$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: OxJF5ICwVc1/MuGbHGO4HzY6iOTMnkFjScuX0ApRcbs= Subject key identifier: 2F:B7:2C:74:26:1D:88:4B:01:C2:02:30:5F:F6:D7:E0:DD:89:6C:77 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1995 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 1988 Signing time: Wed 18 Jun 2025 16:24:24 +0000 Manifest this update: Wed 18 Jun 2025 16:24:24 +0000 Manifest next update: Wed 25 Jun 2025 16:24:24 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: ZX4skB18X5+O/uiwohNfSJDcvY6Sn42YnmxBVwPzBo0=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: RpWQrrzOF7m9VblMswDEPjg4dQz5qJ23/hrPkxdWkfU=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Ca2UAKyheAxMu3mmz18qTaLEBY0cF4nQ72JfwkXPvJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6549 (0x1995) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Jun 18 16:24:24 2025 GMT Not After : Jun 25 16:24:24 2025 GMT Subject: CN=6852e838-1902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:66:5e:43:5b:0d:37:4d:10:3d:7d:6c:a3: 59:3c:8f:e5:fc:22:b7:54:b8:50:78:98:de:46:63: 9d:96:09:a7:ad:44:35:41:87:76:95:54:c9:1a:ab: 52:b4:ea:d1:a3:e3:0b:3f:4c:02:80:79:cc:f9:68: f4:a4:78:e3:68:58:ec:31:c3:be:bd:7b:51:38:c6: 63:b2:4b:85:f8:04:bf:bc:91:12:a6:94:08:4f:3d: 7c:4d:d8:04:e5:42:d5:bb:5b:5b:95:88:8f:cb:29: a6:19:95:54:72:4b:6f:6e:48:94:30:61:c6:79:22: 72:4f:ba:de:fe:ce:1a:88:ee:62:41:ac:6d:71:d3: b1:7d:65:3a:ae:8b:c7:8a:c7:b7:05:0b:3e:6c:d4: bb:14:b4:fa:e3:07:4e:43:1b:f1:e4:c4:8a:ee:06: b3:ef:82:1e:71:c2:a2:41:40:a1:87:8e:7b:f0:98: c3:38:4b:59:0a:58:36:6b:3b:a1:24:f4:f0:a9:a9: 41:76:bb:28:5c:98:2b:34:e5:9d:d6:cd:08:4e:c8: 7c:66:99:55:f2:73:46:ff:8e:0f:9b:f9:90:b4:f0: 42:fc:1d:6d:3a:bd:56:cc:94:6f:58:2d:04:07:87: 66:0f:44:f6:6e:6e:fb:61:5b:04:4f:11:bd:c8:bb: 1f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B7:2C:74:26:1D:88:4B:01:C2:02:30:5F:F6:D7:E0:DD:89:6C:77 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:1d:96:da:f0:19:fa:1a:a7:57:a3:48:2a:f6:90:66:98:0a: a5:32:aa:d8:d4:0f:40:e5:2d:63:47:43:ad:0a:dc:49:29:9b: 6e:b4:d8:5a:fb:a8:45:69:9b:f2:70:a7:90:20:fd:f2:68:b1: 4c:84:aa:b1:b8:01:04:ef:2e:d2:70:b1:66:2b:76:5a:e7:5d: d9:e9:49:2b:27:dc:6b:ef:df:b1:b2:06:5d:86:c2:20:6b:1d: c4:c2:e9:e8:08:44:c4:8b:94:06:c1:a7:69:3a:8e:b2:4e:0f: 1f:84:71:57:89:63:70:71:20:13:27:c9:87:87:a9:39:d8:82: 47:7c:2b:85:ce:27:8c:ce:26:aa:18:5b:c2:c4:5f:3a:d7:34: 91:10:7a:83:ec:73:10:cf:0d:1f:fd:28:83:af:99:af:4e:7d: 8a:31:e2:86:9a:2b:a9:e1:56:7c:69:a4:c7:ca:d3:92:7e:0d: d1:f5:ed:c0:aa:ea:18:a7:1e:7b:da:ed:d7:8e:17:b6:1a:66: 0d:6e:7a:64:f0:4f:d9:ae:75:a2:4d:f7:13:d4:61:23:dd:71: 2b:e6:64:2a:87:62:16:e4:da:54:13:3f:50:74:65:9b:bc:b0: 62:b6:1b:83:59:bc:0a:96:8f:88:9c:70:9a:65:96:e4:3c:48: 73:c0:69:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwNjE4MTYyNDI0WhcNMjUwNjI1MTYyNDI0WjAYMRYwFAYD VQQDEw02ODUyZTgzOC0xOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArf1mXkNbDTdNED19bKNZPI/l/CK3VLhQeJjeRmOdlgmnrUQ1QYd2lVTJGqtS tOrRo+MLP0wCgHnM+Wj0pHjjaFjsMcO+vXtROMZjskuF+AS/vJESppQITz18TdgE 5ULVu1tblYiPyymmGZVUcktvbkiUMGHGeSJyT7re/s4aiO5iQaxtcdOxfWU6rovH ise3BQs+bNS7FLT64wdOQxvx5MSK7gaz74IeccKiQUChh4578JjDOEtZClg2azuh JPTwqalBdrsoXJgrNOWd1s0ITsh8ZplV8nNG/44Pm/mQtPBC/B1tOr1WzJRvWC0E B4dmD0T2bm77YVsETxG9yLsfDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+3LHQm HYhLAcICMF/21+DdiWx3MB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHHZba8Bn6GqdXo0gq9pBmmAqlMqrY1A9A5S1jR0OtCtxJKZtutNha +6hFaZvycKeQIP3yaLFMhKqxuAEE7y7ScLFmK3Za513Z6UkrJ9xr79+xsgZdhsIg ax3EwunoCETEi5QGwadpOo6yTg8fhHFXiWNwcSATJ8mHh6k52IJHfCuFzieMziaq GFvCxF861zSREHqD7HMQzw0f/SiDr5mvTn2KMeKGmiup4VZ8aaTHytOSfg3R9e3A quoYpx572u3Xjhe2GmYNbnpk8E/ZrnWiTfcT1GEj3XEr5mQqh2IW5NpUEz9QdGWb vLBithuDWbwKlo+InHCaZZbkPEhzwGll -----END CERTIFICATE-----Generated at Thu Jun 19 15:38:07 2025 by rpki-client