$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: RsOeXEZxD7nNwuhmmQCP9vj1Jv494nir0Sm43ySZYL0= Subject key identifier: BF:00:5E:78:94:53:A9:FB:3B:3E:6A:40:E8:11:F0:D8:D8:45:89:0D Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: D1 Signing time: Sat 23 Aug 2025 05:52:59 +0000 Manifest this update: Sat 23 Aug 2025 05:52:58 +0000 Manifest next update: Sat 30 Aug 2025 05:52:58 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: NPtdQErE40LOvJXIRAriy8fYy8zBgy3lw38MDurIlto=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: +ehd8KtxPwFaqFNVmOCKeYgOq8q50OL3e4iQXY+Px88=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: IYR9mQ1VQUiO08kcI4RHdp/FLN6UHawsT13ESG27pvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Aug 23 05:52:58 2025 GMT Not After : Aug 30 05:52:58 2025 GMT Subject: CN=68a9573b-905c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0a:0a:7d:f8:e4:c3:d8:9b:21:04:d1:75:6f: a8:0f:c1:c8:13:5d:85:99:34:f3:b8:12:5c:b4:e6: 0d:68:46:19:21:db:f4:3f:50:68:d7:70:4a:68:60: 3e:74:82:f1:90:bb:62:95:f1:eb:37:a1:69:88:56: f3:1a:70:fc:98:8a:0c:c2:ec:c5:74:9e:a0:09:9f: 24:6f:fd:39:14:1e:d5:ea:64:51:3c:9a:67:6e:d9: 60:8c:96:18:09:cb:8c:38:2a:9f:19:98:f6:ea:aa: 2c:32:a1:63:79:04:ae:97:dc:7f:e7:59:f7:8b:88: 06:2a:5f:0f:3c:f7:06:7c:b7:7b:54:95:76:8c:bf: 70:ef:cf:b5:2f:77:87:c1:ed:ca:f1:d2:49:1d:08: 70:b4:ae:e7:63:20:f7:56:5e:13:56:5c:62:16:d3: 2c:d6:5f:75:a2:b5:5c:7c:58:32:f9:3c:b2:e6:8c: 57:13:31:da:ba:14:eb:b1:e6:84:45:24:e3:cb:09: 64:4f:7b:c3:1b:8f:99:98:5d:33:dc:da:21:e0:50: 49:07:30:fc:2e:a9:24:76:c8:2a:4d:03:b1:63:91: 10:08:bd:0b:8e:fe:b3:89:9c:dc:46:19:01:f9:aa: 5e:eb:e6:67:b4:67:ee:4e:7f:f0:7c:25:30:78:97: 7b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:00:5E:78:94:53:A9:FB:3B:3E:6A:40:E8:11:F0:D8:D8:45:89:0D X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:0b:c4:1e:39:6a:8f:e4:1b:84:a0:d2:f3:79:4d:5a:77:7a: a9:b2:dd:67:e5:ef:21:15:7b:ec:5b:9e:53:2d:1b:86:57:f6: 50:fd:77:a5:e6:70:cd:90:d0:f7:90:1b:85:3e:0c:49:26:da: 48:b4:25:6c:b1:5c:4a:e9:d4:b7:8f:ba:85:03:f6:6a:4a:60: 62:f3:ee:c4:da:ba:28:9c:33:aa:d5:98:19:d5:f4:a2:ed:b0: 77:54:ae:07:32:ff:4a:e5:12:b3:a0:94:36:b7:cc:fe:a5:4d: 53:7e:64:ff:96:27:6b:fd:14:26:00:64:77:db:d6:ff:f7:11: fc:0e:02:9c:2b:5d:2d:84:22:53:1e:c0:45:4a:e4:1b:0e:70: 66:89:08:de:92:60:56:28:1f:71:61:7a:af:35:f0:03:6e:e5: 5f:af:73:3e:11:4f:8b:50:c1:2d:7f:3f:5d:c9:5b:67:61:8f: c2:9e:d8:a8:54:66:dc:7c:97:8e:f8:7f:7d:97:b4:52:91:39: 58:5a:55:fa:e6:36:4a:1e:a9:44:78:a2:64:56:13:f5:3d:07: 65:69:96:e9:88:ca:b9:84:82:d3:6e:87:81:76:9e:31:ce:33: 1a:8c:8c:90:1f:87:f1:7f:6e:38:a6:9c:11:c2:7b:63:83:c5: 62:fc:ff:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUwODIzMDU1MjU4WhcNMjUwODMwMDU1MjU4WjAYMRYwFAYD VQQDEw02OGE5NTczYi05MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAoKffjkw9ibIQTRdW+oD8HIE12FmTTzuBJctOYNaEYZIdv0P1Bo13BKaGA+ dILxkLtilfHrN6FpiFbzGnD8mIoMwuzFdJ6gCZ8kb/05FB7V6mRRPJpnbtlgjJYY CcuMOCqfGZj26qosMqFjeQSul9x/51n3i4gGKl8PPPcGfLd7VJV2jL9w78+1L3eH we3K8dJJHQhwtK7nYyD3Vl4TVlxiFtMs1l91orVcfFgy+Tyy5oxXEzHauhTrseaE RSTjywlkT3vDG4+ZmF0z3Noh4FBJBzD8LqkkdsgqTQOxY5EQCL0Ljv6ziZzcRhkB +ape6+ZntGfuTn/wfCUweJd7SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8AXniU U6n7Oz5qQOgR8NjYRYkNMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5C8QeOWqP5BuEoNLzeU1ad3qpst1n5e8hFXvsW55TLRuGV/ZQ/Xel 5nDNkND3kBuFPgxJJtpItCVssVxK6dS3j7qFA/ZqSmBi8+7E2roonDOq1ZgZ1fSi 7bB3VK4HMv9K5RKzoJQ2t8z+pU1TfmT/lidr/RQmAGR329b/9xH8DgKcK10thCJT HsBFSuQbDnBmiQjekmBWKB9xYXqvNfADbuVfr3M+EU+LUMEtfz9dyVtnYY/Cntio VGbcfJeO+H99l7RSkTlYWlX65jZKHqlEeKJkVhP1PQdlaZbpiMq5hILTboeBdp4x zjMajIyQH4fxf244ppwRwntjg8Vi/P8B -----END CERTIFICATE-----Generated at Sat Aug 23 17:15:25 2025 by rpki-client