$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: 0rzl6nxCHeIDA9mGW2LADx8JlxemEnKp3FIXpxk9CGU= Subject key identifier: 8B:94:C1:12:A6:F1:C4:C7:87:18:3D:E4:0A:43:66:3E:72:31:53:FA Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 070E Signing time: Tue 24 Mar 2026 21:38:23 +0000 Manifest this update: Tue 24 Mar 2026 21:38:23 +0000 Manifest next update: Tue 31 Mar 2026 21:38:23 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: NityDPl0G/aqNyrLv97GzqxWrC2x0oPepyKx7TIyyG4=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: SMXgd0Qe6A0+Zb1ETGRTYsNnB3dN/PWbVvtwDpEc6yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Mar 24 21:38:23 2026 GMT Not After : Mar 31 21:38:23 2026 GMT Subject: CN=69c3044f-7a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:57:eb:66:fd:29:5a:ac:f2:c1:57:5b:75:9a: 1c:0b:62:32:b7:cd:c2:9a:3c:d8:ee:c6:10:8c:85: 21:5a:3d:82:44:45:c8:4e:e1:17:ff:80:81:03:d1: a8:95:23:ec:cf:2b:e0:9c:47:68:c8:3a:21:4a:41: 4f:a1:64:d8:b0:8c:e0:3f:56:8b:34:ee:ca:99:7b: 1c:08:4e:a6:2f:e6:b8:ce:10:ce:c5:8c:f5:68:d7: ee:56:32:1e:26:fd:9f:ff:65:79:3d:91:85:5e:d8: 64:52:61:53:42:05:6f:6e:e6:97:2e:05:71:dc:0f: 72:79:66:d2:9b:91:d2:9a:c3:f7:92:62:0d:e8:57: 3d:41:18:ce:cf:f8:f5:ca:bf:98:ab:ee:9a:3a:9e: 42:61:4c:8d:bc:f2:2f:a2:56:a4:6a:ed:57:a0:a3: 41:4b:18:4c:a4:db:f7:1a:a3:3f:12:a3:0b:8d:00: e1:32:8a:ee:61:b8:7e:ce:b2:59:5e:d7:4c:ff:b4: 23:ce:d0:79:57:8c:dc:92:90:b4:97:23:e4:5d:8b: 5f:fb:7c:11:f3:2d:b0:d9:c9:f6:02:cf:e4:c3:b7: 64:25:00:bd:43:39:8e:c5:43:c9:1b:5f:b5:a9:d3: cd:11:99:f5:b1:43:0d:de:73:9d:1d:47:a6:97:8e: a7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:94:C1:12:A6:F1:C4:C7:87:18:3D:E4:0A:43:66:3E:72:31:53:FA X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:e9:b5:5f:0e:1c:32:e0:46:8e:8a:e0:22:d7:30:bc:a5:90: 33:b1:c2:1d:9d:ed:b6:e1:43:ec:2c:d9:d2:f7:30:ad:c0:0e: b8:80:40:49:b9:9d:43:82:64:c8:90:fd:55:05:1c:7f:8a:ea: 15:8a:9b:fc:c7:a3:a6:52:b9:ef:94:0c:ca:b4:81:9e:1d:5b: 29:c4:27:42:55:d7:63:37:8d:09:e3:0d:15:e2:10:f4:2b:ce: f9:0f:93:67:10:8f:44:92:97:90:93:fc:3d:4f:40:e1:06:56: a0:c4:be:ea:07:7f:58:87:76:23:3e:bf:79:82:cf:c6:d7:d0: 4c:d4:4d:20:88:0c:01:1b:e1:7c:ef:f8:6d:44:f8:2c:eb:6f: e4:a4:0a:11:ef:a1:10:3d:07:ef:ce:d7:48:a1:24:c0:11:55: 95:01:dd:02:5c:34:8c:08:37:a5:b1:8f:66:01:16:d0:62:7f: 41:a4:31:9f:33:86:14:1f:89:b4:ea:6c:75:a3:b0:19:e1:23: a5:69:32:9b:e5:d0:31:78:08:d5:69:92:3b:a4:b7:c4:7a:2a: 8e:00:6f:c4:d5:46:21:74:77:5b:c9:c5:eb:9c:3b:e2:ab:f4: 83:92:2e:ea:17:0c:4e:fe:35:15:5a:14:df:17:13:9b:a5:9f: 7e:64:9c:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjYwMzI0MjEzODIzWhcNMjYwMzMxMjEzODIzWjAYMRYwFAYD VQQDEw02OWMzMDQ0Zi03YThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1frZv0pWqzywVdbdZocC2Iyt83CmjzY7sYQjIUhWj2CREXITuEX/4CBA9Go lSPszyvgnEdoyDohSkFPoWTYsIzgP1aLNO7KmXscCE6mL+a4zhDOxYz1aNfuVjIe Jv2f/2V5PZGFXthkUmFTQgVvbuaXLgVx3A9yeWbSm5HSmsP3kmIN6Fc9QRjOz/j1 yr+Yq+6aOp5CYUyNvPIvolakau1XoKNBSxhMpNv3GqM/EqMLjQDhMoruYbh+zrJZ XtdM/7QjztB5V4zckpC0lyPkXYtf+3wR8y2w2cn2As/kw7dkJQC9QzmOxUPJG1+1 qdPNEZn1sUMN3nOdHUeml46nbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIuUwRKm 8cTHhxg95ApDZj5yMVP6MB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA+m1Xw4cMuBGjorgItcwvKWQM7HCHZ3ttuFD7CzZ0vcwrcAOuIBASbmdQ4Jk yJD9VQUcf4rqFYqb/MejplK575QMyrSBnh1bKcQnQlXXYzeNCeMNFeIQ9CvO+Q+T ZxCPRJKXkJP8PU9A4QZWoMS+6gd/WId2Iz6/eYLPxtfQTNRNIIgMARvhfO/4bUT4 LOtv5KQKEe+hED0H787XSKEkwBFVlQHdAlw0jAg3pbGPZgEW0GJ/QaQxnzOGFB+J tOpsdaOwGeEjpWkym+XQMXgI1WmSO6S3xHoqjgBvxNVGIXR3W8nF65w74qv0g5Iu 6hcMTv41FVoU3xcTm6WffmScQA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:14:22 2026 by rpki-client