$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: KYXgD9nKfAqavGg0Hn/cNb8c+81rInQ43g42ZmU66VA= Subject key identifier: 02:DE:BC:7C:43:53:81:55:7C:EF:13:0B:A3:CE:06:4D:86:84:35:AC Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0CA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C97 Signing time: Thu 26 Mar 2026 18:28:46 +0000 Manifest this update: Thu 26 Mar 2026 18:28:45 +0000 Manifest next update: Thu 02 Apr 2026 18:28:45 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: d7bFzIW1bmapYzRrR7Ixyzh0hpoQufeu0l27pDz0uc4=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: tYlucwaBIGBa2s5M7XxozTf4DKKXocCk+qxS/KAjPVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3239 (0xca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Mar 26 18:28:45 2026 GMT Not After : Apr 2 18:28:45 2026 GMT Subject: CN=69c57ade-1e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c7:41:b4:3a:5a:c0:70:ff:91:50:d8:ac:6b: 9e:3e:f6:54:b2:74:38:ed:40:b1:4c:b4:75:bd:95: a2:43:94:47:7c:31:9a:bc:fb:54:c4:10:81:50:fe: a1:bd:08:53:da:0b:13:b3:f7:7f:b4:0e:c9:a3:b7: 13:d7:bc:f6:3a:30:f3:0b:ae:d6:97:e5:08:77:b1: 65:ce:82:e3:ed:dc:43:1c:14:1d:9a:00:2a:25:2a: 43:0e:9e:57:ad:75:e6:6b:c3:e4:d8:a2:42:80:18: 8c:20:2c:6b:53:d3:4d:0e:24:9a:b1:e3:15:0b:b5: 12:b6:6c:d3:a8:be:af:25:38:c3:d6:8f:14:8f:63: 79:c8:81:27:51:c2:39:48:47:ef:ec:3c:46:15:4b: d3:ff:d5:89:98:22:41:eb:c2:30:91:5c:ad:02:24: 82:25:73:e2:11:5a:48:16:dc:c3:bc:17:1b:a1:4f: 7e:37:95:c9:dc:23:12:7c:d4:75:a6:4f:ab:bd:ac: b4:e2:ef:b1:dc:6a:0a:9d:c6:ae:fd:29:87:55:dd: 63:9b:38:96:31:92:20:9e:62:dc:a4:7e:23:f2:e9: 36:33:fa:4c:e7:ee:fe:00:f5:55:4b:1b:ed:ec:8b: fd:f4:13:29:0d:d8:e4:ea:4c:41:d9:33:eb:d6:a0: 83:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:DE:BC:7C:43:53:81:55:7C:EF:13:0B:A3:CE:06:4D:86:84:35:AC X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:df:8d:cb:d0:25:2f:21:39:c1:ba:9e:6e:69:09:7f:97:be: 64:07:e2:51:6a:ba:19:d0:88:92:81:fd:ae:2e:13:43:3e:55: 94:5a:e6:34:ab:4e:ec:fe:db:af:3d:fa:56:f2:17:ea:26:d5: 80:bb:5f:ec:b8:b1:cb:f9:6e:76:0e:fc:39:ad:41:78:7f:71: de:d5:bd:8e:7a:13:27:63:21:2a:29:c1:d6:7b:57:28:83:93: bb:80:07:06:9e:70:e3:9d:e8:7b:f1:8f:8a:19:e7:ef:87:ea: d8:46:ef:d7:98:fb:2f:a5:09:ce:6c:56:d2:1e:b0:fb:29:38: c4:8f:ea:70:d0:a5:c6:50:1b:f8:c4:19:75:7c:a2:d6:a4:6c: 64:28:23:f7:1b:7a:ef:a4:35:94:59:8c:97:ba:77:fd:5e:27: 33:a9:92:5a:72:42:b8:be:d5:f4:71:23:f6:be:55:0c:07:72: 12:10:8d:31:d0:54:93:bb:42:8b:58:87:f7:c6:ba:45:2d:fd: d4:01:57:21:da:b9:77:5d:bb:57:24:70:f1:30:68:b5:b5:50: 7b:73:c5:9c:a4:69:d1:6c:d9:d7:15:d3:4e:f4:91:56:fd:fa: 69:b8:83:e3:99:74:89:c6:99:5c:bd:d5:e7:c2:65:d3:a9:9a: 55:fc:56:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjYwMzI2MTgyODQ1WhcNMjYwNDAyMTgyODQ1WjAYMRYwFAYD VQQDEw02OWM1N2FkZS0xZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMdBtDpawHD/kVDYrGuePvZUsnQ47UCxTLR1vZWiQ5RHfDGavPtUxBCBUP6h vQhT2gsTs/d/tA7Jo7cT17z2OjDzC67Wl+UId7FlzoLj7dxDHBQdmgAqJSpDDp5X rXXma8Pk2KJCgBiMICxrU9NNDiSaseMVC7UStmzTqL6vJTjD1o8Uj2N5yIEnUcI5 SEfv7DxGFUvT/9WJmCJB68IwkVytAiSCJXPiEVpIFtzDvBcboU9+N5XJ3CMSfNR1 pk+rvay04u+x3GoKncau/SmHVd1jmziWMZIgnmLcpH4j8uk2M/pM5+7+APVVSxvt 7Iv99BMpDdjk6kxB2TPr1qCDwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFALevHxD U4FVfO8TC6POBk2GhDWsMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm9+Ny9AlLyE5wbqebmkJf5e+ZAfiUWq6GdCIkoH9ri4TQz5VlFrmNKtO7P7b rz36VvIX6ibVgLtf7Lixy/ludg78Oa1BeH9x3tW9jnoTJ2MhKinB1ntXKIOTu4AH Bp5w453oe/GPihnn74fq2Ebv15j7L6UJzmxW0h6w+yk4xI/qcNClxlAb+MQZdXyi 1qRsZCgj9xt676Q1lFmMl7p3/V4nM6mSWnJCuL7V9HEj9r5VDAdyEhCNMdBUk7tC i1iH98a6RS391AFXIdq5d127VyRw8TBotbVQe3PFnKRp0WzZ1xXTTvSRVv36abiD 45l0icaZXL3V58Jl06maVfxWsg== -----END CERTIFICATE-----Generated at Fri Mar 27 09:17:33 2026 by rpki-client