$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: X5JkvyOLzHMnWwkdSqaalPtuseMsKuAjEejqUOQnvDY= Subject key identifier: D3:7B:EF:49:8C:89:B9:8B:88:C0:D6:5E:8D:82:E4:3D:84:D4:77:47 Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0A26 Signing time: Fri 30 May 2025 20:08:27 +0000 Manifest this update: Fri 30 May 2025 20:08:27 +0000 Manifest next update: Fri 06 Jun 2025 20:08:27 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: GKGFnbUp8hgVjhhw6EH7CWB3Wcx92Jl/AvRdNyhXVuw=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: qbK0SRsjZmgPEhHCvpQ8WHXr9ovPv+iMo1ylb0vxYmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: May 30 20:08:27 2025 GMT Not After : Jun 6 20:08:27 2025 GMT Subject: CN=683a103b-8b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:d1:ad:68:21:06:26:09:5e:ea:2c:43:0c: 90:8e:87:71:9f:0a:e8:2e:76:d0:70:c6:15:0b:70: 95:a4:e4:e7:11:f5:6d:00:cb:ac:ca:59:0b:26:41: ea:45:16:98:07:65:b9:71:bc:2a:16:f3:b3:f0:f9: f5:b4:fe:e5:46:bd:df:44:58:45:b7:01:cd:86:9f: 8f:c7:34:1c:da:d9:58:44:2f:59:32:f6:89:ea:bf: 16:b6:75:4c:4b:68:d2:c0:65:2a:9d:dd:6a:1c:bb: ee:33:c9:ec:a6:38:c3:93:50:a7:1a:1c:92:8c:50: da:eb:e0:c8:0f:fb:cb:9c:32:fe:53:11:fe:61:6b: ff:e1:63:ff:cb:71:b3:69:b5:a1:60:1a:aa:92:5f: 84:3c:e1:b5:df:3b:3d:3f:cb:db:8f:11:1e:dd:61: 37:91:ed:1b:ab:51:09:74:a2:2b:f6:23:b8:a8:4a: dc:7a:a8:cf:83:47:f1:f9:dc:6a:90:aa:bc:53:44: e4:f0:fb:2a:14:56:bc:94:fc:76:3b:1e:e9:af:6e: c9:d4:b7:ed:5f:29:64:5e:fe:29:4f:e7:e1:89:58: f9:e3:25:9c:6e:dc:3a:ad:91:f0:57:0f:a4:70:06: bd:e8:85:a6:b9:c0:78:b9:a9:24:09:31:0a:77:e1: c0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7B:EF:49:8C:89:B9:8B:88:C0:D6:5E:8D:82:E4:3D:84:D4:77:47 X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:e6:76:3d:9d:c1:f7:f5:a5:4c:07:ac:d0:46:2f:a9:5b:20: 53:f6:ba:53:0a:14:c9:50:f9:a4:a2:f3:46:a6:da:45:e2:2c: 2b:a8:7c:c4:fc:71:1c:43:1f:bf:45:5b:bc:2b:9e:cd:e5:b6: 45:8b:25:f6:26:8c:1e:a4:bd:cf:6f:25:91:7c:c6:a6:78:d1: 1d:02:ee:e9:bc:dd:b2:0f:0f:fb:ab:bf:dc:02:9c:01:14:35: 72:c9:3e:56:b4:5a:18:8f:0b:ab:b3:80:bb:89:3e:5c:f6:17: e5:3a:51:bb:48:b2:6b:b7:83:d1:b4:0d:c8:21:ad:0e:27:5c: 5f:99:e4:a1:69:c8:2a:8d:66:1e:b6:6c:fa:27:11:9d:44:32: 71:38:e3:76:aa:1d:ea:d6:38:d1:b4:9c:c2:6b:9f:18:6f:89: 48:83:a5:ba:1b:7e:ed:19:a6:9a:bd:06:b8:2c:12:4c:af:5d: 9e:69:f5:cd:cc:c1:b1:6c:e3:9a:e8:cb:ac:cd:db:02:9d:29: b1:57:9c:84:20:86:a0:02:25:ac:d2:cc:10:43:48:78:81:33: a1:06:d2:58:c2:ef:31:2c:48:d2:b4:fd:0f:ef:e0:74:02:7b: 1c:98:35:40:43:d3:82:bd:68:44:ec:ca:58:7a:47:d6:1a:4f: 09:6c:8b:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFDOTExMC8GA1UEBRMoREU0Q0U5NjBBMzkzMEFCNEMyMjdGQ0U4Rjg1N0MwODQx OTdGMDhEMDAeFw0yNTA1MzAyMDA4MjdaFw0yNTA2MDYyMDA4MjdaMBgxFjAUBgNV BAMTDTY4M2ExMDNiLThiNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9GdGtaCEGJgle6ixDDJCOh3GfCugudtBwxhULcJWk5OcR9W0Ay6zKWQsmQepF FpgHZblxvCoW87Pw+fW0/uVGvd9EWEW3Ac2Gn4/HNBza2VhEL1ky9onqvxa2dUxL aNLAZSqd3Wocu+4zyeymOMOTUKcaHJKMUNrr4MgP+8ucMv5TEf5ha//hY//LcbNp taFgGqqSX4Q84bXfOz0/y9uPER7dYTeR7RurUQl0oiv2I7ioStx6qM+DR/H53GqQ qrxTROTw+yoUVryU/HY7HumvbsnUt+1fKWRe/ilP5+GJWPnjJZxu3DqtkfBXD6Rw Br3ohaa5wHi5qSQJMQp34cDZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU03vvSYyJ uYuIwNZejYLkPYTUd0cwHwYDVR0jBBgwFoAU3kzpYKOTCrTCJ/zo+FfAhBl/CNAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUM5LzZBNTdBQjhDN0Y5 NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2t6cFlLT1RDclRDSl96by1GZkFoQmxfQ05BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUM5LzZBNTdBQjhDN0Y5NTExRUFCMEVEODUzN0M0RjlBRTAyLzNrenBZS09UQ3JU Q0pfem8tRmZBaEJsX0NOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKfmdj2dwff1pUwHrNBGL6lbIFP2ulMKFMlQ+aSi80am2kXiLCuofMT8 cRxDH79FW7wrns3ltkWLJfYmjB6kvc9vJZF8xqZ40R0C7um83bIPD/urv9wCnAEU NXLJPla0WhiPC6uzgLuJPlz2F+U6UbtIsmu3g9G0DcghrQ4nXF+Z5KFpyCqNZh62 bPonEZ1EMnE443aqHerWONG0nMJrnxhviUiDpbobfu0Zppq9BrgsEkyvXZ5p9c3M wbFs45roy6zN2wKdKbFXnIQghqACJazSzBBDSHiBM6EG0ljC7zEsSNK0/Q/v4HQC exyYNUBD04K9aETsylh6R9YaTwlsi6c= -----END CERTIFICATE-----Generated at Sat May 31 17:54:52 2025 by rpki-client