M1 MDhCQTQ3QjMwHhcNMjUwNzAzMDM1MDA4WhcNMjUwNzEwMDM1MDA4WjAYMRYwFAYD VQQDEw02ODY1ZmRmMC00ZjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NEjVvd8jFA05GheMAdxdxxXQEl74qy8UJ20MtTEEZeObiM9q0S4vC8Uwj0L mlMKJwoffQGsVOBsJy8UelyGDi305gJSJcz1otRvCqfrFVlpONVXTMNZY8R+oFma z0aT9ozf/BDtWaWhPGSmp9b+5Vri5qtV8/Tnd3/ClZjXd5P8YJ7i8sZy5nJU4pGa RzZV/jR7yr7YYTu3H9EHnO1JjubIKucPr8MqE3xmxOxcUMfal/d3FEDCuUFqa0Sg uYr1PVyK7oPXkORDJjwRQ66k23QAKzXi3nWx4VMkHd9neojHWpgrldLv6e6XRQcP zTMhJ79t75iWDzaCqpU01WvBYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKvsYOv 2Lb9bp8/WzpTml1ey7yAMB8GA1UdIwQYMBaAFDys3P4n6JCNxH8z75FK48UIukez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0MC9GMDFDQTlDNjFC MjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJM0VmelB2a1VyanhRaTZS N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BLemNfaWZva0kzRWZ6UHZrVXJqeFFpNlI3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0MC9GMDFDQTlDNjFCMjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJ M0VmelB2a1VyanhRaTZSN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqb/fZdYABv0Akd4WA0GhbL4ifVfQ2xM6bA47dW6zaEMgIYuRWxO8G 8YlXDaV3fhDBHh6UNzmtGqZ4eWPkkRcc6WWTAYoOBZmfXG+fOLlkxP4zquk79eKR 5ikwjuRq9PR84wVo3RfNki6m658VXfS17r+3XsFlX6j3nKCF/rOn8IMdyD/DaLeT LsDiBWAigRnaIdpUe9GPFAey/kZFzvEbNuT/Dff2rzxEvKMDTCXpbxkVH2DQIiMS K8hKwcLy6WYBwRLMmI0bPXyc35LFifMNHkCNERfkf2OxUeIBdlEfh9lJOZgarblm 0iu1T/WPudX4X630IPcsv8Qqx+dVaaVu -----END CERTIFICATE-----Generated at Sat Jul 5 03:19:08 2025 by rpki-client