$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json) Hash identifier: o/m/n2b3+RBZxZ0W7HDnmXPNEbBP+3hwL7lRKQWhE64= Subject key identifier: AE:C0:FD:55:AD:0C:70:CB:19:3A:33:CA:1A:4D:1F:8E:3A:8D:83:3F Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft Manifest number: 0181 Signing time: Sat 19 Jul 2025 03:50:49 +0000 Manifest this update: Sat 19 Jul 2025 03:50:48 +0000 Manifest next update: Sat 26 Jul 2025 03:50:48 +0000 Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: f+cw6eCLo8pqaE+4ycbJWEGyiJhtFUgiBDKefmvXxYA=) 2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: WJ3Am2HQwJLsBb4IAygJWTOhl2B7OGnwyXaVHWvKYoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B40, serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Validity Not Before: Jul 19 03:50:48 2025 GMT Not After : Jul 26 03:50:48 2025 GMT Subject: CN=687b1618-d902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fb:40:59:c5:55:1f:9b:cd:93:c1:75:37:57: 58:32:15:c4:62:17:c2:3c:cc:e7:e0:1b:4a:7d:65: 09:ef:54:ca:90:4a:1f:0a:d2:55:53:bc:7e:22:5c: 74:28:a1:ac:7c:4f:dd:61:9f:1c:43:c7:b9:49:d9: 12:3a:44:96:2f:71:74:09:07:dc:04:3c:61:6b:65: ca:b3:ef:2d:6b:94:b3:60:ee:89:24:2d:99:ee:e7: 8e:61:e3:e2:f9:89:fa:6d:a1:1c:71:18:fa:e5:c2: a7:00:93:ea:a7:03:5b:90:17:c1:b7:73:56:f6:f9: 03:1b:fb:3a:c1:5a:38:4e:71:60:5a:a3:37:9a:98: d8:77:c6:5e:92:00:f0:de:dc:6a:fa:47:7d:fe:be: 9c:e9:27:e0:85:11:b2:7f:37:01:0e:39:8b:68:27: 07:c6:f1:f0:cf:6b:31:c3:ea:eb:59:9e:f3:d2:0d: ce:89:28:37:ad:f5:7c:79:18:8e:db:4e:48:c3:02: 2a:69:07:81:0a:2b:b1:18:56:f8:c4:1e:84:2c:02: 2a:dd:6b:08:02:a3:04:1b:73:83:45:b4:a9:fa:a1: 52:e2:45:b1:a3:f6:e1:33:11:42:f9:b1:eb:5a:ab: 41:b0:2b:bd:be:09:1e:e2:ea:b8:ff:86:c4:25:cc: 69:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C0:FD:55:AD:0C:70:CB:19:3A:33:CA:1A:4D:1F:8E:3A:8D:83:3F X509v3 Authority Key Identifier: keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:2a:25:b5:ff:e0:da:eb:0c:53:66:86:1a:74:34:68:98:ac: 78:02:ad:80:77:63:83:1c:e3:bc:9e:f0:0d:3f:b3:b1:c6:93: 34:90:4b:93:f4:24:6d:8d:7c:c3:c8:95:4c:6e:1c:2f:1f:db: 25:3d:9b:f5:e6:77:d4:bc:8f:d3:b2:6d:b6:4e:fc:55:ee:98: f6:4a:1e:21:be:e9:1e:21:a3:58:ca:cd:f6:34:8b:4b:3a:6c: f2:6a:7f:a3:4f:88:c6:31:9f:19:c1:2f:e6:05:70:a5:ba:cc: 09:57:29:34:1f:69:86:4b:37:36:9d:5c:08:03:2c:36:4c:1b: 8f:f4:2c:a2:fb:9e:90:c2:f6:99:87:37:7a:0e:0e:c2:f8:ee: d1:14:1c:03:07:0f:6e:25:3b:8c:55:6b:94:ff:f6:7f:21:45: 10:ed:4a:1f:d6:69:b2:46:e6:6d:1a:74:73:25:1a:59:bc:5a: f0:c7:36:1b:a4:af:5a:e3:41:78:de:51:12:1b:90:91:e1:d8: 68:38:15:ca:c2:b1:f2:20:90:fa:2d:c2:39:1b:d0:4f:58:a3: 4e:c8:78:1a:3d:10:34:a0:be:23:91:73:22:17:7d:f3:55:e7: 7b:46:5a:d5:17:10:5f:74:61:06:f5:8c:46:a2:11:ca:3c:4f: 76:d0:37:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDAxMTAvBgNVBAUTKDNDQUNEQ0ZFMjdFODkwOERDNDdGMzNFRjkxNEFFM0M1 MDhCQTQ3QjMwHhcNMjUwNzE5MDM1MDQ4WhcNMjUwNzI2MDM1MDQ4WjAYMRYwFAYD VQQDEw02ODdiMTYxOC1kOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ftAWcVVH5vNk8F1N1dYMhXEYhfCPMzn4BtKfWUJ71TKkEofCtJVU7x+Ilx0 KKGsfE/dYZ8cQ8e5SdkSOkSWL3F0CQfcBDxha2XKs+8ta5SzYO6JJC2Z7ueOYePi +Yn6baEccRj65cKnAJPqpwNbkBfBt3NW9vkDG/s6wVo4TnFgWqM3mpjYd8ZekgDw 3txq+kd9/r6c6SfghRGyfzcBDjmLaCcHxvHwz2sxw+rrWZ7z0g3OiSg3rfV8eRiO 205IwwIqaQeBCiuxGFb4xB6ELAIq3WsIAqMEG3ODRbSp+qFS4kWxo/bhMxFC+bHr WqtBsCu9vgke4uq4/4bEJcxpCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7A/VWt DHDLGTozyhpNH446jYM/MB8GA1UdIwQYMBaAFDys3P4n6JCNxH8z75FK48UIukez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0MC9GMDFDQTlDNjFC MjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJM0VmelB2a1VyanhRaTZS N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BLemNfaWZva0kzRWZ6UHZrVXJqeFFpNlI3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0MC9GMDFDQTlDNjFCMjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJ M0VmelB2a1VyanhRaTZSN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0KiW1/+Da6wxTZoYadDRomKx4Aq2Ad2ODHOO8nvANP7OxxpM0kEuT 9CRtjXzDyJVMbhwvH9slPZv15nfUvI/Tsm22TvxV7pj2Sh4hvukeIaNYys32NItL Omzyan+jT4jGMZ8ZwS/mBXCluswJVyk0H2mGSzc2nVwIAyw2TBuP9Cyi+56QwvaZ hzd6Dg7C+O7RFBwDBw9uJTuMVWuU//Z/IUUQ7Uof1mmyRuZtGnRzJRpZvFrwxzYb pK9a40F43lESG5CR4dhoOBXKwrHyIJD6LcI5G9BPWKNOyHgaPRA0oL4jkXMiF33z Ved7RlrVFxBfdGEG9YxGohHKPE920DdA -----END CERTIFICATE-----Generated at Sun Jul 20 19:09:39 2025 by rpki-client