$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: ZAW05XLkxVX/4qT3ih2E4ClUCwcwf6vZkZsEUohGxIw= Subject key identifier: 61:D3:72:11:A4:8E:B4:24:42:8D:52:EB:32:83:CD:E7:D9:E4:DC:60 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 19BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 19AB Signing time: Fri 22 Aug 2025 16:28:34 +0000 Manifest this update: Fri 22 Aug 2025 16:28:33 +0000 Manifest next update: Fri 29 Aug 2025 16:28:33 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: sTcOXMeNIV+SutvvXgFu6AxqxlFgrj49pSpgUylF+bk=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: 9LBAFHVyWvEKSALgxe/WVtOrUQqJ4PPcHQSe6I3XcVM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: vof6OG8sAX0uHAvhetFYEpdSjwUJhtpp1UkP8lk0Gm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6586 (0x19ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Aug 22 16:28:33 2025 GMT Not After : Aug 29 16:28:33 2025 GMT Subject: CN=68a89ab1-2001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5d:83:c4:7f:f4:01:e5:12:88:7f:82:ed:99: c9:df:ea:70:e4:61:6e:44:f6:35:8e:ba:52:76:57: 18:65:65:7c:45:72:9e:cd:d7:f6:fd:27:ac:dd:c1: 0d:1d:9e:ab:19:5e:f5:4c:2b:65:7b:a0:3b:cf:84: 24:03:cf:7c:e0:56:3f:6a:ff:83:11:8e:22:9b:37: 99:fd:4e:fd:1d:c3:7e:f7:f9:4d:a7:fe:99:fa:35: dd:4f:c8:17:55:05:f0:e7:b8:c1:fb:5e:3e:af:bb: e4:5a:0e:e0:65:00:c7:24:42:59:d8:67:71:42:1d: aa:34:9d:ab:b4:29:c2:a5:21:e3:0a:77:ca:3d:c5: 8d:fe:f9:72:13:61:f6:91:6a:38:e1:15:2b:d7:c2: 62:45:a7:83:38:34:b2:42:5c:fe:2e:73:d1:22:62: 85:0f:e3:a2:5f:46:a1:34:69:65:2c:c0:1f:4d:04: 93:65:52:80:3b:57:1a:00:67:81:91:06:7d:bd:02: 55:74:df:1e:8c:06:42:de:3b:0f:8d:54:57:22:b5: 11:5b:dd:18:9c:18:04:54:c5:dd:37:7c:a0:57:b6: f5:51:cf:86:bc:85:ab:3e:33:ba:5e:33:7a:d3:87: e6:83:f8:94:33:9a:6b:ff:4e:79:98:18:0b:2e:80: 2b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D3:72:11:A4:8E:B4:24:42:8D:52:EB:32:83:CD:E7:D9:E4:DC:60 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:99:11:cd:d8:80:70:0b:f5:c7:86:e5:40:2c:ea:c3:49:5d: c1:cf:39:c6:c7:0d:47:ac:16:81:d0:f2:1b:e7:a5:1f:3c:6d: 5e:e7:29:bf:a4:1f:78:bc:ac:3d:4f:d7:98:57:8e:9c:ca:22: f8:4f:d8:76:2c:f8:de:12:9c:f2:e7:e8:18:cd:d2:aa:21:6b: 5c:e5:a0:e5:dd:70:67:cf:4e:fe:99:cd:1f:cd:52:4d:34:3f: ed:9b:07:24:b4:5f:2d:4c:bf:75:76:b3:af:99:86:9b:95:a9: 48:a8:bb:0d:7c:66:3e:32:96:a7:a7:09:8f:c0:36:53:48:96: e9:87:71:76:dc:cb:77:16:6c:f9:88:82:c5:cf:b8:9b:16:4c: 7b:da:9e:30:5f:de:f5:58:93:9a:15:6b:38:37:bf:fe:67:2a: 7e:49:f8:ea:1d:41:35:44:25:83:88:a2:fc:27:34:02:13:bb: 1a:a9:af:28:20:7e:f0:88:d9:79:f2:ff:e3:3b:17:b8:6e:28: ed:60:f6:fb:81:8c:8b:bd:f7:4a:d0:d8:41:80:5e:c7:dd:67: ef:ff:87:e3:d3:12:2c:1f:9e:05:f9:ac:74:b2:97:5b:4b:e7: f0:05:78:c8:e7:e3:e8:d8:ab:1b:7e:6b:3c:87:28:e6:0c:4e: 17:de:2a:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUwODIyMTYyODMzWhcNMjUwODI5MTYyODMzWjAYMRYwFAYD VQQDEw02OGE4OWFiMS0yMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyV2DxH/0AeUSiH+C7ZnJ3+pw5GFuRPY1jrpSdlcYZWV8RXKezdf2/Ses3cEN HZ6rGV71TCtle6A7z4QkA8984FY/av+DEY4imzeZ/U79HcN+9/lNp/6Z+jXdT8gX VQXw57jB+14+r7vkWg7gZQDHJEJZ2GdxQh2qNJ2rtCnCpSHjCnfKPcWN/vlyE2H2 kWo44RUr18JiRaeDODSyQlz+LnPRImKFD+OiX0ahNGllLMAfTQSTZVKAO1caAGeB kQZ9vQJVdN8ejAZC3jsPjVRXIrURW90YnBgEVMXdN3ygV7b1Uc+GvIWrPjO6XjN6 04fmg/iUM5pr/055mBgLLoAr6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHTchGk jrQkQo1S6zKDzefZ5NxgMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAumRHN2IBwC/XHhuVALOrDSV3BzznGxw1HrBaB0PIb56UfPG1e5ym/ pB94vKw9T9eYV46cyiL4T9h2LPjeEpzy5+gYzdKqIWtc5aDl3XBnz07+mc0fzVJN ND/tmwcktF8tTL91drOvmYablalIqLsNfGY+MpanpwmPwDZTSJbph3F23Mt3Fmz5 iILFz7ibFkx72p4wX971WJOaFWs4N7/+Zyp+SfjqHUE1RCWDiKL8JzQCE7saqa8o IH7wiNl58v/jOxe4bijtYPb7gYyLvfdK0NhBgF7H3Wfv/4fj0xIsH54F+ax0spdb S+fwBXjI5+Po2Ksbfms8hyjmDE4X3irV -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:30 2025 by rpki-client