$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: Qr4q8QNStA1W0EbQiKryB/u4ilkWuZKJ4RpliP3pZn8= Subject key identifier: 12:51:8C:87:51:06:44:86:7B:4F:C9:3D:7A:93:75:A4:BA:A7:23:66 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1A49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 1A1E Signing time: Thu 26 Mar 2026 16:19:31 +0000 Manifest this update: Thu 26 Mar 2026 16:19:31 +0000 Manifest next update: Thu 02 Apr 2026 16:19:31 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: wdcMeOPRHsDSBU8PKJXp240XLiXa5kO+TAcCjLdSy6c=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: FC6f6swDrytiXT9xRSCl2yrTExj3rPMVZ/X6aFbgLFM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: Sw7KRJ3Hz6dAXQ9/sIjAX/GFlM314WtidHFZ3x1gnFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6729 (0x1a49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Mar 26 16:19:31 2026 GMT Not After : Apr 2 16:19:31 2026 GMT Subject: CN=69c55c93-5866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fd:24:a4:78:fa:0c:50:a4:c1:7c:b2:b9:eb: e4:0a:5a:8b:43:68:14:98:a3:e4:6a:14:f8:9c:05: a1:ed:5c:9d:8e:dc:45:50:d6:f9:cf:e6:7d:68:52: 8c:55:47:99:34:44:a5:5c:60:67:fd:84:a9:86:66: c3:3a:9e:98:16:62:f6:b3:ee:4f:14:78:7c:36:a5: cc:51:af:57:43:22:38:b6:fc:1c:fc:9b:0d:ed:bd: 84:ad:14:4c:fb:f2:6f:a4:5b:54:1f:a0:fa:2e:e4: 2f:80:a7:6d:9f:0b:74:95:0e:4a:c9:b4:a9:c0:d7: 13:4e:76:13:2a:fe:af:9d:69:c8:08:0f:58:02:bf: 20:f0:f7:3c:76:0e:f4:b7:b7:b4:38:15:02:19:5f: 2e:30:d5:75:94:57:89:79:9e:99:9a:a0:80:86:6e: ac:25:2d:0b:5a:81:00:aa:15:d8:85:69:ec:cf:54: a8:7d:39:56:8a:4f:e8:34:85:ca:98:90:48:66:6a: d9:43:ef:bc:cc:1d:62:48:67:48:82:55:3a:ad:c0: 6f:ed:fb:5b:40:db:d2:b7:d5:bf:24:50:d6:c0:26: 64:a3:8b:53:df:52:44:d0:98:58:92:a8:11:06:10: 09:8c:7b:c8:45:0f:df:f2:60:81:d7:a2:72:8c:f3: d6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:51:8C:87:51:06:44:86:7B:4F:C9:3D:7A:93:75:A4:BA:A7:23:66 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:62:b4:78:d4:f8:71:4a:1f:f1:93:28:2b:ef:70:1f:01:9e: cd:85:6d:05:0e:1c:a0:bb:ae:2d:ae:08:ae:06:82:96:6f:b3: e1:69:88:de:fb:0c:c1:a9:7f:a2:a1:d8:d1:0f:40:e5:ef:34: 36:3c:72:60:55:cf:3d:bc:93:5a:cc:30:14:7e:6d:7f:b7:36: 78:7c:e0:ca:d1:07:ce:ba:ee:3c:66:60:5c:6d:14:6f:71:7e: 8b:49:d1:62:c9:90:7f:72:85:ba:1a:b8:e0:bb:c3:5d:02:0c: 54:42:c9:91:b1:08:e3:54:36:a9:a4:be:a5:98:5f:0a:46:79: 27:7d:55:f1:35:65:e0:46:08:d3:df:15:dd:c7:91:20:55:5f: 87:e1:09:a2:75:e9:ea:68:aa:d7:5b:fc:01:03:44:49:ac:ff: df:26:34:b8:99:08:e9:c9:cd:62:95:9a:8b:08:9d:e3:94:6f: 6c:83:07:b1:08:71:9d:a5:db:05:94:53:aa:e5:8f:21:b6:3b: c7:65:20:a8:de:ff:c5:7b:3d:23:71:03:47:7e:80:b5:5d:70: 3d:4f:ab:42:4c:9a:4f:11:af:e0:51:8d:1d:96:c7:a1:ad:cf: d1:7d:79:7d:15:07:0b:7c:e3:33:00:1a:c3:df:3d:41:b7:4f: 10:1a:08:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjYwMzI2MTYxOTMxWhcNMjYwNDAyMTYxOTMxWjAYMRYwFAYD VQQDEw02OWM1NWM5My01ODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4v0kpHj6DFCkwXyyuevkClqLQ2gUmKPkahT4nAWh7VydjtxFUNb5z+Z9aFKM VUeZNESlXGBn/YSphmbDOp6YFmL2s+5PFHh8NqXMUa9XQyI4tvwc/JsN7b2ErRRM +/JvpFtUH6D6LuQvgKdtnwt0lQ5KybSpwNcTTnYTKv6vnWnICA9YAr8g8Pc8dg70 t7e0OBUCGV8uMNV1lFeJeZ6ZmqCAhm6sJS0LWoEAqhXYhWnsz1SofTlWik/oNIXK mJBIZmrZQ++8zB1iSGdIglU6rcBv7ftbQNvSt9W/JFDWwCZko4tT31JE0JhYkqgR BhAJjHvIRQ/f8mCB16JyjPPWLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBJRjIdR BkSGe0/JPXqTdaS6pyNmMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwGK0eNT4cUof8ZMoK+9wHwGezYVtBQ4coLuuLa4IrgaClm+z4WmI3vsMwal/ oqHY0Q9A5e80NjxyYFXPPbyTWswwFH5tf7c2eHzgytEHzrruPGZgXG0Ub3F+i0nR YsmQf3KFuhq44LvDXQIMVELJkbEI41Q2qaS+pZhfCkZ5J31V8TVl4EYI098V3ceR IFVfh+EJonXp6miq11v8AQNESaz/3yY0uJkI6cnNYpWaiwid45RvbIMHsQhxnaXb BZRTquWPIbY7x2UgqN7/xXs9I3EDR36AtV1wPU+rQkyaTxGv4FGNHZbHoa3P0X15 fRUHC3zjMwAaw989QbdPEBoI0w== -----END CERTIFICATE-----Generated at Fri Mar 27 04:47:30 2026 by rpki-client