$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: 4QQVM6FX6BVG6d083ug0Cgo68wzIbiO9N9lHx3k24tg= Subject key identifier: 1B:53:E8:8D:A9:B1:70:63:85:3E:0D:07:81:2B:8D:D0:19:A6:61:ED Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1956 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 1949 Signing time: Fri 14 Feb 2025 16:50:48 +0000 Manifest this update: Fri 14 Feb 2025 16:50:47 +0000 Manifest next update: Fri 21 Feb 2025 16:50:47 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: qSzAzL0SX9EaQipbKu/rtlHl1CVRUhRHd+0pozqeNhU=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: RpWQrrzOF7m9VblMswDEPjg4dQz5qJ23/hrPkxdWkfU=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Ca2UAKyheAxMu3mmz18qTaLEBY0cF4nQ72JfwkXPvJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6486 (0x1956) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3 Validity Not Before: Feb 14 16:50:47 2025 GMT Not After : Feb 21 16:50:47 2025 GMT Subject: CN=67af7467-4643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d7:c4:dd:bd:55:fb:a2:c2:88:f2:9b:f6:49: 23:72:d9:b5:f9:ce:3a:9b:11:98:08:79:ec:b1:fb: 0d:41:b8:4f:b2:c7:45:59:7a:24:d0:9f:86:c2:05: b3:39:fc:59:99:4a:f6:62:75:2c:c0:ca:c8:35:1a: 70:37:dd:95:a2:45:ea:f9:11:2c:5a:2d:cb:71:be: 96:79:b4:92:46:ef:b8:83:e0:b7:0c:b6:bc:5e:a6: 7b:ad:59:fe:44:05:68:f1:6f:86:07:5d:1d:f5:5c: 5a:5c:ad:1d:91:94:cb:2b:90:df:c1:56:01:62:ef: 5e:34:43:05:62:ac:db:30:ae:47:a4:96:e2:96:cb: 15:34:d8:1d:4d:fb:f7:e8:94:8f:11:dc:01:c3:15: a3:df:e4:df:7e:47:32:f0:d0:d7:b6:d2:40:64:12: 25:71:10:7b:cc:d9:1b:b6:91:9a:74:8b:56:d5:26: 68:a8:5a:e5:ed:66:c3:66:f8:8c:ff:2c:e8:e5:f2: 3c:0f:58:21:37:3d:ef:a3:f9:bb:00:4d:9e:ed:c5: 6c:bb:f0:0b:97:f7:5b:fc:8a:14:b3:0a:ef:9d:42: a1:7b:3a:f1:d7:68:80:04:9f:6b:d1:81:4b:68:25: be:c0:b8:71:6c:3a:ff:eb:30:60:dd:4e:9c:2d:ec: 28:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:53:E8:8D:A9:B1:70:63:85:3E:0D:07:81:2B:8D:D0:19:A6:61:ED X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:d5:e0:c1:78:7e:a6:7d:f6:04:ec:b6:00:b1:47:b0:3e:ce: ed:e7:00:5b:59:25:a4:49:16:f0:f4:33:e8:1a:5e:a6:c8:7c: ad:71:b0:54:00:60:25:1d:5a:ce:58:0c:6c:30:99:d7:e7:5a: 3d:85:fe:11:93:93:d2:70:80:98:53:db:05:6b:fc:ea:77:34: 69:a6:f1:a5:1a:e1:06:55:0d:a0:96:a5:d4:f0:42:b0:f3:81: 21:da:cc:d6:84:b0:09:09:c9:86:ef:1f:32:c4:04:49:dd:f0: bd:aa:54:1a:3e:01:64:8b:9e:91:cd:5c:7b:29:20:42:a5:a8: 57:1d:49:c9:58:f9:e7:1e:12:e0:be:c9:a1:24:07:0c:2d:17: eb:ce:39:f5:84:0c:d7:f8:1d:15:47:a6:38:71:54:3c:dd:06: 52:dc:f9:f6:9c:48:20:68:81:be:2a:88:7e:a5:72:bd:fa:ca: 25:32:f2:a7:2e:6c:e4:ac:ef:3f:3d:96:ad:43:df:14:87:02: 05:72:49:6c:20:83:52:43:58:82:8b:49:16:92:8d:7f:c8:a2: 0c:be:4f:c3:da:02:d0:cc:71:c2:5d:ed:53:49:d4:fb:3d:cf: 00:97:ad:9a:38:73:ac:a7:1a:88:0e:a1:bd:7c:af:e6:9c:cc: b7:26:d2:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwMjE0MTY1MDQ3WhcNMjUwMjIxMTY1MDQ3WjAYMRYwFAYD VQQDEw02N2FmNzQ2Ny00NjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNfE3b1V+6LCiPKb9kkjctm1+c46mxGYCHnssfsNQbhPssdFWXok0J+GwgWz OfxZmUr2YnUswMrINRpwN92VokXq+REsWi3Lcb6WebSSRu+4g+C3DLa8XqZ7rVn+ RAVo8W+GB10d9VxaXK0dkZTLK5DfwVYBYu9eNEMFYqzbMK5HpJbilssVNNgdTfv3 6JSPEdwBwxWj3+Tffkcy8NDXttJAZBIlcRB7zNkbtpGadItW1SZoqFrl7WbDZviM /yzo5fI8D1ghNz3vo/m7AE2e7cVsu/ALl/db/IoUswrvnUKhezrx12iABJ9r0YFL aCW+wLhxbDr/6zBg3U6cLewoBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtT6I2p sXBjhT4NB4ErjdAZpmHtMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU1eDBeH6mffYE7LYAsUewPs7t5wBbWSWkSRbw9DPoGl6myHytcbBU AGAlHVrOWAxsMJnX51o9hf4Rk5PScICYU9sFa/zqdzRppvGlGuEGVQ2glqXU8EKw 84Eh2szWhLAJCcmG7x8yxARJ3fC9qlQaPgFki56RzVx7KSBCpahXHUnJWPnnHhLg vsmhJAcMLRfrzjn1hAzX+B0VR6Y4cVQ83QZS3Pn2nEggaIG+Koh+pXK9+solMvKn LmzkrO8/PZatQ98UhwIFcklsIINSQ1iCi0kWko1/yKIMvk/D2gLQzHHCXe1TSdT7 Pc8Al62aOHOspxqIDqG9fK/mnMy3JtL9 -----END CERTIFICATE-----Generated at Sun Feb 16 15:29:09 2025 by rpki-client