$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: fQRcXZUnYyiFi24Iw6VySS50dFjBGwzxzdh11cFmbD0= Subject key identifier: B4:AD:53:8F:54:6D:6D:3A:A4:A5:2A:CE:D2:27:7A:91:0F:E4:E4:B8 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 198D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 1980 Signing time: Mon 02 Jun 2025 16:35:20 +0000 Manifest this update: Mon 02 Jun 2025 16:35:19 +0000 Manifest next update: Mon 09 Jun 2025 16:35:19 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: 5T/tZ9WEXyn7dSZ9RA/qUHHQUJS2FN7+fxaBZY4eFv8=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: RpWQrrzOF7m9VblMswDEPjg4dQz5qJ23/hrPkxdWkfU=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Ca2UAKyheAxMu3mmz18qTaLEBY0cF4nQ72JfwkXPvJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:35:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6541 (0x198d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Jun 2 16:35:19 2025 GMT Not After : Jun 9 16:35:19 2025 GMT Subject: CN=683dd2c8-4805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:41:0b:41:63:33:d0:54:c2:9c:96:e8:39:20: 3c:2b:d6:cf:4c:7b:10:b1:16:23:9b:56:55:69:08: 64:19:9b:f2:ed:5b:f7:ac:45:ac:95:59:d7:55:96: b6:fb:ad:86:7c:7a:b2:95:b8:b8:da:75:b6:aa:6d: 87:bf:b5:55:24:af:16:15:25:a8:35:b2:ab:65:b8: 74:83:0f:00:f8:47:d6:77:89:91:84:2d:09:18:7f: ac:95:95:a9:b8:04:24:53:0e:79:ff:d9:c6:05:22: 09:ef:1a:2a:10:d5:39:b0:d4:41:54:6c:f8:31:ef: 40:ec:36:51:89:b2:3b:cd:ce:76:5f:60:21:42:09: cf:75:76:35:34:27:30:a6:a9:df:65:33:6d:ed:21: 9f:63:85:86:a6:2b:5f:f7:4c:8b:ad:f1:5b:f0:48: fa:13:de:7b:79:d7:9f:ad:f2:08:79:7f:2e:ce:40: 6e:a2:50:e1:c9:83:ce:1a:a9:ba:e0:13:89:93:c8: e2:51:b0:99:bb:33:16:84:7a:81:7e:aa:61:3e:02: 3d:b2:e0:8d:8e:a0:7f:b2:1c:2f:dd:11:95:6a:47: fe:2b:e4:3f:1b:d3:e1:7f:29:74:46:ed:c0:85:30: 53:8c:3d:2a:50:9e:52:3a:86:b6:47:a8:df:1f:ae: 96:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AD:53:8F:54:6D:6D:3A:A4:A5:2A:CE:D2:27:7A:91:0F:E4:E4:B8 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:dd:9b:01:2a:12:63:a7:29:ae:09:96:a8:97:cf:d7:e8:fe: 5f:3c:5f:4c:9f:97:ec:13:08:9b:5c:f4:16:88:5d:ba:1e:d9: 92:b7:ea:22:df:da:db:a3:29:bf:f7:de:93:43:27:d5:db:38: 92:fa:69:72:f6:6b:f2:da:24:58:52:8e:92:31:ae:ea:9e:50: a8:4a:20:d2:0e:88:2e:6b:99:8f:4f:38:6c:70:04:31:f5:7d: 0a:3d:b7:22:22:ce:a9:25:73:5e:0b:c3:81:e5:7f:bc:3e:db: 62:be:f5:ee:26:5b:f3:a7:83:c2:90:cf:44:4b:4a:5a:6c:93: 79:d5:94:f6:0b:fc:52:8d:72:52:ef:ca:21:00:19:16:99:24: 8e:96:7f:e2:a3:a0:d2:7a:fb:7b:8a:a0:94:5d:3d:52:c1:bd: a0:da:26:c9:61:71:61:e1:b7:f7:b1:56:d2:35:fa:83:8e:e5: 78:d5:e2:1b:28:a1:1c:4e:02:92:4b:08:fd:45:5d:95:e0:5b: ca:a6:67:1c:e9:47:ce:ea:90:b2:eb:01:bb:e9:6a:25:59:55: f4:a1:84:50:f5:7b:28:fa:f7:12:56:ea:29:5f:f1:15:25:de: 93:2c:9a:0a:52:ac:04:1e:0e:55:35:5f:00:9d:c2:0c:78:4d: 32:ec:ef:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwNjAyMTYzNTE5WhcNMjUwNjA5MTYzNTE5WjAYMRYwFAYD VQQDEw02ODNkZDJjOC00ODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0ELQWMz0FTCnJboOSA8K9bPTHsQsRYjm1ZVaQhkGZvy7Vv3rEWslVnXVZa2 +62GfHqylbi42nW2qm2Hv7VVJK8WFSWoNbKrZbh0gw8A+EfWd4mRhC0JGH+slZWp uAQkUw55/9nGBSIJ7xoqENU5sNRBVGz4Me9A7DZRibI7zc52X2AhQgnPdXY1NCcw pqnfZTNt7SGfY4WGpitf90yLrfFb8Ej6E957edefrfIIeX8uzkBuolDhyYPOGqm6 4BOJk8jiUbCZuzMWhHqBfqphPgI9suCNjqB/shwv3RGVakf+K+Q/G9Phfyl0Ru3A hTBTjD0qUJ5SOoa2R6jfH66WOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLStU49U bW06pKUqztInepEP5OS4MB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR3ZsBKhJjpymuCZaol8/X6P5fPF9Mn5fsEwibXPQWiF26HtmSt+oi 39rboym/996TQyfV2ziS+mly9mvy2iRYUo6SMa7qnlCoSiDSDogua5mPTzhscAQx 9X0KPbciIs6pJXNeC8OB5X+8PttivvXuJlvzp4PCkM9ES0pabJN51ZT2C/xSjXJS 78ohABkWmSSOln/io6DSevt7iqCUXT1Swb2g2ibJYXFh4bf3sVbSNfqDjuV41eIb KKEcTgKSSwj9RV2V4FvKpmcc6UfO6pCy6wG76WolWVX0oYRQ9Xso+vcSVuopX/EV Jd6TLJoKUqwEHg5VNV8AncIMeE0y7O/2 -----END CERTIFICATE-----Generated at Wed Jun 4 00:06:42 2025 by rpki-client