$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: NFL3rWpwCPebb+oTcsa5Mu7Pc4BrAuKcWVGZljSUN5w= Subject key identifier: BB:AF:87:BA:78:34:2A:9E:E0:D6:AA:3E:3B:F3:46:E5:AC:BD:01:38 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 1166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 250E Signing time: Tue 24 Mar 2026 16:51:03 +0000 Manifest this update: Tue 24 Mar 2026 16:51:02 +0000 Manifest next update: Tue 31 Mar 2026 16:51:02 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: 5JebqnJeQdAIpBWunyZCLzpjyEpp6IyPiksnDux4KNk=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: FaFqBcKylUM1Ik2J0LQMDMkip4pQ4QSSImVSUK0dY18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:51:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4454 (0x1166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Mar 24 16:51:02 2026 GMT Not After : Mar 31 16:51:02 2026 GMT Subject: CN=69c2c0f7-7d97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:67:96:0a:e5:37:fe:39:aa:8d:c4:97:f6:2f: e8:7d:2c:3d:a6:cd:1d:ed:b2:97:4b:0b:b7:72:d7: bf:95:41:e2:51:65:e8:71:78:bf:72:33:3c:2e:f7: ca:b2:a4:7e:72:44:4e:33:b7:0a:6e:a1:84:e3:a7: 03:15:78:f6:a3:6d:62:db:65:ed:08:91:e4:7b:09: 50:1a:f3:1a:83:34:9e:1a:7d:a0:48:8f:05:c1:05: f5:db:8c:da:7e:bc:0f:66:39:ba:fa:7f:dc:4a:41: 6f:2b:e1:dc:5c:c6:72:35:16:f3:33:30:3d:24:98: de:ac:7c:07:30:6a:6d:7d:d9:f3:af:1d:c0:e7:ab: d7:47:84:0a:2d:d4:7c:15:ee:4e:a2:f4:78:74:c6: 12:b6:56:d9:58:5c:df:77:da:58:44:51:ad:df:e9: a7:cd:02:66:da:de:35:33:d1:14:f5:f4:f9:68:f1: 48:f6:e0:b4:0b:d3:48:b2:2a:c7:cd:e4:80:4b:9e: c1:3c:ee:62:f8:44:46:d4:f5:e9:9a:2d:63:06:71: b8:f0:25:52:f8:18:b0:c8:6c:dc:1f:a4:48:dd:6e: f4:9a:89:03:df:12:9d:0a:4a:06:11:bc:c1:a2:22: de:65:b3:45:36:e8:65:54:b6:c6:1d:4c:c4:b4:8c: f2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AF:87:BA:78:34:2A:9E:E0:D6:AA:3E:3B:F3:46:E5:AC:BD:01:38 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:8c:a9:c0:35:52:e7:3d:d6:5d:8d:f7:56:e5:a9:64:67:aa: fc:91:d7:e7:68:05:a3:de:ad:b4:f4:72:57:03:c3:27:bb:ce: e0:29:0d:df:77:de:01:78:92:d0:45:50:b3:24:8d:7b:73:f5: 3c:3b:49:08:b2:2a:06:96:6a:fa:f6:b2:4a:16:4b:32:a8:0b: 3f:0c:71:95:95:1e:b9:e0:76:10:8a:ec:33:e3:ca:39:38:56: d2:87:9f:e8:2d:cf:23:4d:80:17:80:07:ec:8e:26:7c:92:67: 66:a8:10:85:45:b8:38:1d:7b:bc:32:a1:8a:cd:a5:b6:d7:fe: ee:4c:d0:fe:19:cb:e5:28:5c:93:55:ee:b2:8f:16:73:c8:b7: 99:92:b0:27:d4:ec:48:16:d6:5b:43:54:95:80:81:8a:56:76: 03:c7:d8:d1:5d:d6:81:51:09:d6:0b:19:91:2f:26:37:64:53: 10:f8:77:b1:1f:63:3d:be:56:ba:f8:c9:4b:70:11:88:8a:d9: 47:e8:20:cd:1d:1d:9f:04:83:5d:1a:d7:0b:4f:a4:68:07:b2: ce:b8:5d:3a:33:67:a2:26:71:0f:7d:e8:36:ff:d4:02:2c:a7: d5:2a:a4:bd:29:0f:13:50:30:a2:a8:90:6c:21:81:63:7a:ad: 70:06:16:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjYwMzI0MTY1MTAyWhcNMjYwMzMxMTY1MTAyWjAYMRYwFAYD VQQDEw02OWMyYzBmNy03ZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GeWCuU3/jmqjcSX9i/ofSw9ps0d7bKXSwu3cte/lUHiUWXocXi/cjM8LvfK sqR+ckROM7cKbqGE46cDFXj2o21i22XtCJHkewlQGvMagzSeGn2gSI8FwQX124za frwPZjm6+n/cSkFvK+HcXMZyNRbzMzA9JJjerHwHMGptfdnzrx3A56vXR4QKLdR8 Fe5OovR4dMYStlbZWFzfd9pYRFGt3+mnzQJm2t41M9EU9fT5aPFI9uC0C9NIsirH zeSAS57BPO5i+ERG1PXpmi1jBnG48CVS+BiwyGzcH6RI3W70mokD3xKdCkoGEbzB oiLeZbNFNuhlVLbGHUzEtIzyHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLuvh7p4 NCqe4NaqPjvzRuWsvQE4MB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAroypwDVS5z3WXY33VuWpZGeq/JHX52gFo96ttPRyVwPDJ7vO4CkN33feAXiS 0EVQsySNe3P1PDtJCLIqBpZq+vayShZLMqgLPwxxlZUeueB2EIrsM+PKOThW0oef 6C3PI02AF4AH7I4mfJJnZqgQhUW4OB17vDKhis2lttf+7kzQ/hnL5Shck1Xuso8W c8i3mZKwJ9TsSBbWW0NUlYCBilZ2A8fY0V3WgVEJ1gsZkS8mN2RTEPh3sR9jPb5W uvjJS3ARiIrZR+ggzR0dnwSDXRrXC0+kaAeyzrhdOjNnoiZxD33oNv/UAiyn1Sqk vSkPE1AwoqiQbCGBY3qtcAYWtA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:10:43 2026 by rpki-client