$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: 5rk/qA3rx70OsPVnMC0PKqmPuYukMSLx7naKdZNeihE= Subject key identifier: E6:CE:FE:1E:AD:A3:99:21:EF:C4:42:2B:A7:AC:93:29:5E:20:06:C7 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0BFB Signing time: Fri 30 May 2025 18:57:24 +0000 Manifest this update: Fri 30 May 2025 18:57:23 +0000 Manifest next update: Fri 06 Jun 2025 18:57:23 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: k3ALm31Z+6So2meyKPDWfqZD6Qo7j55wb8Y8+pEx4po=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3082 (0xc0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: May 30 18:57:23 2025 GMT Not After : Jun 6 18:57:23 2025 GMT Subject: CN=6839ff94-19bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:38:55:94:d9:d5:fd:bf:5b:dd:19:e0:c4:a6: 85:4d:67:45:cb:8b:85:79:d1:1b:bd:e9:1a:81:fa: d4:df:61:93:c2:0f:2b:7d:97:38:a8:64:51:63:72: a9:9a:5d:68:95:90:41:9b:19:01:f7:2b:82:07:e0: b0:42:fe:78:83:76:5d:ad:df:03:d5:86:a0:05:7b: 6a:0e:6b:30:61:56:0a:c5:6f:87:84:85:b6:92:e9: 31:f5:8c:ca:ab:12:8a:9a:7e:d0:50:91:3d:e8:94: 5d:06:a5:83:7b:67:d5:a3:d8:24:43:da:54:d3:18: ce:6f:b5:af:6c:7c:ee:8a:09:17:01:d0:dd:e0:30: f4:b0:23:9a:82:4d:1e:45:bf:ed:94:b4:9b:c5:1b: f2:fd:65:37:e5:10:19:d8:2a:1d:51:bd:b8:31:5c: f9:ab:a1:15:64:a6:f3:94:38:f2:68:cc:fc:09:bf: 73:5b:7d:6d:b0:c0:b5:d7:d3:87:5d:c8:5e:cf:70: eb:5b:73:2a:92:b6:f9:00:19:6b:b0:ae:57:49:a0: 9a:15:88:b3:11:44:23:ed:e1:e3:ef:a3:17:29:a3: 31:07:0a:e3:e9:97:f1:3a:5f:ce:b4:06:35:02:a6: e0:c5:e5:e3:ce:6d:89:b0:05:d2:f2:25:4b:43:14: 04:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CE:FE:1E:AD:A3:99:21:EF:C4:42:2B:A7:AC:93:29:5E:20:06:C7 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:eb:cf:15:e2:e6:6b:ea:e7:e4:19:53:56:7c:02:65:93:7b: 92:a1:c4:44:e8:a7:d1:88:5e:40:60:ec:6b:66:9f:3e:a3:52: 56:14:ca:23:85:ae:41:41:88:6c:39:17:d5:a0:c6:26:42:2a: dd:aa:0b:c2:45:7f:87:8a:87:f5:31:16:1d:28:59:db:86:8d: f5:73:cb:82:fb:bb:f7:28:da:68:25:00:d5:3c:df:f1:da:9a: 8c:d7:96:54:b4:6f:a6:40:c7:24:98:71:03:40:60:45:e6:63: 54:30:57:d5:d5:a4:bf:dc:6f:d0:4a:a1:81:3e:85:f6:98:89: 97:2e:64:b4:dd:b3:26:e7:54:c1:6e:fc:ee:1e:0a:df:76:8a: ba:d4:c2:46:58:0c:bc:dd:0f:b8:f6:1e:1e:d2:ee:70:16:e6: 2a:49:1f:f0:bf:93:b7:1d:be:49:76:d6:7e:bf:48:73:19:2f: c7:13:5f:d7:b2:02:90:34:6d:06:c9:64:f7:98:3c:58:16:05: 9a:e1:2c:63:0b:84:d0:ef:8c:16:5c:97:f0:82:56:c7:80:96: 7b:8f:3d:da:20:07:9a:aa:fd:d8:43:d4:97:9f:8a:f0:ec:08: 48:99:d8:28:10:24:6a:31:76:a7:25:b7:be:da:e6:c7:69:ba: ee:80:0a:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjUwNTMwMTg1NzIzWhcNMjUwNjA2MTg1NzIzWjAYMRYwFAYD VQQDEw02ODM5ZmY5NC0xOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDhVlNnV/b9b3RngxKaFTWdFy4uFedEbvekagfrU32GTwg8rfZc4qGRRY3Kp ml1olZBBmxkB9yuCB+CwQv54g3Zdrd8D1YagBXtqDmswYVYKxW+HhIW2kukx9YzK qxKKmn7QUJE96JRdBqWDe2fVo9gkQ9pU0xjOb7WvbHzuigkXAdDd4DD0sCOagk0e Rb/tlLSbxRvy/WU35RAZ2CodUb24MVz5q6EVZKbzlDjyaMz8Cb9zW31tsMC119OH Xchez3DrW3Mqkrb5ABlrsK5XSaCaFYizEUQj7eHj76MXKaMxBwrj6ZfxOl/OtAY1 AqbgxeXjzm2JsAXS8iVLQxQEcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObO/h6t o5kh78RCK6eskyleIAbHMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg688V4uZr6ufkGVNWfAJlk3uSocRE6KfRiF5AYOxrZp8+o1JWFMoj ha5BQYhsORfVoMYmQirdqgvCRX+Hiof1MRYdKFnbho31c8uC+7v3KNpoJQDVPN/x 2pqM15ZUtG+mQMckmHEDQGBF5mNUMFfV1aS/3G/QSqGBPoX2mImXLmS03bMm51TB bvzuHgrfdoq61MJGWAy83Q+49h4e0u5wFuYqSR/wv5O3Hb5JdtZ+v0hzGS/HE1/X sgKQNG0GyWT3mDxYFgWa4SxjC4TQ74wWXJfwglbHgJZ7jz3aIAeaqv3YQ9SXn4rw 7AhImdgoECRqMXanJbe+2ubHabrugAq7 -----END CERTIFICATE-----Generated at Sat May 31 17:16:19 2025 by rpki-client