$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: 5O56jo5uMGdxmyHF+RsqMQf2o2wRh4xEIdsG5F3Thys= Subject key identifier: 80:4E:A0:92:45:34:17:B3:D7:F0:F6:57:CD:D7:B4:7A:15:CD:93:08 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: 7D Signing time: Thu 13 Mar 2025 04:48:08 +0000 Manifest this update: Thu 13 Mar 2025 04:48:07 +0000 Manifest next update: Thu 20 Mar 2025 04:48:07 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: /ngs8uFr1/gEI70DrTfEvm6xFRjvJeJujDviiS4qmPQ=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: 6AR33Wik+3IncfDt4HA6wIzNa2809vMjvBmxeak2vik=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: IYR9mQ1VQUiO08kcI4RHdp/FLN6UHawsT13ESG27pvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6 Validity Not Before: Mar 13 04:48:07 2025 GMT Not After : Mar 20 04:48:07 2025 GMT Subject: CN=67d26387-5a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d8:77:77:aa:bb:20:db:c3:dc:25:0b:de:d8: cc:5d:59:a4:19:7a:49:20:d0:ea:d7:9c:87:b0:7d: 81:0a:d8:76:07:ef:d2:71:65:12:2b:e7:a6:10:8d: d3:ea:7d:62:ff:ff:12:bd:b8:37:6d:88:cc:b5:5a: eb:0b:47:d2:40:08:ad:4f:94:fc:dc:67:93:4f:38: c6:88:45:7a:14:56:c1:dd:08:29:15:60:81:c3:61: 1b:9b:e6:dc:f3:50:4c:af:d7:c6:21:86:48:6e:38: 58:8e:5d:1b:1d:9b:db:be:90:04:21:24:7c:08:8d: ad:47:03:09:29:e1:ac:11:3c:69:ea:c2:df:fb:d0: 46:ab:5a:60:40:47:67:9a:30:ee:7f:a9:7a:05:89: 7c:5f:ce:85:f5:02:6b:47:16:11:91:f4:e5:2f:0d: 36:7d:4e:d4:fb:9e:30:81:c1:05:39:7e:ab:6c:d7: b5:eb:e8:c8:3e:b6:51:bc:0a:f9:97:27:bf:e8:e8: b0:59:4d:86:3f:69:0e:77:45:c9:d2:43:03:4e:c6: 9b:17:bc:90:07:65:07:fc:15:da:ad:0b:b7:dd:81: b4:c9:a3:21:b8:95:ec:83:ab:f2:f6:af:a2:09:4b: b4:ea:3a:46:03:d5:37:9a:97:d0:80:f4:09:2a:7e: d5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:4E:A0:92:45:34:17:B3:D7:F0:F6:57:CD:D7:B4:7A:15:CD:93:08 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:58:06:48:ca:68:2c:c6:e5:6c:e1:b0:3d:08:af:c5:2c:f0: 2d:6b:9a:95:1b:93:d4:5c:63:78:c5:a2:63:3f:e9:25:60:d7: 93:1f:68:36:b0:d3:b6:37:fa:af:78:17:a9:e8:5e:40:c5:05: ac:66:f6:62:be:43:6a:83:c2:c5:cb:11:f2:90:34:60:d0:95: 4b:bb:80:82:b1:a2:ac:f0:85:85:33:c9:c1:57:94:67:e6:c9: d1:7e:44:9a:dc:17:bf:22:7d:e9:bc:58:01:da:39:90:18:ad: 46:ce:ea:cc:b9:d5:f3:aa:a8:a5:89:93:d8:ba:18:4c:1c:ce: 50:65:e9:23:b5:29:e6:19:1d:a4:d4:f2:19:b7:cc:06:31:32: 26:12:53:aa:95:d5:84:31:3d:59:ff:8e:7e:4e:00:6b:99:af: f8:c6:09:7d:6c:f9:4f:80:bc:1e:f8:c9:55:f8:84:95:36:86: 7d:2c:ca:54:a3:c0:36:f7:a7:d9:95:27:84:35:f4:5a:1e:de: 04:15:1b:46:74:95:c0:a6:e0:33:7e:cf:d7:bc:27:6a:9d:d9: e3:84:64:f5:22:5e:ac:56:0d:75:7d:fe:fb:af:65:7b:8c:1c: 8b:66:52:69:d4:5e:94:b9:11:a1:13:9c:a0:62:c8:2e:45:8d: e5:de:53:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUwMzEzMDQ0ODA3WhcNMjUwMzIwMDQ0ODA3WjAYMRYwFAYD VQQDEw02N2QyNjM4Ny01YTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19h3d6q7INvD3CUL3tjMXVmkGXpJINDq15yHsH2BCth2B+/ScWUSK+emEI3T 6n1i//8Svbg3bYjMtVrrC0fSQAitT5T83GeTTzjGiEV6FFbB3QgpFWCBw2Ebm+bc 81BMr9fGIYZIbjhYjl0bHZvbvpAEISR8CI2tRwMJKeGsETxp6sLf+9BGq1pgQEdn mjDuf6l6BYl8X86F9QJrRxYRkfTlLw02fU7U+54wgcEFOX6rbNe16+jIPrZRvAr5 lye/6OiwWU2GP2kOd0XJ0kMDTsabF7yQB2UH/BXarQu33YG0yaMhuJXsg6vy9q+i CUu06jpGA9U3mpfQgPQJKn7VywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBOoJJF NBez1/D2V83XtHoVzZMIMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNWAZIymgsxuVs4bA9CK/FLPAta5qVG5PUXGN4xaJjP+klYNeTH2g2 sNO2N/qveBep6F5AxQWsZvZivkNqg8LFyxHykDRg0JVLu4CCsaKs8IWFM8nBV5Rn 5snRfkSa3Be/In3pvFgB2jmQGK1GzurMudXzqqiliZPYuhhMHM5QZekjtSnmGR2k 1PIZt8wGMTImElOqldWEMT1Z/45+TgBrma/4xgl9bPlPgLwe+MlV+ISVNoZ9LMpU o8A296fZlSeENfRaHt4EFRtGdJXApuAzfs/XvCdqndnjhGT1Il6sVg11ff77r2V7 jByLZlJp1F6UuRGhE5ygYsguRY3l3lMz -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:59 2025 by rpki-client