$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: EoXxbjnrPf2rmGINHIHc40nhwH16UthaYw64tjKP4sw= Subject key identifier: BA:C2:D2:6F:49:9E:AF:94:72:46:EC:06:01:FD:00:4A:7B:CB:C5:FA Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 0424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 041C Signing time: Wed 25 Mar 2026 00:03:51 +0000 Manifest this update: Wed 25 Mar 2026 00:03:50 +0000 Manifest next update: Wed 01 Apr 2026 00:03:50 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: DuHXXC8zC7cXr1+r4G+anjaJhSc+Dwla0vJwznWPCHg=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: fIfbNfI4LK0sIc8YlB3yB2MWelYN+TJwvhzmec0KKmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: Mar 25 00:03:50 2026 GMT Not After : Apr 1 00:03:50 2026 GMT Subject: CN=69c32666-ca5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5d:ee:14:be:d9:d3:12:bc:da:0f:37:f3:5b: c8:98:c6:29:cf:b0:92:98:f8:9d:7e:f0:8b:7c:fc: c6:08:0b:e6:a0:ad:44:91:c4:06:38:0d:5f:61:6a: 22:cb:5c:10:49:bb:bc:8c:e3:fa:ae:03:07:1b:2d: 6b:54:60:08:ea:71:e6:93:5a:a8:c2:6e:0b:c0:37: 67:44:8b:55:a5:ff:13:a4:6f:3d:b6:bf:26:cb:b8: ca:39:5f:2b:d4:51:51:e9:b6:7c:d6:5d:cf:af:68: 34:3e:ac:a6:fb:b4:3c:7f:a3:52:e1:8a:e5:6f:ea: 47:8e:d5:f9:ce:73:32:52:0a:90:93:b2:ab:62:56: 86:82:3b:6b:14:7f:eb:a4:00:ad:93:17:d2:10:95: 6d:aa:87:28:aa:b5:36:b8:b2:f8:7d:71:da:9c:80: f5:0f:a2:0f:90:04:85:d4:13:92:86:af:06:8e:11: e8:54:91:d5:3a:6f:38:40:a8:81:c2:9f:cf:61:6f: ef:e7:f6:4e:fd:35:31:72:5e:31:77:68:4c:4d:d7: c6:3a:2f:17:15:10:9a:89:0e:7b:ee:2a:f9:c6:80: 88:f1:24:42:44:66:29:78:2c:0a:a9:91:fb:2b:d3: f1:ea:6d:c1:67:12:13:44:fd:40:82:05:09:fb:6b: 71:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C2:D2:6F:49:9E:AF:94:72:46:EC:06:01:FD:00:4A:7B:CB:C5:FA X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:f0:10:12:e4:3d:b6:1f:f0:10:69:b6:a7:c7:b5:c7:1c:fc: 68:3f:49:1f:56:68:ee:93:c9:01:75:ad:cb:a8:35:8c:10:65: 01:22:56:bc:c7:27:bb:bb:f8:c5:5d:63:74:5a:15:06:12:6a: ad:a2:ef:7c:2c:b2:79:d5:b3:06:87:97:7f:9a:00:51:33:c8: 2f:1b:21:8c:67:ee:e4:f8:3f:9f:3d:72:93:ff:44:95:85:31: 86:39:2d:ac:1e:aa:3e:10:61:89:83:58:dc:90:f0:81:52:4c: 0d:b6:e6:97:0d:7f:12:f2:ee:e5:7b:c6:b3:cf:45:bb:4b:b3: c5:44:6f:70:c5:ea:bd:47:b8:17:24:4d:36:d1:9e:6e:13:84: 9c:ee:5f:95:a9:ac:c2:7d:8b:86:ef:38:86:0a:8e:d5:53:a1: b0:dd:f2:b6:50:c3:53:22:3b:ac:31:f5:1d:ec:10:30:47:39: e7:26:c6:f3:0d:a4:94:1e:01:7a:94:23:6e:74:22:1e:d7:76: 65:a0:58:5d:40:85:1b:e9:63:28:87:8f:ae:ae:1e:d8:22:2f: eb:2f:d1:43:9e:89:24:87:fa:b6:9b:27:99:29:06:bd:c9:33: ca:57:a4:a0:a5:24:ce:de:91:05:f8:0f:cf:e2:ba:1a:5f:12: 6a:d1:c9:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjYwMzI1MDAwMzUwWhcNMjYwNDAxMDAwMzUwWjAYMRYwFAYD VQQDEw02OWMzMjY2Ni1jYTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV3uFL7Z0xK82g8381vImMYpz7CSmPidfvCLfPzGCAvmoK1EkcQGOA1fYWoi y1wQSbu8jOP6rgMHGy1rVGAI6nHmk1qowm4LwDdnRItVpf8TpG89tr8my7jKOV8r 1FFR6bZ81l3Pr2g0Pqym+7Q8f6NS4Yrlb+pHjtX5znMyUgqQk7KrYlaGgjtrFH/r pACtkxfSEJVtqocoqrU2uLL4fXHanID1D6IPkASF1BOShq8GjhHoVJHVOm84QKiB wp/PYW/v5/ZO/TUxcl4xd2hMTdfGOi8XFRCaiQ577ir5xoCI8SRCRGYpeCwKqZH7 K9Px6m3BZxITRP1AggUJ+2txBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLrC0m9J nq+UckbsBgH9AEp7y8X6MB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA7PAQEuQ9th/wEGm2p8e1xxz8aD9JH1Zo7pPJAXWty6g1jBBlASJWvMcnu7v4 xV1jdFoVBhJqraLvfCyyedWzBoeXf5oAUTPILxshjGfu5Pg/nz1yk/9ElYUxhjkt rB6qPhBhiYNY3JDwgVJMDbbmlw1/EvLu5XvGs89Fu0uzxURvcMXqvUe4FyRNNtGe bhOEnO5flamswn2Lhu84hgqO1VOhsN3ytlDDUyI7rDH1HewQMEc55ybG8w2klB4B epQjbnQiHtd2ZaBYXUCFG+ljKIePrq4e2CIv6y/RQ56JJIf6tpsnmSkGvckzylek oKUkzt6RBfgPz+K6Gl8SatHJWA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:30 2026 by rpki-client