$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft File: KKyX2Zh-eNvuncufA3NcKDvOGGI.mft (raw, json) Hash identifier: H9CSzUlz0moSl1p3BqbKeekSw7K6x+7VCfcyvNWWFNo= Subject key identifier: D2:1A:79:11:EA:DB:DB:A2:F3:4E:F4:1B:1D:88:09:CE:7E:45:31:57 Authority key identifier: 28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 Certificate issuer: /CN=A9157BC3/serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft Manifest number: 0259 Signing time: Wed 25 Mar 2026 01:40:36 +0000 Manifest this update: Wed 25 Mar 2026 01:40:35 +0000 Manifest next update: Wed 01 Apr 2026 01:40:35 +0000 Files and hashes: 1: KKyX2Zh-eNvuncufA3NcKDvOGGI.crl (hash: p8rIl/lqkfZpmh0VjjbuYCTUc20sA9B5yRGnCU59WGI=) 2: 1FCD9DE2926611EDA99A9419C4F9AE02.roa (hash: VdzI+wpbVcWCFABnPCYqXynsNBJPpDkJq/yCZxhlV3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BC3, serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Validity Not Before: Mar 25 01:40:35 2026 GMT Not After : Apr 1 01:40:35 2026 GMT Subject: CN=69c33d14-aa64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:80:ee:f7:b2:f9:d1:56:42:b3:09:99:4b: 58:4f:d1:1a:79:2c:4e:68:be:d7:f4:51:88:4c:ef: 83:86:ee:b2:3c:e2:98:3a:70:14:85:57:54:03:b9: 8f:6a:bf:d5:48:9d:70:de:ab:c3:d6:4c:0c:76:10: b5:d6:80:fd:3b:e3:36:4a:38:b5:0c:64:4f:b3:dc: 30:4d:a9:7c:5a:24:54:3d:2a:dd:11:65:29:47:53: a3:73:50:25:65:d6:7c:41:fb:30:e5:5f:5e:4f:09: be:24:4c:6d:77:8f:cd:4e:5a:65:5a:2f:38:5d:a9: 31:fb:ea:bb:43:73:28:53:86:aa:c1:8a:bd:46:3b: d2:c2:83:0e:37:b3:40:55:26:54:9e:0d:89:36:7b: ea:2b:d5:8a:cd:17:b6:4d:09:1d:b3:0c:bd:9d:3f: bb:96:10:0e:ee:6b:d2:e6:7a:86:14:6a:a8:4a:d5: 69:d2:18:22:89:22:d5:c2:c5:13:df:e5:37:51:c9: 37:7f:89:d7:32:71:77:38:aa:75:0f:c5:8f:7a:ac: 21:f9:fb:da:8c:f9:88:b3:a6:44:7f:af:54:08:99: b8:23:3b:df:53:8e:67:88:1c:be:22:11:ea:74:21: 38:83:87:5b:ee:5f:98:bb:e4:0a:04:ab:b4:9a:b1: 11:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1A:79:11:EA:DB:DB:A2:F3:4E:F4:1B:1D:88:09:CE:7E:45:31:57 X509v3 Authority Key Identifier: keyid:28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:83:af:80:2d:3c:1e:8d:ee:f1:cd:23:95:7e:10:76:af:cb: 58:74:07:a4:31:9e:8f:ab:b2:ab:c9:a0:d6:04:ff:d5:39:df: 83:0c:7e:fd:dd:c1:f3:61:e0:87:2d:43:04:39:6e:fa:64:52: cf:89:46:e4:8b:38:ae:7e:4c:81:b1:41:91:18:3f:19:14:75: 54:5d:30:49:b5:3f:33:3a:3a:c1:ed:9e:af:6f:e3:75:2c:c2: 6d:30:2c:43:59:14:dd:76:8f:30:03:8b:50:cd:85:5a:13:0a: 3f:9d:85:0a:4b:cf:d0:c8:ab:28:f8:52:11:05:e4:8f:30:bb: 0e:c3:0b:58:87:28:5d:eb:26:f2:7b:78:a0:20:b2:a0:b6:9f: 57:a2:85:87:f9:a4:4f:c0:93:0c:21:7a:3e:20:29:f7:2a:53: 23:a8:ca:67:b1:7b:d4:ee:69:f5:0b:38:49:cc:9e:d8:21:61: b7:73:1a:1c:4b:e2:d4:64:98:b0:fc:84:41:a0:9e:13:90:8c: 56:73:2b:0a:dd:53:19:f6:af:54:ab:23:f3:bd:f9:7e:a3:98: 87:41:41:f9:ee:81:4b:0b:4d:29:d2:63:6f:85:b1:ed:ff:ae: 8d:da:1c:da:f4:f0:a6:0b:12:4c:e4:0f:23:62:ea:ec:48:b4: 11:ed:da:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCQzMxMTAvBgNVBAUTKDI4QUM5N0Q5OTg3RTc4REJFRTlEQ0I5RjAzNzM1QzI4 M0JDRTE4NjIwHhcNMjYwMzI1MDE0MDM1WhcNMjYwNDAxMDE0MDM1WjAYMRYwFAYD VQQDEw02OWMzM2QxNC1hYTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8mA7vey+dFWQrMJmUtYT9EaeSxOaL7X9FGITO+Dhu6yPOKYOnAUhVdUA7mP ar/VSJ1w3qvD1kwMdhC11oD9O+M2Sji1DGRPs9wwTal8WiRUPSrdEWUpR1Ojc1Al ZdZ8Qfsw5V9eTwm+JExtd4/NTlplWi84Xakx++q7Q3MoU4aqwYq9RjvSwoMON7NA VSZUng2JNnvqK9WKzRe2TQkdswy9nT+7lhAO7mvS5nqGFGqoStVp0hgiiSLVwsUT 3+U3Uck3f4nXMnF3OKp1D8WPeqwh+fvajPmIs6ZEf69UCJm4IzvfU45niBy+IhHq dCE4g4db7l+Yu+QKBKu0mrERhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNIaeRHq 29ui8070Gx2ICc5+RTFXMB8GA1UdIwQYMBaAFCisl9mYfnjb7p3LnwNzXCg7zhhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JDMy83MDhFNkY2ODky NjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVOdnVuY3VmQTNOY0tEdk9H R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tLeVgyWmgtZU52dW5jdWZBM05jS0R2T0dHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0JDMy83MDhFNkY2ODkyNjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVO dnVuY3VmQTNOY0tEdk9HR0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcoOvgC08Ho3u8c0jlX4Qdq/LWHQHpDGej6uyq8mg1gT/1Tnfgwx+/d3B82Hg hy1DBDlu+mRSz4lG5Is4rn5MgbFBkRg/GRR1VF0wSbU/Mzo6we2er2/jdSzCbTAs Q1kU3XaPMAOLUM2FWhMKP52FCkvP0MirKPhSEQXkjzC7DsMLWIcoXesm8nt4oCCy oLafV6KFh/mkT8CTDCF6PiAp9ypTI6jKZ7F71O5p9Qs4Scye2CFht3MaHEvi1GSY sPyEQaCeE5CMVnMrCt1TGfavVKsj8735fqOYh0FB+e6BSwtNKdJjb4Wx7f+ujdoc 2vTwpgsSTOQPI2Lq7Ei0Ee3a/w== -----END CERTIFICATE-----Generated at Thu Mar 26 02:24:21 2026 by rpki-client