$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: E3lVyrglGzTdG+l2b0OsfDGo6+x4cm9nFFI71bX6rXI= Subject key identifier: A5:0D:D4:7C:8F:0B:ED:92:79:DD:75:1F:7A:5F:3F:BB:32:BA:1B:44 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1A61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 1A36 Signing time: Tue 12 May 2026 16:20:59 +0000 Manifest this update: Tue 12 May 2026 16:20:58 +0000 Manifest next update: Tue 19 May 2026 16:20:58 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: Zy4i6aNL/IhVh9uahYd2JZ+Tofm1DwelGFps4YxtQxM=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: FC6f6swDrytiXT9xRSCl2yrTExj3rPMVZ/X6aFbgLFM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Sw7KRJ3Hz6dAXQ9/sIjAX/GFlM314WtidHFZ3x1gnFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6753 (0x1a61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: May 12 16:20:58 2026 GMT Not After : May 19 16:20:58 2026 GMT Subject: CN=6a03536b-2057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:dd:29:99:bb:7a:a0:7b:26:54:95:a0:49:c6: e4:83:8b:56:44:2f:b5:76:1e:24:2d:a1:14:d5:ce: 16:fd:6a:89:c2:e4:2d:a9:93:ad:22:49:f2:33:7f: 7b:08:59:43:e4:9a:07:c0:ee:21:80:dd:96:57:58: 18:8e:10:14:07:d8:21:88:08:8f:2c:6a:13:ee:cf: ed:e9:d0:12:12:38:1f:b0:95:e6:a0:34:2e:03:32: a8:18:8d:ce:0b:e6:18:f7:4d:d2:a2:4f:99:58:86: 44:8b:77:0e:5f:93:8b:9b:f8:5c:9c:9b:b5:b2:b4: e4:3b:0e:bb:40:b0:28:ae:35:24:bd:b2:91:e2:8d: 4c:a3:79:72:bd:ea:53:bf:a5:46:d3:75:be:a2:7a: e6:a7:e7:db:d9:87:ec:c2:07:67:02:05:d0:bc:38: 05:26:86:6b:07:c4:57:91:9d:e8:ca:e2:ec:7c:e5: 7d:2f:00:47:64:84:7f:60:63:ad:ea:80:29:00:23: 24:ab:74:ea:c4:47:cc:0f:a5:14:1a:a1:5a:d2:5d: 83:77:57:32:58:4d:43:51:f0:4d:7f:0a:9f:00:d2: eb:38:f8:19:37:b9:78:c0:1a:cb:3f:86:6e:b3:e8: 4d:03:c9:54:90:05:67:e8:94:6a:3d:a7:dc:14:ab: b6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0D:D4:7C:8F:0B:ED:92:79:DD:75:1F:7A:5F:3F:BB:32:BA:1B:44 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:26:6d:df:49:be:59:85:bc:08:1c:71:61:cc:1d:c8:f1:a3: db:98:1b:7c:d7:fb:c7:eb:85:76:8f:f7:ed:5c:ca:68:71:15: b8:f9:8e:64:7d:7f:61:a3:70:08:02:18:ec:67:93:e9:9c:87: 0d:d1:36:9c:d0:08:1e:68:8b:3f:e0:e2:f1:a1:71:47:74:2d: 54:5b:b3:48:de:14:a9:28:3d:92:d2:f8:5d:c5:21:b9:82:62: 12:2a:ba:b3:17:2d:1c:a6:b1:2f:be:34:fd:24:04:2f:72:93: 20:ad:83:3c:4d:1d:63:3b:d8:47:b8:de:67:15:93:2f:e5:ab: 4f:7a:31:c7:4b:6f:7a:0d:c5:c0:9e:5d:bd:c8:4c:26:2c:00: 7e:14:5c:04:29:2f:1e:95:19:18:6e:49:f3:0d:72:f5:0a:06: 34:81:cc:36:c8:5e:4e:9e:d4:e5:32:cc:a1:5f:20:6c:9e:86: 7b:41:1a:06:cf:a7:13:cc:e7:11:33:e3:f0:c3:a2:6d:fa:87: ea:1e:14:fb:d9:e8:4b:80:22:3b:d7:a7:87:ea:a4:23:4b:8a: 86:10:a2:59:22:e3:68:f0:47:ec:b8:14:1b:f9:ad:88:b8:1e: c8:26:10:b8:dd:4b:47:ff:9a:81:a5:b9:9d:61:f7:12:1d:d2: 78:9c:24:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjYwNTEyMTYyMDU4WhcNMjYwNTE5MTYyMDU4WjAYMRYwFAYD VQQDEw02YTAzNTM2Yi0yMDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7t0pmbt6oHsmVJWgScbkg4tWRC+1dh4kLaEU1c4W/WqJwuQtqZOtIknyM397 CFlD5JoHwO4hgN2WV1gYjhAUB9ghiAiPLGoT7s/t6dASEjgfsJXmoDQuAzKoGI3O C+YY903Sok+ZWIZEi3cOX5OLm/hcnJu1srTkOw67QLAorjUkvbKR4o1Mo3lyvepT v6VG03W+onrmp+fb2YfswgdnAgXQvDgFJoZrB8RXkZ3oyuLsfOV9LwBHZIR/YGOt 6oApACMkq3TqxEfMD6UUGqFa0l2Dd1cyWE1DUfBNfwqfANLrOPgZN7l4wBrLP4Zu s+hNA8lUkAVn6JRqPafcFKu2eQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKUN1HyP C+2Sed11H3pfP7syuhtEMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQyZt30m+WYW8CBxxYcwdyPGj25gbfNf7x+uFdo/37VzKaHEVuPmOZH1/YaNw CAIY7GeT6ZyHDdE2nNAIHmiLP+Di8aFxR3QtVFuzSN4UqSg9ktL4XcUhuYJiEiq6 sxctHKaxL740/SQEL3KTIK2DPE0dYzvYR7jeZxWTL+WrT3oxx0tveg3FwJ5dvchM JiwAfhRcBCkvHpUZGG5J8w1y9QoGNIHMNsheTp7U5TLMoV8gbJ6Ge0EaBs+nE8zn ETPj8MOibfqH6h4U+9noS4AiO9enh+qkI0uKhhCiWSLjaPBH7LgUG/mtiLgeyCYQ uN1LR/+agaW5nWH3Eh3SeJwk0Q== -----END CERTIFICATE-----Generated at Wed May 13 10:53:06 2026 by rpki-client