$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: ZA8hfes2pj+hmMuh4aNh7ONea2EeZntXaiZuj/3GCtc= Subject key identifier: 39:BF:3E:F4:00:0E:C4:DF:F5:DF:24:30:4C:79:06:15:7E:CB:93:4A Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: 9D Signing time: Sun 11 May 2025 05:07:29 +0000 Manifest this update: Sun 11 May 2025 05:07:29 +0000 Manifest next update: Sun 18 May 2025 05:07:29 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: duVvZexS9eAhloLgU9zKwaRmC1tVnHFBIiRVX99dRG8=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: +ehd8KtxPwFaqFNVmOCKeYgOq8q50OL3e4iQXY+Px88=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: IYR9mQ1VQUiO08kcI4RHdp/FLN6UHawsT13ESG27pvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: May 11 05:07:29 2025 GMT Not After : May 18 05:07:29 2025 GMT Subject: CN=68203091-f43b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:14:3d:21:4f:33:96:c5:45:48:e7:55:fc:2a: 97:2e:4f:0f:01:9e:1f:c8:37:a6:74:bf:07:fc:29: 0d:d5:e1:47:6d:51:b3:9a:8c:c0:a2:f0:85:e7:f7: ea:f0:14:9d:ad:4d:f8:1f:db:40:58:40:e0:b3:10: c8:d5:aa:a8:c4:52:b9:fa:ce:62:64:bb:0a:26:af: c1:8a:90:15:6d:17:65:6f:6b:d6:5d:e0:6a:5f:50: 34:dc:6d:d0:27:c3:73:85:6c:79:f3:96:2d:8c:ce: 62:37:bb:1d:e9:35:38:a4:ea:4b:43:58:a3:f6:49: d1:fd:59:6a:04:67:a3:6c:61:b8:62:0d:92:e3:08: 8c:c6:80:7a:5b:f6:fa:2f:69:3e:d8:e8:ad:f9:7e: 9f:01:b9:4e:5e:14:7f:00:1b:3d:64:7a:03:bf:36: 82:dc:22:fc:36:53:43:0b:0f:a6:e5:48:76:00:6d: e1:a9:6a:5f:bc:ca:78:fa:7d:63:60:32:48:d0:04: 60:17:e3:19:b2:82:a6:4c:61:b0:f5:2f:e4:1d:2c: fb:32:2a:3a:50:6a:04:6b:ab:6d:a3:78:5a:0f:7b: 17:4b:2e:02:76:43:a9:2e:3f:ac:2e:52:44:fc:d4: 25:fa:f3:b1:32:df:55:37:a4:c3:2e:97:3a:af:f8: 7b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BF:3E:F4:00:0E:C4:DF:F5:DF:24:30:4C:79:06:15:7E:CB:93:4A X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ab:b5:65:d6:5b:db:bc:27:3d:31:04:32:70:d0:1a:56:cb: 78:30:ce:14:14:de:da:a7:6e:b5:fc:da:a5:4b:d3:08:71:7b: 89:89:b0:1e:f5:97:9a:29:20:f9:60:ef:26:fb:c0:2f:78:ab: 60:b5:ce:fc:c8:9e:db:bc:8d:08:6e:a7:c2:b8:c6:74:01:46: a7:67:8e:09:d6:a6:d0:29:f8:25:46:1c:8f:85:17:1f:1c:66: ea:2b:65:21:a5:46:eb:05:97:9e:59:ec:17:a3:d7:32:e3:51: b1:c8:db:c7:9d:ff:d5:18:9e:37:28:87:73:fc:f0:4d:58:48: f8:b3:38:52:68:e5:8a:6f:a2:23:7e:a7:33:73:a8:ce:14:60: 36:a4:0c:a7:a7:cb:a3:b7:a2:67:09:ae:57:9f:5e:a8:52:26: 81:5f:1f:ec:8b:1f:c7:0d:f4:52:29:74:40:ca:3f:e5:ec:72: da:7a:62:6a:99:fc:45:e0:75:09:3a:fc:11:2d:c9:f3:0f:f2: d5:78:3f:9b:3d:35:e8:18:e4:b1:3e:54:1e:5e:55:4d:5f:71: b6:75:c1:3b:60:f3:5e:56:6d:fb:bd:c4:eb:cb:d9:19:f8:39: c7:d8:f9:3f:fe:bf:c0:f8:9f:4c:f6:4d:17:3e:c6:4a:ac:1b: c2:dc:03:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUwNTExMDUwNzI5WhcNMjUwNTE4MDUwNzI5WjAYMRYwFAYD VQQDEw02ODIwMzA5MS1mNDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RQ9IU8zlsVFSOdV/CqXLk8PAZ4fyDemdL8H/CkN1eFHbVGzmozAovCF5/fq 8BSdrU34H9tAWEDgsxDI1aqoxFK5+s5iZLsKJq/BipAVbRdlb2vWXeBqX1A03G3Q J8NzhWx585YtjM5iN7sd6TU4pOpLQ1ij9knR/VlqBGejbGG4Yg2S4wiMxoB6W/b6 L2k+2Oit+X6fAblOXhR/ABs9ZHoDvzaC3CL8NlNDCw+m5Uh2AG3hqWpfvMp4+n1j YDJI0ARgF+MZsoKmTGGw9S/kHSz7Mio6UGoEa6tto3haD3sXSy4CdkOpLj+sLlJE /NQl+vOxMt9VN6TDLpc6r/h7JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm/PvQA DsTf9d8kMEx5BhV+y5NKMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzq7Vl1lvbvCc9MQQycNAaVst4MM4UFN7ap261/NqlS9MIcXuJibAe 9ZeaKSD5YO8m+8AveKtgtc78yJ7bvI0IbqfCuMZ0AUanZ44J1qbQKfglRhyPhRcf HGbqK2UhpUbrBZeeWewXo9cy41GxyNvHnf/VGJ43KIdz/PBNWEj4szhSaOWKb6Ij fqczc6jOFGA2pAynp8ujt6JnCa5Xn16oUiaBXx/six/HDfRSKXRAyj/l7HLaemJq mfxF4HUJOvwRLcnzD/LVeD+bPTXoGOSxPlQeXlVNX3G2dcE7YPNeVm37vcTry9kZ +DnH2Pk//r/A+J9M9k0XPsZKrBvC3APN -----END CERTIFICATE-----Generated at Mon May 12 19:44:06 2025 by rpki-client