$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: og6hKY5SlAj9lW7fALltJVthZcSdwZ8bIurJK+QXKZA= Subject key identifier: BC:62:7D:81:09:F2:5A:6A:30:1D:0D:22:18:9A:98:9A:D7:05:23:68 Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 0246 Signing time: Wed 25 Mar 2026 01:52:34 +0000 Manifest this update: Wed 25 Mar 2026 01:52:34 +0000 Manifest next update: Wed 01 Apr 2026 01:52:34 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: pd457xGFMza0BCcdKiCQekSIFcbpqOXfI3q6jKOYRUQ=) 2: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: UK3A/oQxQUdjUg4kSQf+8LqIPors4EamqRUdq1d2ntQ=) 3: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: gF+wRybYqzRDn6Gcs13+OYJlZyu3AwVXsipzWwYqmyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Mar 25 01:52:34 2026 GMT Not After : Apr 1 01:52:34 2026 GMT Subject: CN=69c33fe2-1a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:58:8c:0e:c0:4c:90:77:84:ec:be:f8:d2:1e: 2c:30:a0:4b:83:8a:49:8b:6a:b0:de:98:4e:ad:36: 69:a2:06:3f:cf:6d:f5:32:ee:ac:97:2d:8e:0e:49: 32:3f:66:25:f6:fa:1f:68:53:92:af:55:26:e0:af: fd:70:ec:d0:af:b4:00:44:3e:e6:a1:c8:ab:dd:31: 0a:ce:06:3f:8a:48:ee:d7:ba:e1:11:b8:fd:e7:64: ff:a8:31:30:47:bb:6f:22:53:eb:1d:b2:61:67:87: 9d:2e:02:78:bf:9d:0a:74:6a:dd:0b:68:e9:a0:f3: b2:4a:5c:8b:b3:4e:14:64:b4:f1:5c:22:49:18:98: 91:a2:9a:53:16:11:c4:2e:fb:a9:c5:ab:6f:4d:87: db:79:a1:71:14:9d:0f:65:99:b7:0f:47:b4:97:e6: ea:73:ea:1b:1f:53:dc:1a:1c:34:14:17:b1:19:95: 00:ae:fe:ea:ea:62:d3:da:03:06:2b:96:f1:df:d2: c9:cd:90:24:b3:56:35:36:54:cf:5d:81:9c:2a:de: de:4a:26:99:49:a7:9c:7d:ab:d4:4f:6d:00:93:1c: 27:95:ee:01:10:f7:5b:9b:40:ff:ec:af:f0:5e:84: 6a:61:ff:be:09:49:95:18:81:0b:a6:e7:c2:3b:2d: f2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:62:7D:81:09:F2:5A:6A:30:1D:0D:22:18:9A:98:9A:D7:05:23:68 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:5d:8b:d2:d6:03:cf:4c:56:8e:99:23:60:e5:5b:28:70:98: 89:e9:34:6b:09:54:09:fa:71:8c:ea:da:26:3c:63:5d:b2:ef: 64:0c:f6:76:f5:71:60:5e:ed:8b:b5:86:ce:8f:9b:11:61:be: 13:1e:e9:2a:6b:c6:29:97:b7:62:bf:c8:08:a3:91:9e:60:dc: 2b:90:88:98:73:08:d5:63:21:f3:6e:29:b7:13:c8:7b:64:95: bc:fe:bc:be:d3:c8:dd:e8:45:34:5e:37:60:8b:19:fb:39:41: 51:69:60:b8:0b:e6:5a:c0:0c:3d:e3:64:1d:53:e0:4d:fe:9e: 42:db:2f:ec:bd:b6:e5:ad:2f:ee:be:84:c1:75:c3:f4:51:8a: 17:5a:bd:3d:6d:f7:db:31:fb:de:60:77:69:85:a4:8f:d0:e2: 60:84:6d:74:94:aa:42:01:81:6a:ad:91:81:85:33:46:de:06: 0c:f8:a6:8b:06:51:f5:4a:6b:d6:bb:ae:7d:c6:18:d9:a8:62: 14:b1:56:e7:10:b2:15:38:ec:ec:f6:69:76:db:cd:97:93:2c: e5:92:01:6f:0a:2e:75:8b:d9:05:22:04:d2:29:bf:d7:a1:5b: 7e:ac:f2:00:cf:35:f9:06:2e:c7:e7:d4:28:3a:84:c5:fb:1e: b1:00:bd:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjYwMzI1MDE1MjM0WhcNMjYwNDAxMDE1MjM0WjAYMRYwFAYD VQQDEw02OWMzM2ZlMi0xYTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1iMDsBMkHeE7L740h4sMKBLg4pJi2qw3phOrTZpogY/z231Mu6sly2ODkky P2Yl9vofaFOSr1Um4K/9cOzQr7QARD7mocir3TEKzgY/ikju17rhEbj952T/qDEw R7tvIlPrHbJhZ4edLgJ4v50KdGrdC2jpoPOySlyLs04UZLTxXCJJGJiRoppTFhHE LvupxatvTYfbeaFxFJ0PZZm3D0e0l+bqc+obH1PcGhw0FBexGZUArv7q6mLT2gMG K5bx39LJzZAks1Y1NlTPXYGcKt7eSiaZSaecfavUT20Akxwnle4BEPdbm0D/7K/w XoRqYf++CUmVGIELpufCOy3yfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLxifYEJ 8lpqMB0NIhiamJrXBSNoMB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP12L0tYDz0xWjpkjYOVbKHCYiek0awlUCfpxjOraJjxjXbLvZAz2dvVxYF7t i7WGzo+bEWG+Ex7pKmvGKZe3Yr/ICKORnmDcK5CImHMI1WMh824ptxPIe2SVvP68 vtPI3ehFNF43YIsZ+zlBUWlguAvmWsAMPeNkHVPgTf6eQtsv7L225a0v7r6EwXXD 9FGKF1q9PW332zH73mB3aYWkj9DiYIRtdJSqQgGBaq2RgYUzRt4GDPimiwZR9Upr 1ruufcYY2ahiFLFW5xCyFTjs7PZpdtvNl5Ms5ZIBbwoudYvZBSIE0im/16Fbfqzy AM81+QYux+fUKDqExfsesQC9/g== -----END CERTIFICATE-----Generated at Thu Mar 26 02:33:38 2026 by rpki-client