$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: yskgUTDNFLYQC5FvKzIQsV162UYflBl+ngACPWh5Z9U= Subject key identifier: 31:83:77:DB:7C:D9:BB:7A:B1:C9:05:29:5D:A3:A8:8C:C5:EB:5A:86 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 01DB Signing time: Fri 27 Mar 2026 03:01:38 +0000 Manifest this update: Fri 27 Mar 2026 03:01:38 +0000 Manifest next update: Fri 03 Apr 2026 03:01:38 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: ylzVjcudZjrzfawg5qzL3OM7vDDzcOLB6NSvlNRkozM=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: cTlf1NxuIouKXNPDJnnCsmUtnsb/nG3rM1WrAqOmy6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Mar 27 03:01:38 2026 GMT Not After : Apr 3 03:01:38 2026 GMT Subject: CN=69c5f312-4278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ce:8c:c6:1f:fe:37:65:fa:c1:9d:a8:d8:7a: f9:28:f4:60:ff:d1:31:2a:25:8d:27:92:07:95:91: df:f4:ea:c7:f3:7a:be:11:21:2f:95:a6:25:b4:b1: 29:0e:e2:c8:3c:c5:f7:2c:df:22:fa:af:18:26:3f: e9:e2:2f:79:b4:f1:b7:2a:78:d5:f5:cd:ed:8f:3f: 16:a7:61:db:5a:a7:8e:20:27:04:c6:ae:45:19:85: 3c:9a:70:82:e6:52:a2:67:c1:bc:9e:d7:e4:53:e5: 05:f9:f7:b6:2c:b4:fc:88:b1:c9:d5:92:fa:90:14: 5d:6c:b2:97:3a:27:19:8f:b4:33:ba:9d:b7:a4:a1: d2:2d:d6:6a:3b:33:b7:e7:c0:06:2b:12:36:21:50: 52:df:be:38:71:c2:8f:27:94:7d:a4:2e:8e:83:85: 5e:66:46:40:fa:09:60:04:af:9f:40:69:94:12:02: fb:e0:bd:d6:0b:36:8e:63:87:5c:3d:5c:76:c6:53: 72:ae:ae:2e:f2:c6:25:50:f9:20:cf:97:4b:74:f7: 56:12:8b:cd:3e:70:06:c7:5f:ba:5d:86:ab:19:4f: 43:25:d7:b4:0a:cb:b1:9a:0c:fd:32:12:15:2a:3a: 6b:08:4a:e5:e6:0d:97:06:70:c7:d1:c2:95:0c:01: 17:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:83:77:DB:7C:D9:BB:7A:B1:C9:05:29:5D:A3:A8:8C:C5:EB:5A:86 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:80:1d:59:b2:0b:c7:02:74:28:f0:b4:1c:0c:e4:c3:d0:bb: 53:0a:2c:16:2e:f5:d9:b6:1a:ab:35:ec:08:fb:7d:f7:4f:95: 9a:f0:2c:c4:20:86:17:80:e2:e2:0f:7a:59:47:2c:2b:04:d5: c7:bb:92:76:8c:62:3c:b5:c6:be:65:53:6f:16:b0:af:8d:25: 88:5f:f1:a2:6f:cc:57:f6:84:c1:85:a9:6f:9e:10:86:19:a8: f6:59:16:e1:39:b8:70:39:6b:ed:ff:48:ab:75:56:da:d9:c1: fd:ab:41:cd:05:76:aa:f5:04:a2:7b:22:6c:cf:14:8a:b2:92: 56:c3:b8:80:ab:5d:8c:73:ec:7d:15:d0:78:69:53:ad:6c:ef: 56:af:e0:eb:28:8e:a0:1b:ab:7d:a7:2b:3b:5a:ac:fb:39:7f: a2:45:2f:aa:bf:8d:7b:dc:5b:a2:ac:e6:6b:db:e0:a3:b3:20: f8:0d:2b:1a:41:8f:da:d8:75:b6:21:84:bb:4a:f9:af:7e:4f: 82:21:f0:d8:9a:bd:cc:19:b5:c3:e2:6b:cf:b3:24:da:73:47: a8:a3:45:86:dd:e5:10:20:da:b2:2b:2d:c5:cd:55:df:a7:6f: 25:bb:80:f8:ae:36:c7:98:13:2d:0e:b6:e8:88:86:31:40:6d: 8d:41:98:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjYwMzI3MDMwMTM4WhcNMjYwNDAzMDMwMTM4WjAYMRYwFAYD VQQDEw02OWM1ZjMxMi00Mjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo86Mxh/+N2X6wZ2o2Hr5KPRg/9ExKiWNJ5IHlZHf9OrH83q+ESEvlaYltLEp DuLIPMX3LN8i+q8YJj/p4i95tPG3KnjV9c3tjz8Wp2HbWqeOICcExq5FGYU8mnCC 5lKiZ8G8ntfkU+UF+fe2LLT8iLHJ1ZL6kBRdbLKXOicZj7Qzup23pKHSLdZqOzO3 58AGKxI2IVBS3744ccKPJ5R9pC6Og4VeZkZA+glgBK+fQGmUEgL74L3WCzaOY4dc PVx2xlNyrq4u8sYlUPkgz5dLdPdWEovNPnAGx1+6XYarGU9DJde0Csuxmgz9MhIV KjprCErl5g2XBnDH0cKVDAEXkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDGDd9t8 2bt6sckFKV2jqIzF61qGMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX4AdWbILxwJ0KPC0HAzkw9C7UwosFi712bYaqzXsCPt990+VmvAsxCCGF4Di 4g96WUcsKwTVx7uSdoxiPLXGvmVTbxawr40liF/xom/MV/aEwYWpb54Qhhmo9lkW 4Tm4cDlr7f9Iq3VW2tnB/atBzQV2qvUEonsibM8UirKSVsO4gKtdjHPsfRXQeGlT rWzvVq/g6yiOoBurfacrO1qs+zl/okUvqr+Ne9xboqzma9vgo7Mg+A0rGkGP2th1 tiGEu0r5r35PgiHw2Jq9zBm1w+Jrz7Mk2nNHqKNFht3lECDasistxc1V36dvJbuA +K42x5gTLQ626IiGMUBtjUGYiQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:20:19 2026 by rpki-client