$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: of8A4CmTf/oadtVr9AA9D+lvEFk/PHNKQqWyCSq6mJM= Subject key identifier: 84:65:09:F3:FF:D0:8A:0C:47:DB:B3:FF:80:28:94:DE:EB:F6:97:4E Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: CE Signing time: Wed 25 Mar 2026 06:08:35 +0000 Manifest this update: Wed 25 Mar 2026 06:08:34 +0000 Manifest next update: Wed 01 Apr 2026 06:08:34 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: HQxG7CWeTz4CetE9oRC6sFgGjS5T+cszhNeP3D/Q4FA=) 2: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: N4HTYSfJRwG01pC5CAe1D/sq8bILUh+qrNfqBe3K/Mw=) 3: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: NMXSh4M1f9PUVYv8eikRIhD24GRVnVb8u5tWxsJCUME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Mar 25 06:08:34 2026 GMT Not After : Apr 1 06:08:34 2026 GMT Subject: CN=69c37be3-e317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:04:a5:51:e3:01:c0:72:b2:bb:60:34:c8:72: 16:c4:b2:9e:2c:23:d9:06:e6:85:0e:71:48:58:0b: c4:35:ae:2b:ab:13:bd:d8:37:b3:cb:da:02:a4:32: 0a:9a:1b:a7:c8:83:ec:1d:db:db:ba:12:82:f5:dd: 27:33:5e:d0:59:f5:65:e9:d8:cf:0a:b3:b3:0d:66: cc:51:68:88:fc:dc:34:51:2e:7b:35:26:3b:6a:4e: f4:2d:7d:cb:91:ea:42:9e:8b:87:4c:be:a9:e1:55: 46:a2:af:2b:53:8d:1b:8c:09:f1:03:e7:73:87:46: 5c:c9:be:6d:6f:f3:b5:4f:84:af:33:59:94:ae:28: c0:81:36:d9:e9:31:f5:19:bd:93:16:ac:52:37:fb: 6d:1d:5c:43:86:30:95:9e:49:f9:5d:a3:52:b3:24: a9:b0:5d:bc:36:b8:1f:8a:10:5f:2f:e1:be:af:76: 1a:d5:04:3d:98:97:e8:f5:95:b8:78:dd:db:e8:0e: f5:8b:67:88:68:18:a3:24:80:3e:82:2d:5d:df:c8: b6:c0:18:a5:a7:c3:e4:ab:18:21:e2:3b:fc:a0:78: 7a:c0:f8:40:08:fd:c7:df:13:46:1b:15:6f:ba:84: 61:3a:0e:56:ed:f2:f9:55:ad:c6:79:25:37:1a:0c: 65:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:65:09:F3:FF:D0:8A:0C:47:DB:B3:FF:80:28:94:DE:EB:F6:97:4E X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:b5:b7:d7:d9:14:b5:0f:28:a8:df:dd:8b:ef:2a:2b:16:8d: a4:25:79:e1:73:0b:eb:a7:95:9d:4e:7b:b3:c5:06:3f:16:c0: f0:87:ad:bb:fb:b4:39:70:f9:6b:99:ef:b7:fe:39:b2:a3:06: ad:63:c7:d2:b8:93:3e:65:41:19:ef:bc:7e:a5:3a:a1:01:b7: c7:61:2a:b7:ec:e6:7e:9f:1e:e8:df:8c:ad:dd:66:5e:1e:52: aa:94:1c:ca:87:a5:22:6a:84:ca:72:db:52:79:c5:9a:5c:f5: 9a:9c:e4:5d:1f:a8:04:1c:dd:0b:2d:0d:09:3c:b3:db:e6:78: f5:e4:6c:e2:a9:49:0a:05:9d:62:30:ce:77:6e:9e:56:cc:86: 69:e1:05:6b:9b:be:06:e2:5a:d1:54:89:74:65:80:4d:6d:ba: f9:fa:86:8e:84:ce:88:51:f7:2b:83:3f:70:ba:da:c4:95:36: 88:ba:e7:e7:eb:09:fc:a9:cd:7f:63:3a:93:d8:80:14:6f:14: cf:63:fc:c8:59:43:96:19:18:66:07:48:c5:1a:eb:ab:f0:f7: 3f:1e:b5:3e:5c:25:6d:45:0a:1f:be:b5:51:5e:08:08:57:9d: dd:95:de:20:76:6f:60:c7:8b:8c:16:bb:97:4b:39:e0:cc:22: 7d:7e:c7:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjYwMzI1MDYwODM0WhcNMjYwNDAxMDYwODM0WjAYMRYwFAYD VQQDEw02OWMzN2JlMy1lMzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgSlUeMBwHKyu2A0yHIWxLKeLCPZBuaFDnFIWAvENa4rqxO92Dezy9oCpDIK mhunyIPsHdvbuhKC9d0nM17QWfVl6djPCrOzDWbMUWiI/Nw0US57NSY7ak70LX3L kepCnouHTL6p4VVGoq8rU40bjAnxA+dzh0Zcyb5tb/O1T4SvM1mUrijAgTbZ6TH1 Gb2TFqxSN/ttHVxDhjCVnkn5XaNSsySpsF28NrgfihBfL+G+r3Ya1QQ9mJfo9ZW4 eN3b6A71i2eIaBijJIA+gi1d38i2wBilp8Pkqxgh4jv8oHh6wPhACP3H3xNGGxVv uoRhOg5W7fL5Va3GeSU3GgxlOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIRlCfP/ 0IoMR9uz/4AolN7r9pdOMB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAp7W319kUtQ8oqN/di+8qKxaNpCV54XML66eVnU57s8UGPxbA8Ietu/u0OXD5 a5nvt/45sqMGrWPH0riTPmVBGe+8fqU6oQG3x2Eqt+zmfp8e6N+Mrd1mXh5SqpQc yoelImqEynLbUnnFmlz1mpzkXR+oBBzdCy0NCTyz2+Z49eRs4qlJCgWdYjDOd26e VsyGaeEFa5u+BuJa0VSJdGWATW26+fqGjoTOiFH3K4M/cLraxJU2iLrn5+sJ/KnN f2M6k9iAFG8Uz2P8yFlDlhkYZgdIxRrrq/D3Px61PlwlbUUKH761UV4ICFed3ZXe IHZvYMeLjBa7l0s54MwifX7HRg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:17:32 2026 by rpki-client