$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: +KgmmobwTlVrfXMvNU1GBcwUepIlyn2eqr5AkHdhS9U= Subject key identifier: 27:5B:32:72:54:21:D3:0F:CC:28:00:7B:E3:FF:E9:D4:76:1C:05:49 Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0A7C Signing time: Fri 22 Aug 2025 19:59:38 +0000 Manifest this update: Fri 22 Aug 2025 19:59:37 +0000 Manifest next update: Fri 29 Aug 2025 19:59:37 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: GKhZv9ny6C2OAn4TQeylXLEAyupnacTlyo3wOK4fRN8=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: qbK0SRsjZmgPEhHCvpQ8WHXr9ovPv+iMo1ylb0vxYmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Aug 22 19:59:37 2025 GMT Not After : Aug 29 19:59:37 2025 GMT Subject: CN=68a8cc2a-33ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:57:55:ee:d7:6c:fe:03:9b:31:5a:af:38:57: 49:1a:80:50:18:29:13:6b:38:53:31:e7:3e:17:97: 15:f0:5d:64:fe:db:2e:aa:ee:49:24:1b:04:e8:dc: 8e:44:94:4a:ae:40:38:cd:8e:ce:73:a7:5e:48:5b: 8b:17:2c:bb:ed:ba:a6:ec:2a:8d:0b:30:2a:d1:aa: 10:2c:87:f5:20:4b:1e:11:06:e8:20:07:7d:f8:4c: 0d:05:82:78:e8:a3:01:b4:be:94:0a:6f:9a:bc:a8: 06:1d:d8:28:98:7e:7a:1c:5c:24:24:e7:2a:0e:fe: f7:97:da:69:3a:47:6a:ed:67:0b:28:35:fa:f7:3f: 52:e4:20:a4:24:e2:26:a3:dd:9b:bb:de:aa:f2:ae: f4:fc:fe:bf:7a:7d:4e:5f:36:8d:d1:fe:2f:44:20: e5:c7:15:18:0e:2b:ed:21:9a:66:89:c6:1a:fc:1a: 2d:db:f9:ad:95:a3:ba:6a:c0:55:06:86:22:35:f6: b6:67:94:97:42:6f:64:90:6b:df:60:77:17:d8:8a: 6f:77:80:c8:ef:42:87:9d:7d:1c:cb:b0:5f:50:4f: ee:70:61:54:94:5c:8b:f6:11:ca:55:28:5c:6b:3b: 09:74:81:f2:1c:b8:1c:52:86:da:c9:00:f8:f7:c5: df:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5B:32:72:54:21:D3:0F:CC:28:00:7B:E3:FF:E9:D4:76:1C:05:49 X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:58:02:ca:e1:78:d1:a5:a0:25:64:b4:68:fc:cb:4e:aa:1f: 35:2a:d4:10:6f:51:d5:aa:64:19:b0:b4:19:da:42:94:51:a2: 76:45:05:2e:b0:11:90:4e:10:68:13:f8:cf:5f:31:a9:d5:ba: de:6c:5c:80:0f:7c:ca:03:04:70:ca:37:99:ee:5f:49:c7:9f: 1e:c5:08:6d:d9:df:02:55:a3:23:23:95:ec:2f:9e:ae:76:e6: d6:fd:ae:22:3a:4d:2a:36:74:6f:ad:db:7a:e2:1f:74:c0:c7: 28:d3:fc:5a:14:5f:ae:28:1f:1a:41:f4:b6:f1:ef:49:f3:75: f5:61:44:6a:b5:b1:48:a9:02:da:06:e8:fa:2d:0f:86:ed:8c: 8d:0f:51:90:8a:28:a2:72:dc:bb:a5:3e:17:4a:e6:fb:46:c4: 4e:a2:4b:a6:46:2f:b5:6c:cc:b5:63:74:97:52:a5:9c:f7:5c: 13:27:52:f1:48:99:89:6c:87:fe:c0:11:f4:33:3e:02:b6:9b: 10:89:3a:35:a8:2e:31:ad:5f:e5:f2:75:1d:f6:d1:d5:aa:7e: 9a:3c:3b:1b:72:21:69:98:38:79:98:0f:d1:aa:68:96:7e:1b: ee:2f:db:02:08:23:09:bb:a6:cc:8f:fb:8d:0b:87:0d:0d:c5: 9e:c5:70:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFDOTExMC8GA1UEBRMoREU0Q0U5NjBBMzkzMEFCNEMyMjdGQ0U4Rjg1N0MwODQx OTdGMDhEMDAeFw0yNTA4MjIxOTU5MzdaFw0yNTA4MjkxOTU5MzdaMBgxFjAUBgNV BAMTDTY4YThjYzJhLTMzZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoV1Xu12z+A5sxWq84V0kagFAYKRNrOFMx5z4XlxXwXWT+2y6q7kkkGwTo3I5E lEquQDjNjs5zp15IW4sXLLvtuqbsKo0LMCrRqhAsh/UgSx4RBuggB334TA0Fgnjo owG0vpQKb5q8qAYd2CiYfnocXCQk5yoO/veX2mk6R2rtZwsoNfr3P1LkIKQk4iaj 3Zu73qryrvT8/r96fU5fNo3R/i9EIOXHFRgOK+0hmmaJxhr8Gi3b+a2Vo7pqwFUG hiI19rZnlJdCb2SQa99gdxfYim93gMjvQoedfRzLsF9QT+5wYVSUXIv2EcpVKFxr Owl0gfIcuBxShtrJAPj3xd8dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ1syclQh 0w/MKAB74//p1HYcBUkwHwYDVR0jBBgwFoAU3kzpYKOTCrTCJ/zo+FfAhBl/CNAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUM5LzZBNTdBQjhDN0Y5 NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2t6cFlLT1RDclRDSl96by1GZkFoQmxfQ05BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUM5LzZBNTdBQjhDN0Y5NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JU Q0pfem8tRmZBaEJsX0NOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFhYAsrheNGloCVktGj8y06qHzUq1BBvUdWqZBmwtBnaQpRRonZFBS6w EZBOEGgT+M9fManVut5sXIAPfMoDBHDKN5nuX0nHnx7FCG3Z3wJVoyMjlewvnq52 5tb9riI6TSo2dG+t23riH3TAxyjT/FoUX64oHxpB9Lbx70nzdfVhRGq1sUipAtoG 6PotD4btjI0PUZCKKKJy3LulPhdK5vtGxE6iS6ZGL7VszLVjdJdSpZz3XBMnUvFI mYlsh/7AEfQzPgK2mxCJOjWoLjGtX+XydR320dWqfpo8OxtyIWmYOHmYD9GqaJZ+ G+4v2wIIIwm7psyP+40Lhw0NxZ7FcGw= -----END CERTIFICATE-----Generated at Sat Aug 23 22:42:39 2025 by rpki-client