$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: ITr5LXV9QUlmHsLrhbv4eSjPfbE8mqfhl5IqjBxpR08= Subject key identifier: 58:52:F6:7D:90:94:FB:1F:A1:47:70:D2:82:9D:A8:05:83:B1:50:C7 Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0A58 Signing time: Fri 18 Jul 2025 20:07:55 +0000 Manifest this update: Fri 18 Jul 2025 20:07:54 +0000 Manifest next update: Fri 25 Jul 2025 20:07:54 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: y7YsFwZ0hOLuHeqBbZAr0CEnD55aNUvjIAu0hfsoUuA=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: qbK0SRsjZmgPEhHCvpQ8WHXr9ovPv+iMo1ylb0vxYmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Jul 18 20:07:54 2025 GMT Not After : Jul 25 20:07:54 2025 GMT Subject: CN=687aa99b-ba61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:df:73:bd:ce:d5:55:2e:f9:f4:5a:3e:da:c4: fa:0d:7f:0e:68:93:f5:40:86:8c:55:1d:58:59:38: 67:81:e2:76:d5:07:9a:dc:e7:76:49:bf:b6:85:a5: 63:62:b2:dc:58:f1:3c:1a:bb:a7:96:6c:ea:a4:7c: 32:10:0c:12:36:f7:1e:ef:de:80:c4:f2:41:c3:36: e0:82:01:a5:83:98:ca:fa:8e:3d:bc:43:bb:c6:d5: 86:00:60:57:4b:7a:4a:7f:1f:7c:b4:09:9f:a9:03: 27:1f:8f:b3:7a:84:e0:b4:8f:54:23:b3:cb:af:25: 43:bc:68:8d:9d:82:35:9a:f0:f4:d5:6b:a5:3d:94: 5f:84:f6:9d:68:62:65:82:31:d3:29:fc:fc:85:b9: 6b:b6:6f:32:88:18:01:2b:6b:0d:c4:01:2b:f0:35: 9f:90:fe:05:c1:8e:5e:c7:4d:a6:0f:3e:55:b8:d3: 2c:9d:e5:3b:43:9f:48:6f:b1:31:14:df:87:71:4b: f9:fc:f1:6b:9c:b8:4d:6b:3e:26:99:c6:7a:ae:14: 3a:b7:ba:44:bb:fe:fc:0d:a4:23:94:bd:58:9b:47: ba:80:21:71:b4:bc:b7:ee:e6:1b:7c:8c:7e:69:1e: 5f:ca:42:04:2a:47:f7:d2:fd:3e:2d:c7:bb:c1:c0: 0b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:52:F6:7D:90:94:FB:1F:A1:47:70:D2:82:9D:A8:05:83:B1:50:C7 X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:55:ca:64:f0:71:fb:99:55:48:a9:0f:05:5a:f8:66:3e:85: af:b6:69:96:a0:e1:a4:b7:60:9b:8c:cd:a4:e8:91:d3:57:61: 1b:fd:39:6e:8d:3e:c4:78:48:2e:d1:00:18:ae:fa:b3:58:ec: e6:dc:8f:fb:ac:20:8d:0d:b8:33:9c:02:03:ff:4a:3d:41:79: da:fc:0f:af:42:64:3e:59:36:3c:ea:21:44:80:2c:44:ec:25: 64:37:dd:65:6a:57:6c:b9:99:ff:70:03:e4:81:b1:8e:75:04: 3a:58:fe:42:c9:f9:c0:20:b6:4f:b0:29:e5:15:83:0f:4c:02: 76:74:af:b0:fc:89:04:5b:41:f1:32:84:43:86:cf:13:fe:9f: 46:97:98:25:70:62:06:76:93:03:1d:72:75:0e:95:6a:d7:a2: 7a:50:6b:40:aa:dd:6a:60:09:23:d8:fb:ea:c8:72:ff:92:79: be:51:a0:fe:0e:68:c0:69:4c:03:c7:be:67:1f:a1:d5:00:85: 7c:0e:33:35:d1:9b:a6:50:e5:6e:1f:4e:b0:e6:6c:49:85:f5: 11:6b:04:fe:c1:8a:06:ac:18:ba:b9:3d:1d:88:d5:90:fb:b0: 7e:77:cf:6d:dd:a7:3c:bd:96:32:50:d9:07:d8:6a:bc:85:e4: f7:b7:31:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFDOTExMC8GA1UEBRMoREU0Q0U5NjBBMzkzMEFCNEMyMjdGQ0U4Rjg1N0MwODQx OTdGMDhEMDAeFw0yNTA3MTgyMDA3NTRaFw0yNTA3MjUyMDA3NTRaMBgxFjAUBgNV BAMTDTY4N2FhOTliLWJhNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC033O9ztVVLvn0Wj7axPoNfw5ok/VAhoxVHVhZOGeB4nbVB5rc53ZJv7aFpWNi stxY8Twau6eWbOqkfDIQDBI29x7v3oDE8kHDNuCCAaWDmMr6jj28Q7vG1YYAYFdL ekp/H3y0CZ+pAycfj7N6hOC0j1Qjs8uvJUO8aI2dgjWa8PTVa6U9lF+E9p1oYmWC MdMp/PyFuWu2bzKIGAEraw3EASvwNZ+Q/gXBjl7HTaYPPlW40yyd5TtDn0hvsTEU 34dxS/n88WucuE1rPiaZxnquFDq3ukS7/vwNpCOUvVibR7qAIXG0vLfu5ht8jH5p Hl/KQgQqR/fS/T4tx7vBwAvXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWFL2fZCU +x+hR3DSgp2oBYOxUMcwHwYDVR0jBBgwFoAU3kzpYKOTCrTCJ/zo+FfAhBl/CNAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUM5LzZBNTdBQjhDN0Y5 NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2t6cFlLT1RDclRDSl96by1GZkFoQmxfQ05BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUM5LzZBNTdBQjhDN0Y5NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JU Q0pfem8tRmZBaEJsX0NOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEFVymTwcfuZVUipDwVa+GY+ha+2aZag4aS3YJuMzaTokdNXYRv9OW6N PsR4SC7RABiu+rNY7Obcj/usII0NuDOcAgP/Sj1Bedr8D69CZD5ZNjzqIUSALETs JWQ33WVqV2y5mf9wA+SBsY51BDpY/kLJ+cAgtk+wKeUVgw9MAnZ0r7D8iQRbQfEy hEOGzxP+n0aXmCVwYgZ2kwMdcnUOlWrXonpQa0Cq3WpgCSPY++rIcv+Seb5RoP4O aMBpTAPHvmcfodUAhXwOMzXRm6ZQ5W4fTrDmbEmF9RFrBP7BigasGLq5PR2I1ZD7 sH53z23dpzy9ljJQ2QfYaryF5Pe3MW8= -----END CERTIFICATE-----Generated at Sun Jul 20 08:04:21 2025 by rpki-client