$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: urAJRNjSU1GX81430t9D1fraMjgpzCJgbK2+GriPFe8= Subject key identifier: CD:DA:2D:3A:B8:7D:EA:DD:02:34:D5:2E:C2:BC:B0:4F:60:43:2B:DE Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1A2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 1A10 Signing time: Sun 01 Mar 2026 23:20:38 +0000 Manifest this update: Sun 01 Mar 2026 23:20:36 +0000 Manifest next update: Sun 08 Mar 2026 23:20:36 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: 4AYhUJ094XSR16GC7J+6SinfL0NAeOSs1KaTs5MjPwc=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: 5xIwiYN2bq66xcbTgzzCXH464rppcKrXnxYzPXEOWkA=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: FsObJquiUKUZp+5Aqjtvqu1P49eOI9k0FqFQdL3t9fo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6699 (0x1a2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Mar 1 23:20:36 2026 GMT Not After : Mar 8 23:20:36 2026 GMT Subject: CN=69a4c9c5-4b90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c9:05:91:26:d8:9c:a8:ca:53:85:de:52:2a: 2f:f8:de:de:33:1e:40:99:d6:ed:1e:d0:3e:8c:db: ab:0b:c3:19:19:80:af:e9:43:c0:0d:e7:85:bb:64: d8:ad:b4:0f:85:f7:bf:58:a3:5c:3d:d6:61:71:90: ba:ea:4b:e0:33:cd:fd:75:d6:3d:a5:0f:d3:b9:ec: 20:ae:6e:8d:1d:15:7a:a0:52:06:65:5c:de:1f:08: 83:03:1a:ae:bb:ba:aa:95:07:39:65:b1:4f:aa:58: 48:cb:9f:7b:9d:e0:ea:f9:d8:8c:9b:fa:a6:f7:d9: 22:c6:2a:86:a1:58:25:73:5a:a1:a0:c6:ab:c0:0a: 26:91:8f:15:33:36:30:0c:bb:e7:e5:2f:46:2c:3f: cc:96:3c:3a:58:f2:37:1e:b0:9c:87:eb:a7:cc:83: f3:fd:f5:38:d7:0c:71:e6:3b:8c:5b:73:c0:55:68: 72:15:0f:62:54:1e:7b:82:20:84:53:8e:e9:2e:e8: ad:f4:bb:bc:67:e9:4d:69:50:a1:93:f8:e3:d1:9c: 7e:3d:d4:4f:8f:51:ff:58:89:52:bb:b8:d1:97:f5: 76:08:e4:0d:56:85:55:70:c8:19:87:34:25:7b:88: 66:76:64:39:df:4b:6c:e0:32:b8:ab:89:5b:95:51: 83:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:DA:2D:3A:B8:7D:EA:DD:02:34:D5:2E:C2:BC:B0:4F:60:43:2B:DE X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:79:0e:49:70:fb:96:33:12:11:8e:6c:0c:cf:8a:9e:e6:10: ef:99:03:5e:c3:f7:4c:fa:b7:be:f3:09:22:c7:11:38:5d:4a: 65:8c:11:dc:9a:e5:01:99:02:2b:60:57:b2:23:47:17:c7:2e: 78:ba:d8:a0:c6:91:bc:91:41:c1:60:58:2c:e4:50:fd:71:b8: e1:86:ce:43:a6:24:14:60:e5:66:7f:10:72:96:b2:40:09:bf: 5e:80:64:ee:f3:87:ca:73:71:e2:e0:4e:5a:45:cd:23:a4:d8: 82:b6:b5:a4:90:8d:db:7a:97:0e:7c:8d:c5:3d:6d:f9:15:1c: fc:91:d1:f4:77:25:bd:24:40:e6:2b:36:a9:86:cb:4d:61:d6: cf:60:68:f6:24:4e:1b:0d:e0:5b:18:0d:bd:fd:1d:48:cc:3c: 3c:c8:61:60:c0:36:7a:5e:f1:70:7d:b4:e6:54:5a:b5:b9:4f: f7:89:93:2c:46:f2:30:3c:1d:51:95:24:1c:13:44:00:01:a2: bd:cb:d5:50:2e:38:05:e0:f7:b2:e7:56:e4:e0:ed:5a:bf:97: eb:4f:3a:b7:e5:29:9c:33:90:a2:35:44:18:54:b6:40:31:24: de:22:08:5f:d3:b8:2a:88:fd:f5:9e:ae:a4:ec:36:c3:52:86: 12:7a:8e:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjYwMzAxMjMyMDM2WhcNMjYwMzA4MjMyMDM2WjAYMRYwFAYD VQQDEw02OWE0YzljNS00YjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzskFkSbYnKjKU4XeUiov+N7eMx5AmdbtHtA+jNurC8MZGYCv6UPADeeFu2TY rbQPhfe/WKNcPdZhcZC66kvgM839ddY9pQ/Tuewgrm6NHRV6oFIGZVzeHwiDAxqu u7qqlQc5ZbFPqlhIy597neDq+diMm/qm99kixiqGoVglc1qhoMarwAomkY8VMzYw DLvn5S9GLD/Mljw6WPI3HrCch+unzIPz/fU41wxx5juMW3PAVWhyFQ9iVB57giCE U47pLuit9Lu8Z+lNaVChk/jj0Zx+PdRPj1H/WIlSu7jRl/V2COQNVoVVcMgZhzQl e4hmdmQ530ts4DK4q4lblVGDnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3aLTq4 ferdAjTVLsK8sE9gQyveMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOXkOSXD7ljMSEY5sDM+KnuYQ75kDXsP3TPq3vvMJIscROF1KZYwR3JrlAZkC K2BXsiNHF8cueLrYoMaRvJFBwWBYLORQ/XG44YbOQ6YkFGDlZn8QcpayQAm/XoBk 7vOHynNx4uBOWkXNI6TYgra1pJCN23qXDnyNxT1t+RUc/JHR9HclvSRA5is2qYbL TWHWz2Bo9iROGw3gWxgNvf0dSMw8PMhhYMA2el7xcH205lRatblP94mTLEbyMDwd UZUkHBNEAAGivcvVUC44BeD3sudW5ODtWr+X6086t+UpnDOQojVEGFS2QDEk3iII X9O4Koj99Z6upOw2w1KGEnqOug== -----END CERTIFICATE-----Generated at Mon Mar 2 08:34:37 2026 by rpki-client