$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: l/WHjbGeqPTpOP1gvnoxRo07PV96kOKFppFkV7e4Ev4= Subject key identifier: 2A:F0:4D:75:C7:B8:10:1E:34:11:73:92:53:E7:2B:3C:B2:7F:5A:F1 Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 023F Signing time: Fri 27 Mar 2026 02:01:22 +0000 Manifest this update: Fri 27 Mar 2026 02:01:22 +0000 Manifest next update: Fri 03 Apr 2026 02:01:22 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: hezt2wl7w8zlk29F3COwF9hKBW0CqDuNcYm2GdLcv/k=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: c33kuST7gT7ebNkTWc7XNN3mabw1ea/YNIBXvt3Yc/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: Mar 27 02:01:22 2026 GMT Not After : Apr 3 02:01:22 2026 GMT Subject: CN=69c5e4f2-ceb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:65:77:9a:93:14:66:ff:2f:7e:fc:89:23:32: c3:f5:14:cf:58:02:0f:0b:59:87:ed:52:1e:88:43: db:eb:57:89:37:89:e9:d5:f5:b3:3e:1a:20:34:86: 9f:14:54:6a:7e:bf:5d:f4:25:e7:56:50:76:78:76: f6:18:0b:29:49:28:8f:51:18:cc:91:b1:5c:bd:4f: 4c:5d:08:71:38:fa:24:6b:69:7e:96:c3:71:e3:5b: a5:43:e3:32:e8:70:ef:9c:43:aa:58:87:0d:e3:7f: 68:e0:79:12:b5:a6:28:c3:a6:26:94:2f:ad:17:0a: 18:bb:5a:a7:db:68:69:a2:a3:44:78:ee:92:cb:60: f8:42:12:a6:36:5a:0c:8e:90:79:83:e4:a9:ef:a7: c5:b7:76:ab:3c:76:e4:df:b2:6c:6e:c0:f6:f5:8a: 78:d4:b1:19:e1:25:42:64:ae:b7:f0:a2:8d:6f:3a: 95:8f:e9:36:22:3a:5b:42:3e:25:6b:7a:02:03:4f: 80:f7:c6:47:e2:10:74:54:92:30:a2:7a:a1:dc:ea: 3b:48:fb:a6:ab:d0:3d:6d:cf:bc:11:b1:5e:6b:80: 57:7b:7f:8e:28:f4:75:9e:0c:35:01:1b:5f:41:f2: f0:ff:d5:a1:54:cf:40:5d:92:ca:62:db:6a:1d:db: e3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F0:4D:75:C7:B8:10:1E:34:11:73:92:53:E7:2B:3C:B2:7F:5A:F1 X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:49:dd:74:9f:48:de:38:bd:90:43:8d:0b:e0:00:26:3b:c5: 65:ed:a0:f1:83:73:64:a9:5e:18:e4:97:d3:f7:e5:da:d5:a7: 96:0c:8c:4e:10:aa:85:ec:bc:45:ad:4f:06:a8:43:48:2f:8b: 51:17:82:a3:b3:a7:37:35:26:98:30:38:f8:fa:1c:31:ca:70: 82:69:17:96:7c:ba:12:69:9a:b0:2e:54:66:d0:d5:a0:31:c9: 1b:97:ce:8d:55:cf:18:71:c0:a3:a3:b0:4b:d5:23:27:00:a6: 17:17:91:10:13:ad:10:e7:2d:36:94:5a:bd:86:c2:d4:9d:2d: 71:a2:0b:cd:3e:1a:cc:f0:76:76:cb:91:26:1e:f8:b2:d0:d3: e8:9f:ed:44:38:8c:8a:6c:05:1c:2b:9b:09:ed:f5:aa:25:5d: 1f:7a:f2:b1:81:6a:90:19:a1:ba:4a:84:0b:c7:0e:8c:9c:95: 24:86:92:09:e6:a6:96:a6:0a:e3:3a:6b:bd:df:50:09:9b:22: 90:9e:cb:12:ca:60:4f:2b:6e:9f:7b:bc:64:df:ce:c8:8f:30: 03:8e:e7:4f:97:26:08:06:5a:89:9f:a6:64:66:14:b4:d3:be: fc:dd:dc:e8:8d:52:0b:fe:ab:d7:bd:96:40:2a:53:89:3c:61: 33:4b:06:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjYwMzI3MDIwMTIyWhcNMjYwNDAzMDIwMTIyWjAYMRYwFAYD VQQDEw02OWM1ZTRmMi1jZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWV3mpMUZv8vfvyJIzLD9RTPWAIPC1mH7VIeiEPb61eJN4np1fWzPhogNIaf FFRqfr9d9CXnVlB2eHb2GAspSSiPURjMkbFcvU9MXQhxOPoka2l+lsNx41ulQ+My 6HDvnEOqWIcN439o4HkStaYow6YmlC+tFwoYu1qn22hpoqNEeO6Sy2D4QhKmNloM jpB5g+Sp76fFt3arPHbk37JsbsD29Yp41LEZ4SVCZK638KKNbzqVj+k2IjpbQj4l a3oCA0+A98ZH4hB0VJIwonqh3Oo7SPumq9A9bc+8EbFea4BXe3+OKPR1ngw1ARtf QfLw/9WhVM9AXZLKYttqHdvjpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCrwTXXH uBAeNBFzklPnKzyyf1rxMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADEnddJ9I3ji9kEONC+AAJjvFZe2g8YNzZKleGOSX0/fl2tWnlgyMThCqhey8 Ra1PBqhDSC+LUReCo7OnNzUmmDA4+PocMcpwgmkXlny6EmmasC5UZtDVoDHJG5fO jVXPGHHAo6OwS9UjJwCmFxeREBOtEOctNpRavYbC1J0tcaILzT4azPB2dsuRJh74 stDT6J/tRDiMimwFHCubCe31qiVdH3rysYFqkBmhukqEC8cOjJyVJIaSCeamlqYK 4zprvd9QCZsikJ7LEspgTytun3u8ZN/OyI8wA47nT5cmCAZaiZ+mZGYUtNO+/N3c 6I1SC/6r172WQCpTiTxhM0sGww== -----END CERTIFICATE-----Generated at Sat Mar 28 10:46:23 2026 by rpki-client