$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: q8gO+qbAcimZDJne1Av0UAi/HH0o0uJ+nt7iKrQQ7YY= Subject key identifier: C1:97:E4:D5:05:AB:5B:37:D0:58:6C:47:92:D4:C7:12:C5:21:61:F8 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 0131 Signing time: Wed 25 Mar 2026 04:50:48 +0000 Manifest this update: Wed 25 Mar 2026 04:50:47 +0000 Manifest next update: Wed 01 Apr 2026 04:50:47 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: YvbdO4/4rb555CddYpUq3LwlC8g/plzTHu1s1wMt4Zo=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: vOf/o1JHkb8wuECkMMHoKSsb6jXZeHUN4IdzhUHE9fc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Mar 25 04:50:47 2026 GMT Not After : Apr 1 04:50:47 2026 GMT Subject: CN=69c369a7-f4f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:14:b0:59:9b:51:62:93:bb:b0:fc:61:f4: 67:6a:9a:37:b7:7b:67:f7:c8:c0:15:23:50:ed:f8: b8:62:8c:45:01:34:b9:c6:97:fc:fb:22:1b:df:32: 12:ca:b5:98:62:28:d5:c7:2f:ce:78:8a:b2:45:ef: b0:5a:7b:30:01:c3:ed:c7:84:1d:9a:cb:71:b3:39: e3:45:c6:6b:03:37:93:9b:04:2e:21:8d:e1:62:6f: 4a:40:97:ea:45:fb:0c:8d:78:b1:b0:82:a2:b3:c1: 1d:77:11:42:3b:f2:29:e4:ae:27:8f:50:21:d0:34: 60:42:00:01:67:a9:dc:94:3f:8f:d4:bb:30:cb:de: 83:41:67:33:68:f0:8d:36:38:bc:d8:d7:19:8c:21: 70:54:fc:a2:c0:bd:b7:4f:b6:e0:76:ee:97:dc:2f: 39:db:6a:2f:1e:f0:1b:d0:09:f7:89:02:c8:43:1a: 0c:87:19:f4:03:b8:e2:79:50:d1:7b:56:88:c8:59: 20:19:b1:ac:85:c2:cc:03:3e:86:89:59:8d:b9:9e: b2:66:d6:8e:63:80:f8:1b:19:6a:64:87:9d:01:41: f3:11:8f:49:dc:3d:bd:c5:fe:5a:51:e4:48:41:a2: f7:3f:e3:75:8c:8e:66:9f:42:35:93:d7:f9:f6:9d: bb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:97:E4:D5:05:AB:5B:37:D0:58:6C:47:92:D4:C7:12:C5:21:61:F8 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:1b:3e:fd:46:1f:9f:13:27:86:88:fc:6c:c4:8a:74:2b:2f: 0c:fb:cf:39:0d:e4:61:58:9d:76:5c:0b:06:18:7f:bd:35:dc: c2:e5:df:68:62:fa:c2:93:4a:22:d3:15:03:83:31:55:84:3c: 20:e7:b3:2b:34:ff:63:a0:0d:27:09:53:24:e3:cd:47:d5:c0: 3f:2d:db:4b:a4:44:c5:da:be:90:09:7b:82:f2:63:0e:d8:da: 3f:8b:a6:9b:5a:3d:da:9b:54:0e:a0:4d:c7:76:06:c3:2c:b9: a8:a7:23:da:bb:9c:78:e1:75:0d:71:bd:5d:ff:00:57:fa:e0: 7f:3c:37:c4:55:5e:a0:b5:0b:8e:b5:cb:fc:4d:9b:eb:de:32: c7:ce:df:db:89:cf:ed:2a:dc:d4:b8:4b:be:0b:64:cc:2a:61: 3d:0f:27:04:04:bd:c6:06:85:01:f1:1e:57:d7:84:6f:04:ba: 10:0b:88:8c:c9:86:61:0b:3d:0d:60:64:c1:fd:46:57:8b:32: 20:a3:cb:40:0c:46:69:51:b8:f8:ec:bc:b2:4a:40:00:48:1b: e2:a6:90:62:a9:4c:59:5d:11:be:d5:46:6b:67:6a:14:ac:92: 8e:a8:c4:4c:8d:76:8e:31:e5:3c:ff:d3:14:14:a4:ad:fe:ae: 2a:5c:84:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjYwMzI1MDQ1MDQ3WhcNMjYwNDAxMDQ1MDQ3WjAYMRYwFAYD VQQDEw02OWMzNjlhNy1mNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDEUsFmbUWKTu7D8YfRnapo3t3tn98jAFSNQ7fi4YoxFATS5xpf8+yIb3zIS yrWYYijVxy/OeIqyRe+wWnswAcPtx4QdmstxsznjRcZrAzeTmwQuIY3hYm9KQJfq RfsMjXixsIKis8EddxFCO/Ip5K4nj1Ah0DRgQgABZ6nclD+P1Lswy96DQWczaPCN Nji82NcZjCFwVPyiwL23T7bgdu6X3C8522ovHvAb0An3iQLIQxoMhxn0A7jieVDR e1aIyFkgGbGshcLMAz6GiVmNuZ6yZtaOY4D4GxlqZIedAUHzEY9J3D29xf5aUeRI QaL3P+N1jI5mn0I1k9f59p27yQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMGX5NUF q1s30FhsR5LUxxLFIWH4MB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJhs+/UYfnxMnhoj8bMSKdCsvDPvPOQ3kYViddlwLBhh/vTXcwuXfaGL6wpNK ItMVA4MxVYQ8IOezKzT/Y6ANJwlTJOPNR9XAPy3bS6RExdq+kAl7gvJjDtjaP4um m1o92ptUDqBNx3YGwyy5qKcj2ruceOF1DXG9Xf8AV/rgfzw3xFVeoLULjrXL/E2b 694yx87f24nP7Src1LhLvgtkzCphPQ8nBAS9xgaFAfEeV9eEbwS6EAuIjMmGYQs9 DWBkwf1GV4syIKPLQAxGaVG4+Oy8skpAAEgb4qaQYqlMWV0RvtVGa2dqFKySjqjE TI12jjHlPP/TFBSkrf6uKlyE5Q== -----END CERTIFICATE-----Generated at Thu Mar 26 21:57:38 2026 by rpki-client