$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: pVF3HaFuI20E6OTFeenn+6xiSJ8AYxwz0T48020NO+w= Subject key identifier: 75:6B:72:ED:28:B5:CD:58:B0:42:48:1D:75:5A:AC:A8:6E:20:60:FC Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: A8 Signing time: Tue 03 Jun 2025 06:00:23 +0000 Manifest this update: Tue 03 Jun 2025 06:00:22 +0000 Manifest next update: Tue 10 Jun 2025 06:00:22 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: +XYa0faO0XrGDjDxZch9ylPuoygjKRT6x/n8aKsKIMY=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: +ehd8KtxPwFaqFNVmOCKeYgOq8q50OL3e4iQXY+Px88=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: IYR9mQ1VQUiO08kcI4RHdp/FLN6UHawsT13ESG27pvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Jun 3 06:00:22 2025 GMT Not After : Jun 10 06:00:22 2025 GMT Subject: CN=683e8f76-55f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dc:1f:05:28:cc:87:f6:69:6a:fa:ec:a5:e7: c1:82:9f:bc:37:95:f9:52:87:e1:0c:14:6a:07:41: 0a:4d:6c:83:f3:2c:23:75:33:27:4d:dd:c1:e1:8d: 6d:88:09:8c:44:6a:41:e7:d0:ee:9b:7d:af:21:4b: b2:3a:81:41:d6:cd:d6:05:da:11:44:c6:90:3d:68: c4:b0:d2:df:51:14:66:81:00:59:42:7c:2a:84:8d: 47:8c:53:e6:5e:9c:68:cb:d7:d9:eb:4c:69:9c:21: ea:29:98:84:84:b5:a6:ab:8a:b2:20:3f:fc:0f:86: 3e:11:a3:9b:f4:10:00:9a:dc:7d:63:ab:7c:7e:8a: ed:8a:37:6b:fe:e7:1b:69:b4:1f:82:12:8e:24:31: 7d:3b:28:54:9e:7d:3a:8d:8f:e1:85:da:41:d4:e1: e1:ac:80:ff:14:14:59:3e:a7:63:8d:73:5c:ab:87: f6:3e:b0:22:ad:b0:c9:35:89:70:93:c9:e5:54:fa: 7a:f4:f5:0a:10:12:74:be:98:ac:d8:50:2e:19:33: 99:94:a4:18:5c:79:2b:96:0b:42:d1:08:fc:46:0b: 5f:df:e3:b8:e5:53:9f:6f:a2:2b:69:88:5b:f6:9a: df:8b:2e:9e:c3:de:d0:4d:a1:2e:98:e0:07:6b:2a: 5d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6B:72:ED:28:B5:CD:58:B0:42:48:1D:75:5A:AC:A8:6E:20:60:FC X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:df:3a:c3:e3:f4:56:38:48:a9:d7:7c:69:93:64:1a:17:82: e2:d7:9c:07:ca:24:b5:9b:85:5f:2a:64:1b:a5:99:71:a3:05: 13:03:bf:eb:66:0e:d3:45:4f:24:a1:eb:1f:2a:91:0b:8e:21: 6e:5d:9f:10:74:22:3d:b4:d0:31:8d:51:46:6d:68:c5:e3:4e: df:a8:ed:27:44:45:8f:c5:39:13:b8:9e:05:8b:8f:87:e6:02: 6e:e4:f0:8c:63:ec:6e:69:83:a2:af:b4:a4:46:4a:6a:46:52: 77:2c:05:e2:25:32:d0:bc:49:4e:05:46:91:de:6e:79:78:f2: aa:cb:5f:b5:0b:54:d9:36:5e:5e:45:d6:c2:b7:79:4a:7a:5e: c8:aa:6f:bb:90:76:13:72:58:8f:07:d4:32:0b:d5:1c:38:cd: b7:1f:c6:49:be:11:a8:96:15:72:71:64:31:cf:61:36:92:c9: 3b:9b:ab:d0:38:a5:8d:de:96:b7:43:e8:4c:b1:ed:99:1f:50: ad:1c:13:89:e4:c7:70:16:82:8d:cb:81:6b:e1:43:c5:20:98: 31:23:31:50:7b:2b:5d:26:cc:d8:ff:f5:d8:01:97:95:1f:43: 58:46:2c:04:b8:e3:5d:32:84:2c:f9:b0:f6:4c:6b:de:cb:6b: 94:11:49:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUwNjAzMDYwMDIyWhcNMjUwNjEwMDYwMDIyWjAYMRYwFAYD VQQDEw02ODNlOGY3Ni01NWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9wfBSjMh/ZpavrspefBgp+8N5X5UofhDBRqB0EKTWyD8ywjdTMnTd3B4Y1t iAmMRGpB59Dum32vIUuyOoFB1s3WBdoRRMaQPWjEsNLfURRmgQBZQnwqhI1HjFPm Xpxoy9fZ60xpnCHqKZiEhLWmq4qyID/8D4Y+EaOb9BAAmtx9Y6t8fortijdr/ucb abQfghKOJDF9OyhUnn06jY/hhdpB1OHhrID/FBRZPqdjjXNcq4f2PrAirbDJNYlw k8nlVPp69PUKEBJ0vpis2FAuGTOZlKQYXHkrlgtC0Qj8Rgtf3+O45VOfb6IraYhb 9prfiy6ew97QTaEumOAHaypdjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVrcu0o tc1YsEJIHXVarKhuIGD8MB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD3zrD4/RWOEip13xpk2QaF4Li15wHyiS1m4VfKmQbpZlxowUTA7/r Zg7TRU8koesfKpELjiFuXZ8QdCI9tNAxjVFGbWjF407fqO0nREWPxTkTuJ4Fi4+H 5gJu5PCMY+xuaYOir7SkRkpqRlJ3LAXiJTLQvElOBUaR3m55ePKqy1+1C1TZNl5e RdbCt3lKel7Iqm+7kHYTcliPB9QyC9UcOM23H8ZJvhGolhVycWQxz2E2ksk7m6vQ OKWN3pa3Q+hMse2ZH1CtHBOJ5MdwFoKNy4Fr4UPFIJgxIzFQeytdJszY//XYAZeV H0NYRiwEuONdMoQs+bD2TGvey2uUEUlY -----END CERTIFICATE-----Generated at Wed Jun 4 12:11:54 2025 by rpki-client