$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: q2Izsm4ZfLNalTF1nPhsVYn5B7iJb4IxY71KyZknbkI= Subject key identifier: F4:11:4B:0F:9A:E2:0F:9B:91:0A:86:14:F3:E2:0E:0A:7E:BF:5E:09 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1982 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 1975 Signing time: Mon 12 May 2025 16:20:57 +0000 Manifest this update: Mon 12 May 2025 16:20:57 +0000 Manifest next update: Mon 19 May 2025 16:20:57 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: +1tnWOovAdLIRsKGdbxn41XODyrVjB7XjGMdhDOvDLA=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: RpWQrrzOF7m9VblMswDEPjg4dQz5qJ23/hrPkxdWkfU=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Ca2UAKyheAxMu3mmz18qTaLEBY0cF4nQ72JfwkXPvJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6530 (0x1982) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: May 12 16:20:57 2025 GMT Not After : May 19 16:20:57 2025 GMT Subject: CN=68221fe9-7dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c0:26:a1:23:a5:c8:f0:95:58:12:6d:c4:5f: d6:5a:b3:7b:3c:ca:da:57:12:f8:6f:77:d5:cc:d4: 09:77:94:34:0f:57:24:3b:b2:e8:1d:e1:de:14:da: 96:24:7c:16:47:b2:65:1f:23:da:28:2b:e8:79:10: a4:da:04:9c:95:a3:3f:d4:e9:70:7d:06:8d:15:e5: 7f:36:b1:4f:93:fb:e2:e5:d9:8d:b2:d2:da:02:07: e9:7d:cb:b9:c5:d6:28:7f:e4:33:75:9c:82:38:04: a6:f2:04:87:71:c0:12:7e:1a:8f:77:6c:07:fb:df: 10:59:8a:45:f7:06:b3:d0:fd:91:91:ec:b2:9f:a1: 44:bb:15:8a:53:9a:8d:89:cd:a4:4a:e0:b8:e3:98: 93:7f:71:40:f9:ec:d0:a6:fa:be:e7:68:cd:54:8a: e9:2e:d7:93:5c:54:4a:12:4f:b7:ea:f2:18:2c:fb: f0:31:45:48:32:10:bf:f0:d2:f4:23:af:03:38:bf: 73:8b:e0:3a:83:dd:33:4f:7b:8b:87:c7:88:ee:62: f7:36:5e:41:1b:22:9d:32:35:ce:b6:af:e2:38:fe: f4:54:55:95:d1:a4:c6:c1:10:18:57:1a:17:bf:99: 17:32:70:81:f3:12:2f:e4:5c:af:1d:14:fa:f1:52: 05:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:11:4B:0F:9A:E2:0F:9B:91:0A:86:14:F3:E2:0E:0A:7E:BF:5E:09 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:be:71:ff:83:45:50:97:5a:05:8b:e2:60:0f:61:6c:23:08: 72:00:7d:79:d7:ed:c0:bf:20:05:bb:e8:17:50:54:db:0c:08: 1c:da:9b:98:24:95:b1:39:5e:ec:a2:78:e3:90:f3:bc:a9:ce: bc:85:02:a4:ed:39:25:d3:58:81:e1:72:c5:23:a0:6b:ac:7b: d1:cb:70:27:ad:98:cc:65:83:b8:e2:38:0a:ea:e7:c3:ef:c2: e9:ad:32:f6:16:ed:2c:8a:db:a4:88:c0:5f:a8:57:9c:35:cf: 27:61:1c:76:25:7d:aa:a9:c4:f5:8a:86:42:39:d8:fa:18:ca: a7:88:ae:e5:62:52:e6:f4:3a:2c:c0:01:bc:1f:a4:80:64:ef: d5:84:5b:1a:1d:fb:f7:6e:d5:74:f3:20:40:b0:3d:ea:76:5e: ce:b5:a3:c0:90:43:f1:50:c8:35:b1:eb:a2:85:fb:64:04:42: db:f6:2b:ba:72:7b:70:c4:9a:e0:98:c4:05:9b:b7:cc:d1:60: ea:5c:40:b1:dc:81:37:85:d3:2b:ae:64:0f:9f:04:16:49:73: cb:73:43:bb:10:4b:82:4e:c7:8f:f5:ea:1c:d1:e0:81:94:ba: d1:98:76:58:33:c6:99:84:95:8c:48:7f:3c:a7:c4:de:b1:b3: af:00:67:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwNTEyMTYyMDU3WhcNMjUwNTE5MTYyMDU3WjAYMRYwFAYD VQQDEw02ODIyMWZlOS03ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8AmoSOlyPCVWBJtxF/WWrN7PMraVxL4b3fVzNQJd5Q0D1ckO7LoHeHeFNqW JHwWR7JlHyPaKCvoeRCk2gSclaM/1OlwfQaNFeV/NrFPk/vi5dmNstLaAgfpfcu5 xdYof+QzdZyCOASm8gSHccASfhqPd2wH+98QWYpF9waz0P2Rkeyyn6FEuxWKU5qN ic2kSuC445iTf3FA+ezQpvq+52jNVIrpLteTXFRKEk+36vIYLPvwMUVIMhC/8NL0 I68DOL9zi+A6g90zT3uLh8eI7mL3Nl5BGyKdMjXOtq/iOP70VFWV0aTGwRAYVxoX v5kXMnCB8xIv5FyvHRT68VIFnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQRSw+a 4g+bkQqGFPPiDgp+v14JMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuvnH/g0VQl1oFi+JgD2FsIwhyAH151+3AvyAFu+gXUFTbDAgc2puY JJWxOV7sonjjkPO8qc68hQKk7Tkl01iB4XLFI6BrrHvRy3AnrZjMZYO44jgK6ufD 78LprTL2Fu0situkiMBfqFecNc8nYRx2JX2qqcT1ioZCOdj6GMqniK7lYlLm9Dos wAG8H6SAZO/VhFsaHfv3btV08yBAsD3qdl7OtaPAkEPxUMg1seuihftkBELb9iu6 cntwxJrgmMQFm7fM0WDqXECx3IE3hdMrrmQPnwQWSXPLc0O7EEuCTseP9eoc0eCB lLrRmHZYM8aZhJWMSH88p8TesbOvAGd/ -----END CERTIFICATE-----Generated at Wed May 14 13:51:19 2025 by rpki-client