$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: 9MrNejMEn7JD6Z9hUBse9Lbou6x0vATBDBgMTDUPITQ= Subject key identifier: 16:71:10:EF:EC:FC:97:5D:40:C8:C0:86:7A:6F:89:49:8A:0C:2F:61 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 19D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 19C9 Signing time: Mon 20 Oct 2025 16:41:47 +0000 Manifest this update: Mon 20 Oct 2025 16:41:47 +0000 Manifest next update: Mon 27 Oct 2025 16:41:47 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: 8t7QT0xbix/cooTj0Q1Ta83LONXa0XaGE5eHnoE1leM=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: 9LBAFHVyWvEKSALgxe/WVtOrUQqJ4PPcHQSe6I3XcVM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: vof6OG8sAX0uHAvhetFYEpdSjwUJhtpp1UkP8lk0Gm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6616 (0x19d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Oct 20 16:41:47 2025 GMT Not After : Oct 27 16:41:47 2025 GMT Subject: CN=68f6664b-2809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dd:13:93:a7:06:30:be:bb:44:cf:4d:57:fe: 9a:11:da:9d:32:cd:d1:76:af:ee:b5:af:8d:05:42: 6f:d0:3a:ff:35:a4:98:be:3b:d0:ed:e2:e4:8a:57: 61:6a:87:fe:8d:74:14:d7:5f:c6:49:82:9e:f4:3b: a4:3d:ba:7b:a4:de:a0:ed:21:70:e4:f5:74:39:da: a9:a3:04:4e:5c:f8:74:7f:28:ff:79:36:b3:b2:a5: 99:a3:26:f1:27:ff:26:51:08:c6:4e:f5:58:85:da: ee:e5:aa:dc:04:02:df:f8:14:9d:6b:44:5c:88:1e: ec:d5:45:0d:17:45:f8:80:f2:94:dc:8f:62:73:b4: b3:fd:2d:ee:d3:44:0d:55:72:cd:b0:e6:57:d2:af: b3:9b:69:aa:5a:6d:75:85:e3:34:e8:33:dc:47:2b: 87:fe:d0:4a:13:ae:41:42:a0:45:6f:36:26:70:7e: df:3b:08:8a:0d:cc:18:09:95:00:e4:9e:1f:e8:9c: 96:e9:2c:cc:25:68:02:d9:e2:df:2e:4f:62:82:a6: 12:c6:e8:cd:41:ec:7a:6c:65:5c:89:9f:8e:d0:01: 76:b9:35:6b:63:63:03:ea:8b:c1:e4:a6:9a:c8:64: a5:3a:f0:d1:b8:f8:82:10:5f:94:fc:e6:fc:0f:0f: e9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:71:10:EF:EC:FC:97:5D:40:C8:C0:86:7A:6F:89:49:8A:0C:2F:61 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:2a:f8:d9:31:a3:57:d0:df:92:89:07:03:68:67:dc:13:20: 1b:e0:77:8a:bc:a6:60:14:83:90:4d:58:ef:63:c4:75:c5:c7: df:bd:45:7d:67:ba:a3:40:59:89:a2:3b:cf:fa:fd:f6:cf:d6: 0c:c2:92:6c:11:92:37:0f:cf:c1:34:67:83:64:ab:63:9a:c7: b6:90:99:f3:d2:3d:3c:86:35:fd:f8:03:fe:54:c7:e2:b1:8f: 21:46:46:73:31:af:ef:82:85:ea:ea:7e:f9:f9:f4:89:0c:e3: f2:b2:b6:58:d4:6b:42:ef:0e:1f:a6:6a:ce:3d:61:6c:4b:57: 34:27:99:d9:3b:4d:83:69:b8:43:d6:d2:bb:87:0e:09:09:d8: d4:c7:de:c3:51:5a:85:ed:f2:fc:5b:1d:5f:bd:74:b2:1a:1a: 6f:1f:ce:3e:8f:9c:b0:5c:5d:c3:ee:60:56:b0:59:c5:53:e6: 6c:b8:2d:c9:91:4c:88:dc:1c:bd:96:da:4b:b7:9f:eb:0c:a6: 8b:f6:ae:5f:b5:59:18:4a:ba:b8:ad:a7:93:86:bf:30:36:fb: a5:08:a6:76:c7:a5:d4:cd:9e:c1:c5:c1:a5:8b:32:97:a1:bc: 64:dd:40:11:b3:6c:31:2f:89:68:32:80:e5:76:94:7b:87:ca: c1:6d:8b:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjUxMDIwMTY0MTQ3WhcNMjUxMDI3MTY0MTQ3WjAYMRYwFAYD VQQDEw02OGY2NjY0Yi0yODA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq90Tk6cGML67RM9NV/6aEdqdMs3Rdq/uta+NBUJv0Dr/NaSYvjvQ7eLkildh aof+jXQU11/GSYKe9DukPbp7pN6g7SFw5PV0OdqpowROXPh0fyj/eTazsqWZoybx J/8mUQjGTvVYhdru5arcBALf+BSda0RciB7s1UUNF0X4gPKU3I9ic7Sz/S3u00QN VXLNsOZX0q+zm2mqWm11heM06DPcRyuH/tBKE65BQqBFbzYmcH7fOwiKDcwYCZUA 5J4f6JyW6SzMJWgC2eLfLk9igqYSxujNQex6bGVciZ+O0AF2uTVrY2MD6ovB5Kaa yGSlOvDRuPiCEF+U/Ob8Dw/pmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZxEO/s /JddQMjAhnpviUmKDC9hMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoKvjZMaNX0N+SiQcDaGfcEyAb4HeKvKZgFIOQTVjvY8R1xcffvUV9 Z7qjQFmJojvP+v32z9YMwpJsEZI3D8/BNGeDZKtjmse2kJnz0j08hjX9+AP+VMfi sY8hRkZzMa/vgoXq6n75+fSJDOPysrZY1GtC7w4fpmrOPWFsS1c0J5nZO02DabhD 1tK7hw4JCdjUx97DUVqF7fL8Wx1fvXSyGhpvH84+j5ywXF3D7mBWsFnFU+ZsuC3J kUyI3By9ltpLt5/rDKaL9q5ftVkYSrq4raeThr8wNvulCKZ2x6XUzZ7BxcGlizKX obxk3UARs2wxL4loMoDldpR7h8rBbYtD -----END CERTIFICATE-----Generated at Tue Oct 21 02:15:25 2025 by rpki-client