$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: nrtgyKXqcAijj0FRjC3TFL+GhgU7eNKbthqTHR3mVGI= Subject key identifier: 42:35:23:ED:2C:DA:5C:39:17:0A:F2:7E:08:15:E0:50:AB:CA:29:39 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 19B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 19A4 Signing time: Fri 08 Aug 2025 16:32:44 +0000 Manifest this update: Fri 08 Aug 2025 16:32:43 +0000 Manifest next update: Fri 15 Aug 2025 16:32:43 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: s8dkXlyXcp2R/S8bsJtWnnrRDfgoar/bxr+3HFO6sWo=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: 9LBAFHVyWvEKSALgxe/WVtOrUQqJ4PPcHQSe6I3XcVM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: vof6OG8sAX0uHAvhetFYEpdSjwUJhtpp1UkP8lk0Gm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6579 (0x19b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Aug 8 16:32:43 2025 GMT Not After : Aug 15 16:32:43 2025 GMT Subject: CN=689626ac-1bad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:40:c0:85:5a:87:c7:f9:f3:da:c5:8d:8a:d2: 9e:86:19:8d:0d:5d:3d:fe:ec:eb:8b:52:8b:a2:87: 30:78:ab:71:b0:c5:c2:b1:bc:6b:f2:9f:22:a8:3b: 66:e0:ff:0c:d1:f3:c0:1b:f9:07:a9:76:21:c8:11: 42:f5:a8:33:1f:2a:51:ee:cb:1e:9b:9d:0c:1d:fb: 11:9c:ef:e7:18:f0:9e:54:3b:d9:5f:74:fb:80:3e: bb:d2:5f:b3:57:6f:77:3f:95:e7:be:c4:15:da:40: 73:ec:29:92:77:03:78:49:16:c6:64:01:57:9a:76: 55:56:b0:36:5a:ba:41:9e:66:f9:b8:c1:3f:05:3d: 83:5d:e7:bd:8b:b0:dc:98:b5:0c:b5:3d:e8:0e:f1: 9e:10:78:04:ab:35:4d:ba:83:20:14:83:ac:08:d4: e8:2f:48:02:97:e5:1b:b8:7e:1e:0a:14:6a:93:32: bd:59:59:67:d1:05:e5:3c:f4:29:ad:a3:fc:4d:4c: c1:52:11:ff:9b:cb:40:c9:53:b0:e0:09:52:b1:3a: b7:07:85:81:d5:e0:9b:9c:f9:ae:8c:ee:e9:ec:c0: 5e:53:06:be:34:13:9b:14:6d:26:de:d4:9b:02:15: bc:bf:de:d5:27:bc:1a:bc:cc:1f:7c:b4:c1:f7:94: 89:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:35:23:ED:2C:DA:5C:39:17:0A:F2:7E:08:15:E0:50:AB:CA:29:39 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:58:61:bd:14:c9:83:07:1a:1e:b9:14:b1:63:1b:23:7b:eb: 8a:11:fc:fc:69:b4:25:76:17:f1:78:c6:04:c7:77:35:53:c9: 1e:d8:db:b0:4e:85:f6:c5:9f:56:3c:3a:39:58:a0:49:c7:86: 7d:81:62:61:c6:40:c0:1e:ad:38:cd:a5:69:c1:c3:59:b4:0a: 89:b4:6b:f0:42:1c:69:14:97:fc:da:97:92:07:76:91:60:59: e0:9c:89:c0:c1:9c:65:bd:e3:69:73:27:5c:f4:56:28:d5:e5: c7:9e:01:9b:c5:63:a4:98:8b:ec:33:84:29:e4:b2:52:c2:96: 14:c4:59:57:8b:44:30:01:ef:01:a5:4c:a7:ff:ad:9f:61:ea: ad:b5:cb:cb:4f:45:17:bd:24:0b:a6:7f:51:e7:5a:f5:0a:36: 0c:47:9f:19:13:6d:7e:3a:d1:a5:64:1f:78:d1:ab:65:a1:27: a1:2b:8c:d5:58:7f:ea:94:38:13:f8:cc:b6:c7:27:71:0a:da: 10:c7:5f:33:e6:f2:30:a5:de:d5:e0:a0:e5:e2:62:27:7a:84: 90:20:bb:a3:f1:e5:f7:10:5f:b5:2b:6f:bc:8b:6f:8f:16:c9: 97:2d:cd:e2:10:d2:ff:30:f8:ca:18:c5:e2:95:05:b6:ad:d1: 00:4e:ff:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwODA4MTYzMjQzWhcNMjUwODE1MTYzMjQzWjAYMRYwFAYD VQQDEw02ODk2MjZhYy0xYmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEDAhVqHx/nz2sWNitKehhmNDV09/uzri1KLoocweKtxsMXCsbxr8p8iqDtm 4P8M0fPAG/kHqXYhyBFC9agzHypR7ssem50MHfsRnO/nGPCeVDvZX3T7gD670l+z V293P5XnvsQV2kBz7CmSdwN4SRbGZAFXmnZVVrA2WrpBnmb5uME/BT2DXee9i7Dc mLUMtT3oDvGeEHgEqzVNuoMgFIOsCNToL0gCl+UbuH4eChRqkzK9WVln0QXlPPQp raP8TUzBUhH/m8tAyVOw4AlSsTq3B4WB1eCbnPmujO7p7MBeUwa+NBObFG0m3tSb AhW8v97VJ7wavMwffLTB95SJrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI1I+0s 2lw5FwryfggV4FCryik5MB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIWGG9FMmDBxoeuRSxYxsje+uKEfz8abQldhfxeMYEx3c1U8ke2Nuw ToX2xZ9WPDo5WKBJx4Z9gWJhxkDAHq04zaVpwcNZtAqJtGvwQhxpFJf82peSB3aR YFngnInAwZxlveNpcydc9FYo1eXHngGbxWOkmIvsM4Qp5LJSwpYUxFlXi0QwAe8B pUyn/62fYeqttcvLT0UXvSQLpn9R51r1CjYMR58ZE21+OtGlZB940atloSehK4zV WH/qlDgT+My2xydxCtoQx18z5vIwpd7V4KDl4mIneoSQILuj8eX3EF+1K2+8i2+P FsmXLc3iENL/MPjKGMXilQW2rdEATv9y -----END CERTIFICATE-----Generated at Sun Aug 10 16:07:31 2025 by rpki-client