$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: aJJ2xtrTjYFOu1+UoHN7Q520RhJ1M/3/lVwV01RAaKc= Subject key identifier: 0E:9D:69:FE:38:8F:CC:A9:E6:B7:71:12:F1:D2:38:24:94:D0:91:C9 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: 0141 Signing time: Wed 25 Mar 2026 04:37:23 +0000 Manifest this update: Wed 25 Mar 2026 04:37:23 +0000 Manifest next update: Wed 01 Apr 2026 04:37:23 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: ZhABc6Tr0tplXdKT9BZ/vHWpCcOgs+Gi/6X5NtyBPP4=) 2: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: ohWNBeobdCPyY/6CPWfy1mGiydZdoWmdPKZh8LFovXk=) 3: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: dV2yNdOt/46ICqDeuLFj+0Sp1pslxl2GwJkDaUPc31g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Mar 25 04:37:23 2026 GMT Not After : Apr 1 04:37:23 2026 GMT Subject: CN=69c36683-4cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3c:92:4d:18:55:1b:d1:fe:2f:85:cd:62:5d: 7b:da:ee:0b:5c:5c:68:cf:d6:ec:9a:85:87:97:a9: 5e:62:dd:14:ea:6a:eb:31:85:27:e9:a5:2a:48:3b: e1:8c:39:fb:b8:78:b0:a5:4e:b4:60:6a:ca:b2:b4: f0:ea:e0:0a:e5:3f:35:bf:35:e1:88:ef:9b:6e:9b: 31:fd:ee:50:35:df:70:96:12:fc:24:4d:d6:41:38: f4:ee:ac:c1:b2:bc:d7:15:23:b5:c9:fd:b3:9e:66: 00:73:fa:57:56:9f:a6:20:21:e1:25:83:e0:be:bd: a9:66:13:b4:5a:dc:49:69:04:21:16:de:8f:83:d6: d2:a4:f5:43:2d:8b:9b:c8:9e:33:ff:1d:4b:28:fc: 87:f8:53:1c:e2:7b:28:d5:24:5f:91:b1:e7:2d:26: 53:0c:6a:0e:d0:ff:b5:2b:5a:4c:43:2d:7e:00:c0: 97:c6:a9:73:df:19:52:7f:96:72:be:dd:b0:d5:b2: 3e:1f:9d:a0:7f:03:73:9d:fc:65:14:06:c2:09:09: 7a:f2:38:47:73:6b:5b:cf:f4:fc:e7:f5:9b:d9:27: e3:82:0d:2d:46:6c:3f:eb:b8:df:90:21:ef:27:3a: 92:cc:51:46:99:15:31:6b:ab:3c:7a:01:28:c5:07: bb:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9D:69:FE:38:8F:CC:A9:E6:B7:71:12:F1:D2:38:24:94:D0:91:C9 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:cb:1a:d7:be:e1:89:d4:be:45:67:6c:a7:b2:9e:3f:61:c9: ca:48:60:69:b2:e2:d5:8b:c2:94:57:53:04:40:4a:93:92:a4: 28:69:d7:bd:3f:f5:e6:48:c9:d3:44:80:e6:81:4e:e7:79:00: 9d:54:ec:88:6b:5d:df:f7:14:e1:ff:de:d4:ba:bd:8c:d4:66: 8a:7d:7c:10:37:f3:36:c3:80:c0:6c:38:75:cf:39:a3:16:9a: ae:3b:f9:33:c9:6a:bf:b3:95:95:60:02:0c:7b:84:8b:16:f9: 5b:70:62:2c:ca:83:a2:e5:b1:11:6c:ed:f1:c8:22:de:50:2c: 7a:b8:af:14:41:13:f7:6a:a5:cf:ce:78:44:7b:37:ea:4e:2b: 9e:7f:8c:05:7e:f7:20:54:ad:9b:b1:f9:03:76:70:18:dc:fa: aa:cf:17:17:43:b2:e5:ae:d7:41:4f:87:be:81:57:1e:14:16: 69:1c:8d:a7:9b:45:50:2f:8c:fd:07:a0:8d:49:69:c6:54:a3: 45:a4:10:7e:81:51:68:2d:37:82:99:97:15:cd:0d:bd:c1:ef: 00:c5:28:f1:ec:18:32:b3:bf:ba:60:0b:d9:7a:9e:c9:c3:c9: 57:78:23:0c:b1:9b:34:b9:59:00:be:da:98:d2:c0:7a:a1:01: c7:36:26:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjYwMzI1MDQzNzIzWhcNMjYwNDAxMDQzNzIzWjAYMRYwFAYD VQQDEw02OWMzNjY4My00Y2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2TySTRhVG9H+L4XNYl172u4LXFxoz9bsmoWHl6leYt0U6mrrMYUn6aUqSDvh jDn7uHiwpU60YGrKsrTw6uAK5T81vzXhiO+bbpsx/e5QNd9wlhL8JE3WQTj07qzB srzXFSO1yf2znmYAc/pXVp+mICHhJYPgvr2pZhO0WtxJaQQhFt6Pg9bSpPVDLYub yJ4z/x1LKPyH+FMc4nso1SRfkbHnLSZTDGoO0P+1K1pMQy1+AMCXxqlz3xlSf5Zy vt2w1bI+H52gfwNznfxlFAbCCQl68jhHc2tbz/T85/Wb2Sfjgg0tRmw/67jfkCHv JzqSzFFGmRUxa6s8egEoxQe7AwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA6daf44 j8yp5rdxEvHSOCSU0JHJMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXcsa177hidS+RWdsp7KeP2HJykhgabLi1YvClFdTBEBKk5KkKGnXvT/15kjJ 00SA5oFO53kAnVTsiGtd3/cU4f/e1Lq9jNRmin18EDfzNsOAwGw4dc85oxaarjv5 M8lqv7OVlWACDHuEixb5W3BiLMqDouWxEWzt8cgi3lAserivFEET92qlz854RHs3 6k4rnn+MBX73IFStm7H5A3ZwGNz6qs8XF0Oy5a7XQU+HvoFXHhQWaRyNp5tFUC+M /QegjUlpxlSjRaQQfoFRaC03gpmXFc0NvcHvAMUo8ewYMrO/umAL2XqeycPJV3gj DLGbNLlZAL7amNLAeqEBxzYmIA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:22:36 2026 by rpki-client