$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: HYaPQ0omurjILFMM/Tlv9XsEkUeWu8Fi/3W9TTsLfa4= Subject key identifier: 5D:FF:DE:0C:77:30:EA:8E:C3:55:40:73:3B:FA:71:96:56:B7:8E:C8 Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0AB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0AAB Signing time: Tue 24 Mar 2026 19:17:24 +0000 Manifest this update: Tue 24 Mar 2026 19:17:24 +0000 Manifest next update: Tue 31 Mar 2026 19:17:24 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: ORPkWSD8+A0bED22UWrxISMHdPhc7mINn/xEHTVhfOs=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: gSKNogEshZnmN/3zaUCV8zHvFUQUbigi4NIpUM9EKFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2741 (0xab5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Mar 24 19:17:24 2026 GMT Not After : Mar 31 19:17:24 2026 GMT Subject: CN=69c2e344-bd3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0e:46:0d:44:99:19:c0:de:58:45:80:0f:3f: ee:53:1f:99:f9:05:29:4f:1c:48:d5:72:46:88:e7: 83:b9:ef:42:02:3f:9d:25:9c:19:04:90:11:03:00: ca:24:44:95:c9:a4:56:69:8a:6e:e9:23:f4:b1:85: 65:f9:63:e0:7e:2a:4c:08:0f:e6:dd:a0:01:ed:cc: 1f:66:26:8d:46:e1:81:0e:2c:b0:74:ff:ce:03:17: 00:31:c2:08:81:77:cf:3a:3b:b1:a3:c6:27:a2:7c: 06:8c:c2:cf:04:6f:3d:3c:d4:73:d6:60:2f:51:45: 57:9a:09:a8:68:32:d8:de:e8:b1:61:1a:c0:33:3b: 67:1b:45:ed:c4:09:cd:b2:88:d9:67:80:a2:03:08: b5:7b:fb:6f:49:b0:a6:0d:61:c4:44:2b:99:6d:0b: 11:ff:36:9c:c9:c9:d7:97:da:f6:58:5f:44:7d:13: d2:02:0a:3e:20:89:84:28:5c:f4:1b:b7:87:de:8c: 8a:6b:31:7d:0d:3c:88:19:c3:f2:6c:2d:31:76:7b: ae:cb:83:92:b5:43:41:94:8c:37:87:b2:5d:e2:ea: 9d:b3:b7:45:fc:38:78:91:be:a3:33:7e:8a:7d:ae: 44:00:d1:fd:6a:19:fe:30:f5:2b:84:98:53:ba:99: 9a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FF:DE:0C:77:30:EA:8E:C3:55:40:73:3B:FA:71:96:56:B7:8E:C8 X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:e9:0e:85:cf:00:e0:67:be:2c:1a:cd:92:df:d0:ff:0d:f1: 02:6b:d3:38:55:cc:66:63:01:6b:f4:a8:9e:79:bb:c3:f1:cc: 9e:6e:a0:cd:ed:7b:17:62:eb:a1:a4:92:22:ad:05:a2:10:91: 96:58:38:ec:7e:02:a6:75:9c:a7:4e:8b:cd:95:19:f6:06:f5: 4f:30:a4:18:c3:77:33:67:ce:14:26:39:88:64:68:1d:7e:aa: e6:a5:11:23:4e:6d:47:98:e0:10:2e:3b:7a:b7:47:30:a8:65: df:1d:27:e8:1c:3e:32:05:f3:ac:e1:29:7f:70:12:20:9b:37: dd:0d:34:de:37:40:11:ed:4d:6f:ee:88:8c:1b:6c:8f:a3:df: 2c:8d:b9:f5:d8:39:eb:ab:8c:d8:51:94:f0:0a:b2:d1:72:f2: 02:15:2a:36:c0:91:7d:f1:fe:9f:65:f0:43:0d:e8:81:b0:fa: ef:dc:10:ee:22:df:52:74:46:70:dc:de:e4:bf:f0:c6:8f:49: 86:92:4e:8c:3d:61:b8:b7:ac:8d:60:0a:d3:cc:cd:60:0a:b1: f8:d7:78:2f:a4:a5:b0:1d:da:9e:a0:a8:12:30:57:d5:c6:38: de:08:e8:e9:b0:d8:b7:c9:25:af:39:ff:68:f7:d1:d3:d6:9b: 16:8b:2e:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjYwMzI0MTkxNzI0WhcNMjYwMzMxMTkxNzI0WjAYMRYwFAYD VQQDEw02OWMyZTM0NC1iZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvA5GDUSZGcDeWEWADz/uUx+Z+QUpTxxI1XJGiOeDue9CAj+dJZwZBJARAwDK JESVyaRWaYpu6SP0sYVl+WPgfipMCA/m3aAB7cwfZiaNRuGBDiywdP/OAxcAMcII gXfPOjuxo8YnonwGjMLPBG89PNRz1mAvUUVXmgmoaDLY3uixYRrAMztnG0XtxAnN sojZZ4CiAwi1e/tvSbCmDWHERCuZbQsR/zacycnXl9r2WF9EfRPSAgo+IImEKFz0 G7eH3oyKazF9DTyIGcPybC0xdnuuy4OStUNBlIw3h7Jd4uqds7dF/Dh4kb6jM36K fa5EANH9ahn+MPUrhJhTupmaKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF3/3gx3 MOqOw1VAczv6cZZWt47IMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtukOhc8A4Ge+LBrNkt/Q/w3xAmvTOFXMZmMBa/Sonnm7w/HMnm6gze17F2Lr oaSSIq0FohCRllg47H4CpnWcp06LzZUZ9gb1TzCkGMN3M2fOFCY5iGRoHX6q5qUR I05tR5jgEC47erdHMKhl3x0n6Bw+MgXzrOEpf3ASIJs33Q003jdAEe1Nb+6IjBts j6PfLI259dg566uM2FGU8Aqy0XLyAhUqNsCRffH+n2XwQw3ogbD679wQ7iLfUnRG cNze5L/wxo9JhpJOjD1huLesjWAK08zNYAqx+Nd4L6SlsB3anqCoEjBX1cY43gjo 6bDYt8klrzn/aPfR09abFosuxg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:51:54 2026 by rpki-client