$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: VBG+nObi3vjbN8QSqY7TGcU98U3q0gSncw8npCJnQMI= Subject key identifier: 9F:B2:E1:5D:A7:E6:44:5B:45:A8:EA:C0:AA:C9:97:66:F3:51:23:50 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 19C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 19B3 Signing time: Sat 06 Sep 2025 16:27:04 +0000 Manifest this update: Sat 06 Sep 2025 16:27:03 +0000 Manifest next update: Sat 13 Sep 2025 16:27:03 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: s/dybu9iATko7r79j2/LqTZ+5oRkV9fg3j/yCYRUwns=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: 9LBAFHVyWvEKSALgxe/WVtOrUQqJ4PPcHQSe6I3XcVM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: vof6OG8sAX0uHAvhetFYEpdSjwUJhtpp1UkP8lk0Gm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6594 (0x19c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Sep 6 16:27:03 2025 GMT Not After : Sep 13 16:27:03 2025 GMT Subject: CN=68bc60d7-bdfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:14:44:08:c9:94:60:ae:cc:50:fd:b3:05:0a: f1:30:5b:13:e6:60:05:cb:c6:39:a7:f8:8c:ff:57: 75:c1:20:3c:cb:2a:62:da:d4:02:8d:52:34:44:81: 57:d3:2b:c3:31:6f:6a:82:2d:52:07:84:df:6c:77: 12:6b:c4:e7:8d:36:e8:c3:d4:72:42:c9:91:b2:0a: 3a:61:fd:56:a4:a2:e6:9a:13:37:e8:d0:20:48:2f: 0c:19:36:a6:ea:20:31:a0:7c:6a:1a:9a:64:84:fd: e0:ea:f2:6f:5f:e7:92:c0:83:a4:fe:b4:c5:48:64: 23:ec:e4:ca:58:68:ae:c2:5f:09:a4:ab:14:68:36: 93:70:e9:f1:a6:4b:02:2e:bc:c1:bb:6b:47:e3:0f: 3a:d0:97:a2:6f:d2:d2:a6:07:a5:f4:fd:5e:19:25: 3f:df:87:fe:bd:16:b8:4e:80:b1:6c:3e:9f:c9:3d: d6:2a:02:14:01:93:12:b8:6b:31:9b:62:0e:a4:27: fb:31:05:ef:2d:c7:74:27:3d:1e:b2:76:80:6e:1e: dc:78:7a:32:b9:69:03:7e:f0:c1:96:5a:6b:23:16: e0:d2:9b:e3:2d:d9:65:8d:48:6f:5c:66:8c:ff:86: 7a:27:59:75:76:4b:93:8d:d8:7c:95:67:0e:19:a2: 4d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B2:E1:5D:A7:E6:44:5B:45:A8:EA:C0:AA:C9:97:66:F3:51:23:50 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:a3:47:01:c0:4a:0d:d9:3c:71:22:18:c4:96:6a:61:1e:c6: 5e:dd:f6:d4:f9:dc:c5:ba:33:b7:b0:21:c7:73:78:4e:d7:7e: ae:db:8a:72:c7:85:94:27:97:e6:03:9b:15:87:ca:35:fa:d6: 29:9a:f9:af:40:e2:22:38:d1:32:f3:4a:17:3e:92:64:01:57: 56:7f:9f:b7:95:79:46:c1:df:9b:01:12:24:97:b7:84:d6:70: 92:0c:ec:30:7c:0c:89:45:8a:8f:e5:d4:c6:68:fd:9c:38:c1: bd:ab:a6:c2:57:d8:f4:82:13:60:e6:64:cd:1d:25:0c:36:bb: 0f:15:cd:67:a5:80:64:94:ff:11:e2:b5:c7:18:83:dd:31:ab: 4a:2c:db:fa:4c:94:86:c5:17:b9:4e:e3:d2:d8:b9:89:08:6c: 77:c6:d2:9d:c5:95:ca:8e:5c:62:df:cf:59:16:82:d5:47:94: 80:a9:43:af:79:00:65:45:ef:92:74:68:46:c6:bb:6b:2f:f1: ee:14:0f:be:15:53:fe:31:30:cd:46:f9:5b:82:19:d8:73:65: ad:0d:e6:6f:e3:db:c6:fa:e5:cb:68:3d:42:99:e9:1c:b5:99: 75:7f:07:96:05:8b:2e:ff:5d:1f:9d:37:0b:ff:f3:d0:5a:10: 90:49:23:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwOTA2MTYyNzAzWhcNMjUwOTEzMTYyNzAzWjAYMRYwFAYD VQQDEw02OGJjNjBkNy1iZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBRECMmUYK7MUP2zBQrxMFsT5mAFy8Y5p/iM/1d1wSA8yypi2tQCjVI0RIFX 0yvDMW9qgi1SB4TfbHcSa8TnjTbow9RyQsmRsgo6Yf1WpKLmmhM36NAgSC8MGTam 6iAxoHxqGppkhP3g6vJvX+eSwIOk/rTFSGQj7OTKWGiuwl8JpKsUaDaTcOnxpksC LrzBu2tH4w860Jeib9LSpgel9P1eGSU/34f+vRa4ToCxbD6fyT3WKgIUAZMSuGsx m2IOpCf7MQXvLcd0Jz0esnaAbh7ceHoyuWkDfvDBllprIxbg0pvjLdlljUhvXGaM /4Z6J1l1dkuTjdh8lWcOGaJNaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+y4V2n 5kRbRajqwKrJl2bzUSNQMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+o0cBwEoN2TxxIhjElmphHsZe3fbU+dzFujO3sCHHc3hO136u24py x4WUJ5fmA5sVh8o1+tYpmvmvQOIiONEy80oXPpJkAVdWf5+3lXlGwd+bARIkl7eE 1nCSDOwwfAyJRYqP5dTGaP2cOMG9q6bCV9j0ghNg5mTNHSUMNrsPFc1npYBklP8R 4rXHGIPdMatKLNv6TJSGxRe5TuPS2LmJCGx3xtKdxZXKjlxi389ZFoLVR5SAqUOv eQBlRe+SdGhGxrtrL/HuFA++FVP+MTDNRvlbghnYc2WtDeZv49vG+uXLaD1Cmekc tZl1fweWBYsu/10fnTcL//PQWhCQSSPU -----END CERTIFICATE-----Generated at Sat Sep 6 21:06:12 2025 by rpki-client