$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: Wo/swaBUyYHV9EpLeTjSCLhWQlMp2POHiEc+R+Qwwfg= Subject key identifier: E3:8C:02:33:19:59:78:33:87:FC:74:F1:F1:77:B2:32:D1:1D:F0:EF Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: D1 Signing time: Wed 25 Mar 2026 05:57:23 +0000 Manifest this update: Wed 25 Mar 2026 05:57:23 +0000 Manifest next update: Wed 01 Apr 2026 05:57:23 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: 3wTLXhhErCvvm3xN4wiwb7rDzAWOboAiRAK2DxO3yKc=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: 9Odwd+Tnh1umFLR0TM5Ak3v8LLc0vsp9acB6OkgzFHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Mar 25 05:57:23 2026 GMT Not After : Apr 1 05:57:23 2026 GMT Subject: CN=69c37943-cbb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f4:40:a4:fd:09:5e:6c:2c:ff:d2:ae:bb:fc: 61:60:60:c4:7a:ee:64:49:66:cd:b2:3d:02:07:81: e2:58:97:d0:bd:93:2f:53:c8:70:20:2c:c5:a6:27: 9b:1a:26:cb:79:f7:3e:9d:5d:e2:f7:5b:fc:8a:b4: ab:ab:73:6a:af:5d:38:47:13:89:76:93:d0:71:a0: 67:0d:cb:1a:c1:dc:7d:2e:4a:f1:28:06:6e:0a:42: 50:d6:58:97:61:0f:d8:cf:9b:55:eb:2e:07:4b:b8: 47:f4:16:97:e9:73:6d:89:27:97:c7:78:3b:54:49: 6c:64:02:a1:e9:69:b4:3d:fb:89:b6:86:09:52:ef: 46:c1:4e:9f:33:5b:37:b2:b2:37:91:40:ba:12:45: 71:a2:6f:1c:0c:af:69:c8:e9:b6:45:91:24:3b:aa: 81:ef:82:05:dd:e0:ea:be:35:45:80:2c:b1:cf:c6: de:b4:cf:f0:89:51:3c:30:01:68:41:88:2b:b9:72: 6f:75:aa:73:b0:d6:f0:1e:35:0e:2a:f9:ad:60:67: ee:09:60:8a:91:bc:88:29:b4:19:ae:d8:5a:68:02: a6:55:32:13:32:dd:b2:86:86:dc:af:39:dd:6b:7b: 34:12:03:59:b1:03:14:82:97:19:27:ae:66:4e:56: 3e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:8C:02:33:19:59:78:33:87:FC:74:F1:F1:77:B2:32:D1:1D:F0:EF X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:d9:41:06:1c:d2:45:e4:5d:16:2f:b9:c7:f2:2f:d6:4a:f5: 00:00:8e:38:f5:de:75:dc:00:e5:83:3a:99:e9:cb:c7:90:cb: 8b:a9:a2:97:17:65:fc:1d:a1:6d:97:5b:ae:b8:66:8b:07:4a: 56:92:a6:c3:a7:89:67:d1:44:ba:23:9a:55:e0:b1:51:be:0c: de:e3:df:53:49:9c:80:75:bc:98:b7:b4:97:65:59:5b:d6:cb: d5:5a:bd:35:ba:a3:43:db:3a:6d:50:dc:f5:a8:33:2e:c4:ef: 3b:89:8e:7c:01:1a:bd:70:46:5f:9f:30:9f:b1:61:88:43:2d: ef:53:ec:2a:e1:1b:26:d4:ca:bb:66:d5:8c:41:3f:36:02:d1: 5e:3e:fd:83:a9:e3:5f:61:3e:d6:1c:bc:71:83:90:65:78:28: 3d:b1:05:db:e6:2a:b0:51:da:80:a4:39:f5:d4:bc:0a:c2:38: 98:67:53:00:46:e5:d4:ac:ab:ba:3a:df:6f:c3:c4:78:b7:e5: 09:ba:a9:a6:95:ea:fd:a3:3a:26:f4:54:f7:f7:ad:17:af:65: b0:14:5a:e3:98:3a:81:f0:09:90:69:40:32:9a:e2:64:ad:90: 6e:8f:4d:0a:60:df:72:a2:73:2e:b4:18:87:14:86:7a:68:c7: cf:88:60:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2NzkxMTAvBgNVBAUTKDkyODBGMDcwNzQ3NzUzMzg3QjZCQTY1NzMyRDZERDc5 OTJCMzUwQzEwHhcNMjYwMzI1MDU1NzIzWhcNMjYwNDAxMDU1NzIzWjAYMRYwFAYD VQQDEw02OWMzNzk0My1jYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufRApP0JXmws/9Kuu/xhYGDEeu5kSWbNsj0CB4HiWJfQvZMvU8hwICzFpieb GibLefc+nV3i91v8irSrq3Nqr104RxOJdpPQcaBnDcsawdx9LkrxKAZuCkJQ1liX YQ/Yz5tV6y4HS7hH9BaX6XNtiSeXx3g7VElsZAKh6Wm0PfuJtoYJUu9GwU6fM1s3 srI3kUC6EkVxom8cDK9pyOm2RZEkO6qB74IF3eDqvjVFgCyxz8betM/wiVE8MAFo QYgruXJvdapzsNbwHjUOKvmtYGfuCWCKkbyIKbQZrthaaAKmVTITMt2yhobcrznd a3s0EgNZsQMUgpcZJ65mTlY+nwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOOMAjMZ WXgzh/x08fF3sjLRHfDvMB8GA1UdIwQYMBaAFJKA8HB0d1M4e2umVzLW3XmSs1DB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODY3OS9DQjJDQjNDRUVB NzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6aDdhNlpYTXRiZGVaS3pV TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODY3OS9DQjJDQjNDRUVBNzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6 aDdhNlpYTXRiZGVaS3pVTUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMNlBBhzSReRdFi+5x/Iv1kr1AACOOPXeddwA5YM6menLx5DLi6milxdl/B2h bZdbrrhmiwdKVpKmw6eJZ9FEuiOaVeCxUb4M3uPfU0mcgHW8mLe0l2VZW9bL1Vq9 NbqjQ9s6bVDc9agzLsTvO4mOfAEavXBGX58wn7FhiEMt71PsKuEbJtTKu2bVjEE/ NgLRXj79g6njX2E+1hy8cYOQZXgoPbEF2+YqsFHagKQ59dS8CsI4mGdTAEbl1Kyr ujrfb8PEeLflCbqpppXq/aM6JvRU9/etF69lsBRa45g6gfAJkGlAMpriZK2Qbo9N CmDfcqJzLrQYhxSGemjHz4hgqA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:54:36 2026 by rpki-client