$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft File: KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json) Hash identifier: xSmgPG2+TFEgy/NGYs/wOJcpakvMtZciGxhWPbwwO5Q= Subject key identifier: DD:49:4E:BB:E1:64:B2:65:14:ED:FB:83:C0:3F:C5:B3:93:C5:73:9D Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1B02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft Manifest number: 1ADE Signing time: Tue 24 Mar 2026 16:14:28 +0000 Manifest this update: Tue 24 Mar 2026 16:14:27 +0000 Manifest next update: Tue 31 Mar 2026 16:14:27 +0000 Files and hashes: 1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: EOPnCfaqOBsgyqahd256t9MX+AQolwjRPJUCc5ZTMAo=) 2: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: 7WJalEMOZVtxgJni8RlEELTTNzW+y4R0udMJ9qnWJ3I=) 3: 442A935E2F1F11F0A35F5757C4F9AE02.roa (hash: ep1WIPveJbhkF0Sl4UHnyTFp2JFnKNI9HU6gNgYhNKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6914 (0x1b02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: Mar 24 16:14:27 2026 GMT Not After : Mar 31 16:14:27 2026 GMT Subject: CN=69c2b864-dd95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b0:eb:10:fb:9c:19:8a:e2:d5:10:13:26:f5: 08:c2:32:43:be:be:e2:2c:5a:c8:bf:97:a5:44:f0: 9f:d7:fa:82:21:1b:2d:7b:8a:16:a8:af:a9:65:e5: 02:aa:5b:87:dc:9a:53:9a:9a:c9:26:b9:35:44:f4: 16:01:6e:81:25:99:c6:8b:3a:5c:32:c5:3f:53:93: b8:35:9a:c7:2e:eb:2d:1f:a9:9f:61:d8:6d:f7:53: 74:77:0e:61:1f:8a:bf:02:52:86:53:8c:b0:88:ab: a8:0e:28:79:7b:32:2b:bf:0a:05:f7:ec:0c:ae:91: 86:dc:a2:2c:ff:f2:a3:ce:84:91:2a:dd:ac:fe:74: 43:2b:0c:09:bc:8a:70:f6:30:8d:b2:6c:a2:07:99: 70:2d:96:27:89:28:13:bf:34:5d:23:ca:d3:01:18: 31:60:21:5f:f1:96:d8:93:40:e0:55:21:8b:72:e0: 89:3a:60:25:f3:15:b1:4d:59:c3:a1:fb:c2:2f:83: 46:8d:97:a4:90:ca:67:44:77:48:fa:e4:e8:1a:30: 38:e5:03:75:b5:77:48:96:53:c3:0c:34:4e:f7:9d: e7:38:aa:f4:d3:31:d8:52:ae:fc:68:dc:a0:60:de: 55:07:80:83:58:29:e7:dd:4d:cb:fd:cb:95:3b:6b: c8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:49:4E:BB:E1:64:B2:65:14:ED:FB:83:C0:3F:C5:B3:93:C5:73:9D X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:46:ae:9c:f8:5d:d2:96:25:5a:69:d4:89:f1:58:e6:59:93: a1:34:9c:27:65:5a:df:e1:ac:3f:a8:11:f8:e2:54:eb:68:4f: 59:34:64:11:c1:89:ab:db:07:0b:0b:c4:c9:3e:90:99:f1:ce: bb:4e:80:a8:71:b5:ae:21:95:ae:a2:41:7f:ac:7a:cf:ee:5d: f4:ff:5c:fa:23:f8:9a:b8:8f:c0:b4:eb:c8:a8:02:bb:21:18: 15:eb:ea:53:b5:21:0c:47:f6:87:b3:74:40:f8:03:03:c8:64: 40:66:2d:3a:ea:65:fa:df:35:15:8f:5a:16:a0:95:a9:0a:b1: e5:dd:35:c9:5e:06:b9:f2:c1:c5:94:c3:80:bf:11:59:c9:47: 04:3a:10:cb:f7:bc:eb:6e:3c:f0:86:d3:f8:01:63:21:dc:a2: c6:e6:64:35:fc:2d:c2:03:04:40:37:86:ab:ef:3f:6b:1e:93: c2:c9:8c:d8:23:d9:e9:67:af:d2:43:eb:85:db:12:5c:d6:80: 04:ea:80:4b:20:80:81:32:40:92:ff:12:a2:77:77:24:b9:1c: 06:81:7a:a9:df:95:c4:2d:3f:ee:b1:c0:f2:b5:fe:f8:b9:53: 61:1c:e0:75:4d:5a:5a:f2:3f:58:58:27:9b:34:8d:fd:6b:06: 33:d9:e5:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjYwMzI0MTYxNDI3WhcNMjYwMzMxMTYxNDI3WjAYMRYwFAYD VQQDEw02OWMyYjg2NC1kZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrDrEPucGYri1RATJvUIwjJDvr7iLFrIv5elRPCf1/qCIRste4oWqK+pZeUC qluH3JpTmprJJrk1RPQWAW6BJZnGizpcMsU/U5O4NZrHLustH6mfYdht91N0dw5h H4q/AlKGU4ywiKuoDih5ezIrvwoF9+wMrpGG3KIs//KjzoSRKt2s/nRDKwwJvIpw 9jCNsmyiB5lwLZYniSgTvzRdI8rTARgxYCFf8ZbYk0DgVSGLcuCJOmAl8xWxTVnD ofvCL4NGjZekkMpnRHdI+uToGjA45QN1tXdIllPDDDRO953nOKr00zHYUq78aNyg YN5VB4CDWCnn3U3L/cuVO2vIvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN1JTrvh ZLJlFO37g8A/xbOTxXOdMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REEyRC84MzgzNjIwQTUwRDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJl VGNuZHZGZHE0bmNCSzhOMWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm0aunPhd0pYlWmnUifFY5lmToTScJ2Va3+GsP6gR+OJU62hPWTRkEcGJq9sH CwvEyT6QmfHOu06AqHG1riGVrqJBf6x6z+5d9P9c+iP4mriPwLTryKgCuyEYFevq U7UhDEf2h7N0QPgDA8hkQGYtOupl+t81FY9aFqCVqQqx5d01yV4GufLBxZTDgL8R WclHBDoQy/e862488IbT+AFjIdyixuZkNfwtwgMEQDeGq+8/ax6TwsmM2CPZ6Wev 0kPrhdsSXNaABOqASyCAgTJAkv8Sond3JLkcBoF6qd+VxC0/7rHA8rX++LlTYRzg dU1aWvI/WFgnmzSN/WsGM9nl8g== -----END CERTIFICATE-----Generated at Thu Mar 26 16:02:08 2026 by rpki-client