$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: UZViTdvwCMlRTTdfDO6TLU8WBHWS2yuJOfWXZBXdltU= Subject key identifier: 90:69:38:4E:EF:42:36:5B:ED:D8:00:5E:64:D5:B2:74:BD:F0:56:9A Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1A55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 1A2A Signing time: Sat 18 Apr 2026 16:16:13 +0000 Manifest this update: Sat 18 Apr 2026 16:16:12 +0000 Manifest next update: Sat 25 Apr 2026 16:16:12 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: LLLGuv3jK2FnGj4c2EhIQNsrj0fTQiYzp9qZKzuAK7w=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: FC6f6swDrytiXT9xRSCl2yrTExj3rPMVZ/X6aFbgLFM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Sw7KRJ3Hz6dAXQ9/sIjAX/GFlM314WtidHFZ3x1gnFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 16:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6741 (0x1a55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Apr 18 16:16:12 2026 GMT Not After : Apr 25 16:16:12 2026 GMT Subject: CN=69e3ae4d-30d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:21:ee:ea:84:33:b6:4d:66:66:01:08:54:70: 45:ef:d2:58:95:8b:ef:1f:71:df:24:86:47:6e:f3: dc:42:9d:78:7e:a0:68:88:87:44:57:03:b1:5d:42: b6:b7:65:18:2a:e8:bb:cf:60:76:b8:d7:cd:5b:f0: 10:e6:cf:0a:e3:b4:35:be:84:d8:1f:c3:3b:66:6c: ce:a6:4f:70:ff:b9:d4:c7:33:1b:ef:7a:1e:3e:ed: 0c:7c:0b:35:89:8a:eb:51:72:d3:e0:db:c8:c9:e9: 06:05:76:bf:94:18:c9:6c:1d:27:60:14:3f:b1:1d: 1d:d4:f7:de:74:02:37:66:e5:98:7a:86:d0:7e:21: a9:71:07:39:8d:de:f3:45:b5:36:e2:c2:c9:89:86: cd:6b:98:b2:7a:43:62:8d:ec:c4:ed:70:17:47:30: 1f:fc:a7:e3:68:1c:c7:e7:46:67:bd:6d:0f:c1:21: 70:14:bd:4a:db:2b:4c:d3:b5:b0:e2:6b:38:d4:e6: 22:f6:cc:a2:5f:54:c7:5d:42:a4:0c:36:80:1a:ae: a6:48:7f:42:ce:5b:68:5c:57:83:a1:64:b7:8d:27: e5:cc:bb:88:b9:6b:94:58:18:d1:d2:b8:ad:cf:38: 95:2b:5c:4c:2b:6d:a4:aa:b2:ed:76:8a:7b:5a:57: 5e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:69:38:4E:EF:42:36:5B:ED:D8:00:5E:64:D5:B2:74:BD:F0:56:9A X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:55:b4:51:ef:1c:85:9d:b2:71:7b:ff:55:29:a3:e7:64:fe: 33:50:84:9e:3c:4e:c8:44:cf:b8:39:66:81:56:b3:b8:28:9d: 3f:0d:93:96:14:1f:4a:ce:09:51:55:82:29:b7:1f:55:d0:86: 79:a0:05:03:a3:5e:14:e4:7d:6f:5c:2c:4f:3c:33:3c:62:81: e9:cf:1d:7e:6a:84:c5:37:81:fa:d3:bb:eb:aa:ac:49:d6:bd: 29:ec:19:68:25:76:dd:97:ee:ff:f7:91:0b:16:5b:94:8c:f2: 6f:d7:95:79:bb:48:f3:6f:33:fa:dd:64:2b:88:00:88:0c:11: a3:82:6f:ab:4a:d7:f1:68:06:12:20:4c:8e:97:16:94:02:45: b2:67:d5:4c:eb:5d:e8:e2:22:63:da:b0:32:46:96:5f:a1:ae: 1c:fc:1b:89:53:10:67:6d:cb:94:8d:2e:8e:47:64:9c:8c:2a: 6a:f0:f2:aa:2a:b7:66:47:3d:8c:84:43:07:5c:24:54:17:cc: a0:f1:cc:01:c0:56:87:b6:9b:4c:dc:58:73:7a:b6:e6:94:93: eb:d5:80:6f:a8:ae:c6:5d:0b:43:a5:ea:ac:2b:4d:d1:4a:3a: 6e:c5:d4:7b:0a:cb:5f:b4:94:8f:05:48:74:ca:dc:cf:91:e4: 6d:a1:49:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjYwNDE4MTYxNjEyWhcNMjYwNDI1MTYxNjEyWjAYMRYwFAYD VQQDEw02OWUzYWU0ZC0zMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlCHu6oQztk1mZgEIVHBF79JYlYvvH3HfJIZHbvPcQp14fqBoiIdEVwOxXUK2 t2UYKui7z2B2uNfNW/AQ5s8K47Q1voTYH8M7ZmzOpk9w/7nUxzMb73oePu0MfAs1 iYrrUXLT4NvIyekGBXa/lBjJbB0nYBQ/sR0d1PfedAI3ZuWYeobQfiGpcQc5jd7z RbU24sLJiYbNa5iyekNijezE7XAXRzAf/KfjaBzH50ZnvW0PwSFwFL1K2ytM07Ww 4ms41OYi9syiX1THXUKkDDaAGq6mSH9CzltoXFeDoWS3jSflzLuIuWuUWBjR0rit zziVK1xMK22kqrLtdop7WldeKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJBpOE7v QjZb7dgAXmTVsnS98FaaMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAlW0Ue8chZ2ycXv/VSmj52T+M1CEnjxOyETPuDlmgVazuCidPw2TlhQfSs4J UVWCKbcfVdCGeaAFA6NeFOR9b1wsTzwzPGKB6c8dfmqExTeB+tO766qsSda9KewZ aCV23Zfu//eRCxZblIzyb9eVebtI828z+t1kK4gAiAwRo4Jvq0rX8WgGEiBMjpcW lAJFsmfVTOtd6OIiY9qwMkaWX6GuHPwbiVMQZ23LlI0ujkdknIwqavDyqiq3Zkc9 jIRDB1wkVBfMoPHMAcBWh7abTNxYc3q25pST69WAb6iuxl0LQ6XqrCtN0Uo6bsXU ewrLX7SUjwVIdMrcz5HkbaFJ2A== -----END CERTIFICATE-----Generated at Sun Apr 19 11:00:01 2026 by rpki-client