$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: +SKe6EpLakmoQ2tWZdgAhlZhKJ6FEuPFUTLB9QAefLs= Subject key identifier: B5:CB:69:47:4E:41:F1:29:17:64:CD:80:E6:AC:0C:E5:91:0F:0F:F3 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: B6 Signing time: Tue 01 Jul 2025 06:42:07 +0000 Manifest this update: Tue 01 Jul 2025 06:42:07 +0000 Manifest next update: Tue 08 Jul 2025 06:42:07 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: 9uKBi8OPtjdZevGlAC+CBu0Y+yyos0u1kwOQ8BWZTvQ=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: +ehd8KtxPwFaqFNVmOCKeYgOq8q50OL3e4iQXY+Px88=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: IYR9mQ1VQUiO08kcI4RHdp/FLN6UHawsT13ESG27pvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Jul 1 06:42:07 2025 GMT Not After : Jul 8 06:42:07 2025 GMT Subject: CN=6863833f-5a0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:92:33:c5:0a:9b:d7:f6:98:f0:29:4b:41:1d: 0f:2e:24:d5:3c:19:8e:43:95:ef:0f:3b:8e:db:0b: 9e:3d:dc:c0:9c:10:d5:61:08:8a:fb:31:10:0f:dd: fe:f0:4e:6a:6b:4c:4e:e4:91:9c:64:2c:65:e6:4c: f2:ea:1f:91:7a:5a:65:5a:71:d2:59:6b:89:60:3a: 66:2b:2c:12:03:1a:90:48:88:bc:b0:61:63:63:4d: 34:37:61:d6:e4:d9:f0:7a:04:ca:4c:81:4c:7e:c9: 88:74:ac:6c:64:f6:cf:77:59:97:71:96:66:a8:87: 48:f7:d0:cf:8f:87:c7:09:91:0f:e7:4b:bc:91:4f: a9:52:e3:48:ca:be:da:df:99:86:63:19:ad:99:91: 04:38:cd:4e:d8:c6:5d:84:d4:36:94:82:d5:47:d1: dc:64:bd:7e:81:6e:48:78:60:40:ca:08:d1:58:13: 3a:d0:db:be:98:6d:bd:f6:e6:36:68:06:a0:b3:b6: a5:8d:31:fb:f1:0d:2e:86:97:36:8e:f1:a6:2f:50: 6b:b3:f1:fb:1b:40:e7:01:ab:95:2c:33:62:c1:a0: 0c:7a:13:8f:39:df:3f:f0:af:f2:73:a6:83:c4:a9: b4:6f:3a:ec:38:29:a6:58:fb:eb:67:d2:db:5b:c1: 53:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CB:69:47:4E:41:F1:29:17:64:CD:80:E6:AC:0C:E5:91:0F:0F:F3 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:b6:6b:fb:95:f9:a1:a1:51:b5:0f:80:44:49:8f:a1:d5:df: 06:80:99:33:cb:72:8e:40:07:87:d4:05:5d:37:41:d3:3c:54: 82:1a:40:a7:61:5b:bf:f8:09:4d:32:3d:2b:de:f9:a0:a0:db: c6:5d:0b:30:a1:f1:4e:75:ee:80:ee:8a:f3:17:b7:9b:09:46: f4:37:4c:0e:59:cc:a8:49:2d:a5:05:1b:cb:5e:a4:a0:b8:49: 6a:71:c5:ac:b3:2c:6e:63:c6:82:78:f8:5c:a9:22:0e:e9:14: 9e:b9:05:22:59:67:f2:29:26:59:f4:c5:52:85:8e:ae:d2:0b: 30:12:95:b4:11:a8:8a:39:26:2d:dc:82:03:fb:f9:59:6f:50: ff:ca:a3:3a:50:be:a2:c6:61:1b:60:87:91:f2:b8:8f:eb:fe: b1:42:33:68:e1:58:8a:4d:30:97:14:30:c0:37:82:a3:3e:f6: 95:b9:5f:6d:7e:7d:04:a3:a0:af:85:55:3f:d7:32:d4:c4:80: b2:5f:38:bf:b4:bb:a6:da:03:d6:d3:e7:94:3f:14:8f:cd:f6: 6d:dd:48:cb:21:f2:d1:c5:75:df:1e:bf:59:5f:9d:7d:bc:ab: 5e:4e:f6:47:53:cc:8a:c3:57:19:54:7e:37:06:14:24:b9:c3: 1e:96:b1:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUwNzAxMDY0MjA3WhcNMjUwNzA4MDY0MjA3WjAYMRYwFAYD VQQDEw02ODYzODMzZi01YTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJIzxQqb1/aY8ClLQR0PLiTVPBmOQ5XvDzuO2wuePdzAnBDVYQiK+zEQD93+ 8E5qa0xO5JGcZCxl5kzy6h+RelplWnHSWWuJYDpmKywSAxqQSIi8sGFjY000N2HW 5NnwegTKTIFMfsmIdKxsZPbPd1mXcZZmqIdI99DPj4fHCZEP50u8kU+pUuNIyr7a 35mGYxmtmZEEOM1O2MZdhNQ2lILVR9HcZL1+gW5IeGBAygjRWBM60Nu+mG299uY2 aAags7aljTH78Q0uhpc2jvGmL1Brs/H7G0DnAauVLDNiwaAMehOPOd8/8K/yc6aD xKm0bzrsOCmmWPvrZ9LbW8FTzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXLaUdO QfEpF2TNgOasDOWRDw/zMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQtmv7lfmhoVG1D4BESY+h1d8GgJkzy3KOQAeH1AVdN0HTPFSCGkCn YVu/+AlNMj0r3vmgoNvGXQswofFOde6A7orzF7ebCUb0N0wOWcyoSS2lBRvLXqSg uElqccWssyxuY8aCePhcqSIO6RSeuQUiWWfyKSZZ9MVShY6u0gswEpW0EaiKOSYt 3IID+/lZb1D/yqM6UL6ixmEbYIeR8riP6/6xQjNo4ViKTTCXFDDAN4KjPvaVuV9t fn0Eo6CvhVU/1zLUxICyXzi/tLum2gPW0+eUPxSPzfZt3UjLIfLRxXXfHr9ZX519 vKteTvZHU8yKw1cZVH43BhQkucMelrH3 -----END CERTIFICATE-----Generated at Thu Jul 3 07:06:08 2025 by rpki-client