$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json) Hash identifier: O81K9pBacp4jXc3ggVRkw4pzWKpFfVRZhWiVmHQFEMM= Subject key identifier: 9A:D9:C3:E3:5B:BE:DF:8B:1D:EE:01:60:E4:50:31:10:15:B8:96:98 Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft Manifest number: 0166 Signing time: Sat 31 May 2025 03:36:29 +0000 Manifest this update: Sat 31 May 2025 03:36:29 +0000 Manifest next update: Sat 07 Jun 2025 03:36:29 +0000 Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: OWxs8rCE228s3sJYQPSDLqAYgwLQSpl6Prn2jqGMufU=) 2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: F4cU+r0RsJavKuaSoPZVVD+mCZCLwysM3Ho83jeaeN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B40, serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Validity Not Before: May 31 03:36:29 2025 GMT Not After : Jun 7 03:36:29 2025 GMT Subject: CN=683a793d-a49f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:64:57:98:9d:d0:ec:a6:b6:0a:c7:13:de:05: 9c:88:65:5b:f1:9e:00:ad:a0:61:0a:91:c3:12:84: 16:54:45:87:37:f9:f9:80:31:a3:08:9d:f5:b3:e6: 5c:62:67:a6:9b:f0:77:80:9b:82:54:72:79:0f:c3: bd:ed:fe:a3:af:31:b5:56:7e:73:8b:f3:b7:7c:3d: f5:c6:0e:cf:ea:c5:db:75:56:10:b6:7e:f1:f9:6c: 13:36:85:1a:65:af:2f:6d:88:67:df:92:c3:d2:98: 64:91:8f:83:cf:d8:e2:0e:15:2a:f2:bb:72:5d:40: 1a:06:38:2e:18:fb:e8:bb:d6:8d:9a:b3:0a:e6:4b: 60:8b:27:9a:a4:fe:bd:ba:c0:7f:96:0b:67:88:4b: c3:d3:f3:a1:99:71:4c:8b:0f:66:2b:a7:7c:f1:a5: 39:ad:90:52:cd:bb:38:4e:df:4d:23:f0:88:85:9d: 94:cb:2f:2b:cc:8e:11:ca:14:c2:8e:65:c0:e9:d8: b9:b5:84:c0:1a:db:49:4d:68:7b:87:9d:e4:d3:85: 5e:47:2c:61:fb:cd:67:96:13:cf:36:67:84:05:2c: 1a:e3:00:14:96:f1:23:a1:07:3e:16:d4:85:0d:39: d8:6d:5f:66:f9:3f:56:f5:09:4c:5f:fd:bb:b9:af: bb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D9:C3:E3:5B:BE:DF:8B:1D:EE:01:60:E4:50:31:10:15:B8:96:98 X509v3 Authority Key Identifier: keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:44:52:e6:d1:a7:1d:06:dc:e3:81:28:4b:65:ee:41:78:ea: b7:c4:7b:f7:60:6b:93:1b:bd:cc:20:35:37:47:3e:89:db:02: 71:4c:d7:9d:5c:02:85:da:85:8b:c3:13:ed:1f:35:a9:2c:bc: 56:fd:ae:67:b6:58:3a:b7:52:34:dd:ec:7f:91:65:a4:d7:ec: a4:26:f5:ea:f4:68:a9:40:df:9f:58:af:c8:c7:c0:c2:f5:b9: 42:51:b5:ba:7b:15:bd:d2:70:50:33:ae:31:a0:88:66:b1:d1: 83:ca:a3:4f:37:49:75:f0:90:c2:0c:40:7e:46:94:7c:7e:e8: 8f:e2:d6:31:70:25:82:3c:91:82:98:e7:10:1c:23:b9:84:e4: 4c:97:90:29:76:5c:9f:37:e9:5b:38:3c:25:62:ce:01:7d:72: 79:e3:f3:6c:37:df:5a:e6:42:35:4d:3f:7e:50:21:db:df:6c: 45:92:d1:48:5c:17:3a:66:48:fd:2e:ee:fd:3f:60:fe:10:a6: 3f:4f:56:1c:bd:17:22:ec:dd:6a:67:4e:a3:1c:28:d9:96:0d: 61:18:12:3f:42:cf:92:a7:c8:55:0e:da:96:f1:04:12:0c:75: 9b:0a:c2:56:5b:ff:ec:dd:7a:5e:b9:2c:7a:5a:67:df:99:5c: 43:61:88:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDAxMTAvBgNVBAUTKDNDQUNEQ0ZFMjdFODkwOERDNDdGMzNFRjkxNEFFM0M1 MDhCQTQ3QjMwHhcNMjUwNTMxMDMzNjI5WhcNMjUwNjA3MDMzNjI5WjAYMRYwFAYD VQQDEw02ODNhNzkzZC1hNDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWRXmJ3Q7Ka2CscT3gWciGVb8Z4AraBhCpHDEoQWVEWHN/n5gDGjCJ31s+Zc Ymemm/B3gJuCVHJ5D8O97f6jrzG1Vn5zi/O3fD31xg7P6sXbdVYQtn7x+WwTNoUa Za8vbYhn35LD0phkkY+Dz9jiDhUq8rtyXUAaBjguGPvou9aNmrMK5ktgiyeapP69 usB/lgtniEvD0/OhmXFMiw9mK6d88aU5rZBSzbs4Tt9NI/CIhZ2Uyy8rzI4RyhTC jmXA6di5tYTAGttJTWh7h53k04VeRyxh+81nlhPPNmeEBSwa4wAUlvEjoQc+FtSF DTnYbV9m+T9W9QlMX/27ua+7ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrZw+Nb vt+LHe4BYORQMRAVuJaYMB8GA1UdIwQYMBaAFDys3P4n6JCNxH8z75FK48UIukez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0MC9GMDFDQTlDNjFC MjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJM0VmelB2a1VyanhRaTZS N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BLemNfaWZva0kzRWZ6UHZrVXJqeFFpNlI3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0MC9GMDFDQTlDNjFCMjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJ M0VmelB2a1VyanhRaTZSN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArRFLm0acdBtzjgShLZe5BeOq3xHv3YGuTG73MIDU3Rz6J2wJxTNed XAKF2oWLwxPtHzWpLLxW/a5ntlg6t1I03ex/kWWk1+ykJvXq9GipQN+fWK/Ix8DC 9blCUbW6exW90nBQM64xoIhmsdGDyqNPN0l18JDCDEB+RpR8fuiP4tYxcCWCPJGC mOcQHCO5hORMl5ApdlyfN+lbODwlYs4BfXJ54/NsN99a5kI1TT9+UCHb32xFktFI XBc6Zkj9Lu79P2D+EKY/T1YcvRci7N1qZ06jHCjZlg1hGBI/Qs+Sp8hVDtqW8QQS DHWbCsJWW//s3XpeuSx6WmffmVxDYYgL -----END CERTIFICATE-----Generated at Sat May 31 17:57:48 2025 by rpki-client