$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: HhYguiaj5t0NgBzSA7PR5fLwbZDcBYH7l7o0mN/FTvQ= Subject key identifier: 81:4B:7A:46:1C:27:B2:99:13:5A:AB:78:51:A7:75:18:14:1D:74:52 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 199C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 198F Signing time: Wed 02 Jul 2025 16:30:55 +0000 Manifest this update: Wed 02 Jul 2025 16:30:54 +0000 Manifest next update: Wed 09 Jul 2025 16:30:54 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: 5fOOzHAT9welWDFvoux9vsW8AGrOXxiCo8wTb1Nbxs0=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: RpWQrrzOF7m9VblMswDEPjg4dQz5qJ23/hrPkxdWkfU=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Ca2UAKyheAxMu3mmz18qTaLEBY0cF4nQ72JfwkXPvJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6556 (0x199c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Jul 2 16:30:54 2025 GMT Not After : Jul 9 16:30:54 2025 GMT Subject: CN=68655ebf-44a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:15:81:5b:31:74:53:2f:26:92:86:d1:1b:23: 04:f8:03:c4:cd:7b:32:b6:1e:b6:31:fa:97:3a:7f: a5:ea:bf:d6:32:da:b4:03:75:59:9f:b4:6c:16:39: 3c:91:20:32:4d:e1:db:d8:e6:05:7a:14:df:bc:a2: 90:66:a5:4f:db:62:85:6f:34:32:47:cc:30:18:a7: 98:a0:c6:4a:61:7f:3c:e0:bd:b3:f5:2f:d5:65:de: 1d:ce:45:02:08:4b:de:b4:36:93:1a:ef:af:81:53: 66:a9:74:dc:1a:9b:2b:63:85:eb:90:7a:03:0b:0a: a4:b3:98:1c:30:fd:23:19:70:80:40:45:74:3a:c1: 92:a6:98:60:be:77:c8:36:03:b5:82:51:94:25:0f: 87:6f:1d:d9:7e:54:1c:24:06:cb:77:19:00:bb:ac: 44:54:13:38:8f:68:d4:29:1d:c4:40:07:e5:a0:94: be:86:dd:44:18:b9:80:d7:c4:3f:13:7d:b6:f4:30: 56:64:3d:49:9a:b3:3e:59:7d:25:ec:a7:7d:83:09: 76:fc:3f:9e:e6:fb:0a:f5:79:98:d8:d1:fa:6a:a4: ec:94:d6:dc:08:03:59:fd:18:a8:42:2f:38:5d:f8: cb:a6:ca:39:50:f0:a3:98:f6:6a:71:98:63:71:00: 99:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:4B:7A:46:1C:27:B2:99:13:5A:AB:78:51:A7:75:18:14:1D:74:52 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5f:fa:73:0b:e1:03:22:71:b8:0e:9d:33:57:57:93:ed:7b: d8:61:b5:1c:3e:23:b2:9b:19:fc:8e:69:fa:97:de:80:ce:6a: 95:64:3a:48:54:dd:ac:f2:88:72:58:dd:b3:60:eb:51:56:49: 60:53:8e:88:a2:e1:d0:2b:47:23:7d:2b:e1:0d:09:aa:6a:9b: cd:99:95:85:f5:c2:fe:97:b6:8f:ed:c0:6d:32:f3:64:22:fd: 8b:5e:d2:83:d9:2d:e5:45:67:2b:86:fa:1f:d1:3b:48:ea:e2: a1:7a:13:14:0f:4e:3f:85:eb:ad:88:ab:b8:f2:d8:8e:d1:25: 6f:08:f1:ab:44:1d:00:43:db:76:dc:4d:05:eb:54:96:de:a1: 4b:ee:af:cb:5d:8b:f4:2b:a5:9a:82:c7:93:8a:65:7f:5a:b0: 5d:c4:c2:a4:b4:a2:06:a1:3e:3c:46:4d:4e:95:5a:af:54:4f: 96:29:dd:0c:97:01:4f:4b:6c:55:7e:69:8c:cb:e5:e6:68:38: 81:21:53:a9:38:74:a7:26:7c:ae:e5:8d:0a:b1:b0:f0:cd:15: 31:d3:2b:d0:fc:78:19:37:4e:58:77:74:e8:bb:58:c1:9e:49: 00:4a:78:bf:e4:a4:15:a6:8f:3e:79:83:62:a0:b5:43:f6:57: 3b:1c:46:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwNzAyMTYzMDU0WhcNMjUwNzA5MTYzMDU0WjAYMRYwFAYD VQQDEw02ODY1NWViZi00NGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxWBWzF0Uy8mkobRGyME+APEzXsyth62MfqXOn+l6r/WMtq0A3VZn7RsFjk8 kSAyTeHb2OYFehTfvKKQZqVP22KFbzQyR8wwGKeYoMZKYX884L2z9S/VZd4dzkUC CEvetDaTGu+vgVNmqXTcGpsrY4XrkHoDCwqks5gcMP0jGXCAQEV0OsGSpphgvnfI NgO1glGUJQ+Hbx3ZflQcJAbLdxkAu6xEVBM4j2jUKR3EQAfloJS+ht1EGLmA18Q/ E3229DBWZD1JmrM+WX0l7Kd9gwl2/D+e5vsK9XmY2NH6aqTslNbcCANZ/RioQi84 XfjLpso5UPCjmPZqcZhjcQCZDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFLekYc J7KZE1qreFGndRgUHXRSMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMX/pzC+EDInG4Dp0zV1eT7XvYYbUcPiOymxn8jmn6l96AzmqVZDpI VN2s8ohyWN2zYOtRVklgU46IouHQK0cjfSvhDQmqapvNmZWF9cL+l7aP7cBtMvNk Iv2LXtKD2S3lRWcrhvof0TtI6uKhehMUD04/heutiKu48tiO0SVvCPGrRB0AQ9t2 3E0F61SW3qFL7q/LXYv0K6WagseTimV/WrBdxMKktKIGoT48Rk1OlVqvVE+WKd0M lwFPS2xVfmmMy+XmaDiBIVOpOHSnJnyu5Y0KsbDwzRUx0yvQ/HgZN05Yd3Tou1jB nkkASni/5KQVpo8+eYNioLVD9lc7HEYu -----END CERTIFICATE-----Generated at Thu Jul 3 23:46:01 2025 by rpki-client