$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: 43ShcnTKW/gtynKJmeKbRByqUatbfQH8afXsAuop10M= Subject key identifier: 3D:F8:67:A9:70:68:4E:83:13:42:F8:15:EB:DB:19:01:7E:49:7B:0B Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1979 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 196C Signing time: Thu 24 Apr 2025 16:24:40 +0000 Manifest this update: Thu 24 Apr 2025 16:24:39 +0000 Manifest next update: Thu 01 May 2025 16:24:39 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: aRM3N75FKPhAbvIV5+2znwoPPT16PP5ggXQwzz9wnQY=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: RpWQrrzOF7m9VblMswDEPjg4dQz5qJ23/hrPkxdWkfU=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Ca2UAKyheAxMu3mmz18qTaLEBY0cF4nQ72JfwkXPvJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6521 (0x1979) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Apr 24 16:24:39 2025 GMT Not After : May 1 16:24:39 2025 GMT Subject: CN=680a65c7-5fbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:06:66:fc:56:59:df:4a:59:b2:f3:a7:ea: 17:fa:14:a8:0a:6f:a4:16:24:09:23:22:53:77:f7: fd:36:ef:01:cc:5f:da:f8:33:45:69:0e:d7:4f:ce: 26:33:f4:d1:2e:2d:ac:09:8e:0b:68:86:ec:ff:49: 91:aa:d6:47:e8:f7:be:8e:d2:29:0f:ac:3c:28:e2: 2a:d5:45:be:08:ff:ef:cf:01:64:20:ea:3e:01:b5: 85:c1:16:f4:79:37:be:a7:c1:ae:66:8e:34:8d:f0: ce:fc:66:0e:71:51:8a:3b:9d:b0:d0:d3:74:e7:df: 9e:e3:91:f0:54:58:5d:53:f8:2e:eb:10:0e:bb:4b: e1:3d:77:ed:d7:84:95:a8:56:4c:9f:8f:3a:0a:c0: bc:07:e4:e0:ce:84:f0:a1:6c:ed:d1:40:c6:02:c0: 61:91:47:ff:91:65:fd:c0:cd:4c:91:df:1a:51:bf: 68:52:9c:92:0d:75:10:01:e9:ba:05:0b:c9:cf:a6: 95:fd:42:98:6a:c9:3f:6a:8f:b5:4b:6d:0b:a1:42: 6b:a8:88:0e:87:66:60:d4:0a:96:8c:78:ca:48:d7: 02:f6:ee:52:a6:ea:f4:ac:85:04:b5:11:88:67:ff: 05:23:1f:2e:d3:bd:00:91:8a:63:23:9b:6e:5f:2d: 20:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F8:67:A9:70:68:4E:83:13:42:F8:15:EB:DB:19:01:7E:49:7B:0B X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:84:69:c8:92:ef:47:1f:56:93:6b:e7:47:4d:7f:2c:fa:a3: cc:9d:02:1e:c0:e0:c1:40:42:94:dc:87:71:60:b4:15:bb:7e: 22:1c:74:fa:45:8a:a6:d3:86:2c:24:4d:37:41:5f:d3:c0:11: bc:5f:78:02:38:18:3b:de:bd:12:db:56:52:00:97:cb:af:22: 10:d5:1a:69:e5:06:7e:bf:55:92:76:d5:8c:b0:63:47:d0:f7: 2f:c5:0c:ef:e2:95:95:84:e6:60:4a:2b:43:3f:89:4e:7a:d0: 8d:b4:f7:b8:10:15:ba:6b:e1:ae:91:92:93:8b:a1:aa:30:d9: 34:97:62:ec:b2:0c:fa:5b:03:3b:fb:90:3c:1d:ea:1f:20:2f: 0c:02:6d:bb:87:d1:5f:5e:c3:b0:46:7b:3f:ae:f6:bc:6b:f9: c5:7b:b8:45:e8:87:cd:2c:67:92:55:1c:12:70:05:98:1b:58: ff:81:12:dc:21:22:d0:0d:41:47:c7:5d:47:c4:5b:73:eb:76: 79:8e:a1:00:16:60:04:98:cd:dd:12:f5:e4:52:e7:5a:17:3e: 1d:e6:f9:3c:e5:c1:70:81:59:ba:5e:29:d9:4c:43:40:9b:7f: 30:6b:88:d1:bd:aa:2d:ee:3b:46:2b:6d:b4:3f:ec:83:b7:5a: ec:33:1b:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwNDI0MTYyNDM5WhcNMjUwNTAxMTYyNDM5WjAYMRYwFAYD VQQDEw02ODBhNjVjNy01ZmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymMGZvxWWd9KWbLzp+oX+hSoCm+kFiQJIyJTd/f9Nu8BzF/a+DNFaQ7XT84m M/TRLi2sCY4LaIbs/0mRqtZH6Pe+jtIpD6w8KOIq1UW+CP/vzwFkIOo+AbWFwRb0 eTe+p8GuZo40jfDO/GYOcVGKO52w0NN059+e45HwVFhdU/gu6xAOu0vhPXft14SV qFZMn486CsC8B+TgzoTwoWzt0UDGAsBhkUf/kWX9wM1Mkd8aUb9oUpySDXUQAem6 BQvJz6aV/UKYask/ao+1S20LoUJrqIgOh2Zg1AqWjHjKSNcC9u5Spur0rIUEtRGI Z/8FIx8u070AkYpjI5tuXy0gZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD34Z6lw aE6DE0L4FevbGQF+SXsLMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvhGnIku9HH1aTa+dHTX8s+qPMnQIewODBQEKU3IdxYLQVu34iHHT6 RYqm04YsJE03QV/TwBG8X3gCOBg73r0S21ZSAJfLryIQ1Rpp5QZ+v1WSdtWMsGNH 0PcvxQzv4pWVhOZgSitDP4lOetCNtPe4EBW6a+GukZKTi6GqMNk0l2Lssgz6WwM7 +5A8HeofIC8MAm27h9FfXsOwRns/rva8a/nFe7hF6IfNLGeSVRwScAWYG1j/gRLc ISLQDUFHx11HxFtz63Z5jqEAFmAEmM3dEvXkUudaFz4d5vk85cFwgVm6XinZTENA m38wa4jRvaot7jtGK220P+yDt1rsMxuA -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:34 2025 by rpki-client