$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: ZftsoQ7jXtYtDvXaevSiKVyZN2rQo+YI2bLujJrBaR4= Subject key identifier: 7D:06:31:B6:66:E0:AB:3A:27:6B:2C:E2:A2:0D:73:18:12:10:5B:1F Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 02DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 02D8 Signing time: Wed 25 Mar 2026 00:59:21 +0000 Manifest this update: Wed 25 Mar 2026 00:59:20 +0000 Manifest next update: Wed 01 Apr 2026 00:59:20 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: foakM8QWUNn1slslpE0YITXJw1LeyUC/I6w93Ey/dTo=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: gdssxyk0VOuSG6kaNQg5db6yiCYv/hnxJ8zIYAcoUqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 733 (0x2dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Mar 25 00:59:20 2026 GMT Not After : Apr 1 00:59:20 2026 GMT Subject: CN=69c33369-856c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:12:06:78:9e:7d:b0:af:d6:ae:50:80:f1:3e: 40:e1:6f:38:c9:c5:09:45:be:f3:8d:bc:e5:3b:7e: 47:8a:f2:ef:5a:4f:ad:e3:96:13:d4:ff:46:f5:10: 68:ea:c3:9c:af:0e:39:65:5f:c4:b5:9e:3e:e6:9a: 98:d3:7f:58:84:a0:85:05:c7:40:c4:70:ba:37:ff: c6:a2:81:86:2b:e2:d1:32:83:0b:6f:be:9e:dc:8c: 45:8e:9f:82:12:b4:c5:d6:ec:1b:5b:f4:9c:7c:32: 00:c1:d5:10:60:fc:f8:ef:ed:7e:e6:a5:a5:87:d6: ed:a3:3d:b3:88:45:c1:46:22:32:5e:6c:e0:ab:47: 14:14:82:6b:1d:04:5c:3b:4f:4a:56:c0:d3:91:5d: 72:b2:08:ba:2c:05:a0:4d:33:f6:1d:6f:21:78:6c: 1e:2e:d7:cd:6a:80:e8:7e:ec:1a:2e:b5:d9:54:65: c6:89:58:d0:ed:5f:82:7d:f2:2a:d4:a0:59:68:e4: 15:72:2e:83:b7:89:91:dc:92:58:4b:f5:b8:0c:5d: b9:49:94:29:51:89:5d:c8:e7:f7:83:c4:b7:dd:17: da:58:90:ab:ba:0b:6d:c9:cb:68:4c:30:95:01:3e: 0b:98:7c:76:83:90:ea:ea:ac:5f:89:71:ee:7c:d2: 5c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:06:31:B6:66:E0:AB:3A:27:6B:2C:E2:A2:0D:73:18:12:10:5B:1F X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:21:54:e8:99:43:d4:a3:2a:06:36:07:1f:36:ec:30:9f:c6: 83:6c:38:ce:4a:bf:42:c4:4d:d8:09:a9:2e:a1:ac:20:d3:a2: fc:77:98:59:7a:f8:33:a5:bd:f6:7b:03:85:ab:09:8f:71:46: ec:72:80:f7:f6:6d:1f:ab:7d:a5:12:78:0a:4c:aa:4d:8d:92: 6d:85:26:ea:89:de:b3:90:12:54:40:f5:2c:d1:3b:b9:b8:00: b4:7f:4f:dd:48:2e:cc:4b:65:23:e5:4a:82:3e:bc:52:bc:e4: 7a:e4:be:07:c7:2d:b0:6d:8f:90:34:46:4c:90:10:29:dd:78: c6:ac:da:5c:83:c9:da:a5:f6:46:fd:dc:79:34:e9:d1:23:02: 08:a1:10:c6:d9:73:3e:0e:e7:e5:2e:ad:e5:19:6c:dc:94:90: 47:39:fb:a8:df:f1:22:29:9b:aa:af:bb:3c:2a:00:fb:75:7f: f0:16:6b:19:28:2f:63:6a:5d:22:21:99:6e:69:c8:47:61:8a: ec:7d:df:5b:7e:7a:37:de:17:a9:5d:ad:7b:89:4a:91:de:79: 6e:ce:69:3f:09:53:15:e8:e6:f0:e3:de:03:42:26:30:d4:bf: 06:ee:43:cf:17:7a:cc:e8:5b:dc:ec:ef:24:bf:a8:df:a0:40: 4c:1a:73:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjYwMzI1MDA1OTIwWhcNMjYwNDAxMDA1OTIwWjAYMRYwFAYD VQQDEw02OWMzMzM2OS04NTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBIGeJ59sK/WrlCA8T5A4W84ycUJRb7zjbzlO35HivLvWk+t45YT1P9G9RBo 6sOcrw45ZV/EtZ4+5pqY039YhKCFBcdAxHC6N//GooGGK+LRMoMLb76e3IxFjp+C ErTF1uwbW/ScfDIAwdUQYPz47+1+5qWlh9btoz2ziEXBRiIyXmzgq0cUFIJrHQRc O09KVsDTkV1ysgi6LAWgTTP2HW8heGweLtfNaoDofuwaLrXZVGXGiVjQ7V+CffIq 1KBZaOQVci6Dt4mR3JJYS/W4DF25SZQpUYldyOf3g8S33RfaWJCrugttyctoTDCV AT4LmHx2g5Dq6qxfiXHufNJcwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH0GMbZm 4Ks6J2ss4qINcxgSEFsfMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPyFU6JlD1KMqBjYHHzbsMJ/Gg2w4zkq/QsRN2AmpLqGsINOi/HeYWXr4M6W9 9nsDhasJj3FG7HKA9/ZtH6t9pRJ4CkyqTY2SbYUm6ones5ASVED1LNE7ubgAtH9P 3UguzEtlI+VKgj68UrzkeuS+B8ctsG2PkDRGTJAQKd14xqzaXIPJ2qX2Rv3ceTTp 0SMCCKEQxtlzPg7n5S6t5Rls3JSQRzn7qN/xIimbqq+7PCoA+3V/8BZrGSgvY2pd IiGZbmnIR2GK7H3fW356N94XqV2te4lKkd55bs5pPwlTFejm8OPeA0ImMNS/Bu5D zxd6zOhb3OzvJL+o36BATBpzUQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:04:28 2026 by rpki-client