$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: GuPWTUwrjDQCd/O8OVnTlRKyxJf+mhDaCFk6fbQ2YDQ= Subject key identifier: F1:A0:30:78:7B:A3:A8:70:6B:9F:D9:DD:25:84:C9:FE:7C:79:ED:C5 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C0C Signing time: Wed 02 Jul 2025 18:58:45 +0000 Manifest this update: Wed 02 Jul 2025 18:58:45 +0000 Manifest next update: Wed 09 Jul 2025 18:58:45 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: +vIg9ITUCzR6pIEPfLaDQdGoriKRda62YM3OcvTcSk4=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Jul 2 18:58:45 2025 GMT Not After : Jul 9 18:58:45 2025 GMT Subject: CN=68658165-7c0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:00:96:e1:28:47:6a:ad:43:0e:6f:7a:de:0c: 8c:89:90:b0:21:59:bd:b5:b6:54:e0:c0:c8:df:b5: 02:d1:23:16:95:d1:a3:ae:6d:7f:2d:68:a5:a6:5c: 69:0d:83:80:47:33:53:10:3e:80:50:00:2a:97:d3: 7c:27:89:f2:10:67:e8:27:12:3e:9f:c9:04:f5:21: 05:a6:19:73:9e:e8:6d:b2:08:c0:29:e5:d4:02:0a: 5e:02:74:38:3a:63:f9:0d:58:f7:92:58:c6:57:3d: 9b:56:e0:4a:3f:e8:e1:8b:28:27:68:4d:48:41:ad: df:73:f1:60:2e:8b:56:bf:12:99:4f:90:31:1e:63: bd:b4:e6:47:5f:02:68:a2:5d:04:2f:cf:00:fd:d7: 6d:2b:10:40:df:70:ea:9f:e9:1b:12:76:3f:54:75: 53:1a:e8:f2:59:b3:70:05:e7:57:00:70:c2:03:b8: b1:16:9d:f2:96:23:73:65:84:d9:3b:c1:26:28:a7: 27:db:7d:d6:5e:fc:03:42:4a:7f:ae:51:c0:5c:e6: 02:30:80:20:77:08:12:21:ed:b1:bf:fd:73:8f:b0: af:74:ce:bd:f1:a4:03:67:d6:3d:cd:6a:b6:ee:98: ed:5b:60:79:e1:ca:6f:99:b7:ba:df:73:5c:d2:82: 80:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A0:30:78:7B:A3:A8:70:6B:9F:D9:DD:25:84:C9:FE:7C:79:ED:C5 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:b8:db:15:84:f0:1a:c4:43:ed:78:e0:26:d7:49:8b:d7:63: 26:b1:42:15:51:e1:e5:d9:a1:f3:3c:a8:92:e4:d5:09:6f:3f: 3e:99:47:98:c5:9f:ca:92:b2:21:06:76:ff:e7:3d:26:fb:45: 6b:a6:61:94:36:6f:d6:1c:b7:cd:89:22:97:d6:62:c3:3e:87: 2a:83:22:43:5a:dc:a8:c3:5b:36:21:ab:bb:c8:fc:a5:d2:f0: 9f:d6:39:73:23:75:86:71:d6:b4:d4:88:19:68:f2:e0:11:d2: 67:df:af:ad:2c:f1:c5:cf:b6:13:5e:fb:1d:85:62:cb:2e:28: 81:e4:d5:59:53:2e:2e:f5:13:29:4d:79:eb:da:1b:bd:99:3b: a4:b2:a4:43:c5:13:cc:ca:75:8c:06:ec:b2:58:4a:86:73:85: 92:aa:14:09:d8:f0:38:f9:d4:26:a2:f9:74:35:ae:34:33:29: 87:0b:e2:bd:ab:ce:c0:3a:80:39:cd:4f:51:33:42:a0:7b:e7: 5b:20:43:3d:5e:82:79:64:e7:62:b4:11:77:08:2b:0f:2f:f4: 9d:14:90:00:04:65:9e:1e:de:de:7e:c0:ec:7a:c5:bc:c9:a5: b9:6d:2b:43:0d:58:27:54:da:8e:f0:1b:c2:a3:70:03:a4:8d: 8a:22:12:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjUwNzAyMTg1ODQ1WhcNMjUwNzA5MTg1ODQ1WjAYMRYwFAYD VQQDEw02ODY1ODE2NS03YzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwCW4ShHaq1DDm963gyMiZCwIVm9tbZU4MDI37UC0SMWldGjrm1/LWilplxp DYOARzNTED6AUAAql9N8J4nyEGfoJxI+n8kE9SEFphlznuhtsgjAKeXUAgpeAnQ4 OmP5DVj3kljGVz2bVuBKP+jhiygnaE1IQa3fc/FgLotWvxKZT5AxHmO9tOZHXwJo ol0EL88A/ddtKxBA33Dqn+kbEnY/VHVTGujyWbNwBedXAHDCA7ixFp3yliNzZYTZ O8EmKKcn233WXvwDQkp/rlHAXOYCMIAgdwgSIe2xv/1zj7CvdM698aQDZ9Y9zWq2 7pjtW2B54cpvmbe633Nc0oKAtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGgMHh7 o6hwa5/Z3SWEyf58ee3FMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4uNsVhPAaxEPteOAm10mL12MmsUIVUeHl2aHzPKiS5NUJbz8+mUeY xZ/KkrIhBnb/5z0m+0VrpmGUNm/WHLfNiSKX1mLDPocqgyJDWtyow1s2Iau7yPyl 0vCf1jlzI3WGcda01IgZaPLgEdJn36+tLPHFz7YTXvsdhWLLLiiB5NVZUy4u9RMp TXnr2hu9mTuksqRDxRPMynWMBuyyWEqGc4WSqhQJ2PA4+dQmovl0Na40MymHC+K9 q87AOoA5zU9RM0Kge+dbIEM9XoJ5ZOditBF3CCsPL/SdFJAABGWeHt7efsDsesW8 yaW5bStDDVgnVNqO8BvCo3ADpI2KIhKx -----END CERTIFICATE-----Generated at Thu Jul 3 10:32:56 2025 by rpki-client