$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: vvWOex3QUN9OFzd/3Lm+CQCctSKeOFig65g/cFkepiY= Subject key identifier: 6A:F0:96:16:E4:56:19:B4:FC:57:B6:23:D3:58:ED:18:D3:48:0C:55 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 032F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 0324 Signing time: Wed 25 Mar 2026 00:44:58 +0000 Manifest this update: Wed 25 Mar 2026 00:44:58 +0000 Manifest next update: Wed 01 Apr 2026 00:44:58 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: MShpcY9esU7oZzD/2vcLMKtw4ZCDXfhnjLwq7g9I120=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: 5pvog1WaQXSx08gAbCNPBFn3bbF20IQKZ1DUM6ITIJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 815 (0x32f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Mar 25 00:44:58 2026 GMT Not After : Apr 1 00:44:58 2026 GMT Subject: CN=69c3300a-9eb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:74:f6:7a:08:5f:68:b6:ba:10:93:25:19:ca: 3b:43:8e:5f:04:99:82:0c:90:c6:f3:cd:e0:64:d2: 16:0c:bb:25:49:38:b2:40:cb:d1:e9:5a:3f:bf:55: 2a:b1:e6:f7:76:d1:58:18:22:5a:bc:51:22:54:06: c2:35:8d:4e:0b:c2:8b:ad:a8:d3:73:ac:55:ad:13: 02:35:32:61:fb:4b:22:2e:2d:f7:ef:a7:0a:8a:42: 10:0e:99:54:ec:e9:2c:ca:91:00:72:b0:49:74:9d: d0:bc:42:e8:b6:66:46:7a:97:de:8a:66:0d:f7:8e: df:93:a4:71:19:1c:3b:a5:0b:30:d9:24:66:b0:90: b7:c4:f1:54:4c:a5:e4:b9:a2:f7:95:46:69:36:c6: b4:2d:12:14:85:42:8f:a1:4c:45:23:31:cb:6d:cf: b8:f8:93:1e:00:0d:9a:ed:53:ee:56:fb:71:06:8c: 3a:77:bc:ca:47:45:a7:fa:2d:7d:d9:fc:7d:3c:4a: b0:21:c5:c9:d5:ca:35:29:ac:d5:ee:4f:04:11:0c: 2c:7d:16:4d:8e:0b:e2:1b:e8:41:81:93:ff:44:81: 74:94:50:39:62:c1:07:34:08:30:b8:da:79:11:70: 09:b4:5e:ec:0d:3c:98:71:a6:67:9f:bb:61:be:60: 83:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F0:96:16:E4:56:19:B4:FC:57:B6:23:D3:58:ED:18:D3:48:0C:55 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:82:2d:3a:88:78:c2:11:ce:5b:38:de:cf:7e:65:ba:e6:6b: 6b:d0:48:69:dd:a5:a6:f8:3d:f1:90:b6:39:96:5f:c5:de:92: 76:d1:2a:b8:95:56:99:ec:ba:0d:38:a2:65:f5:05:f7:8a:65: 66:ae:62:ac:08:0f:40:7f:80:44:4c:a0:99:2f:c9:97:28:2e: 89:17:00:d1:80:51:8e:85:b9:84:56:e2:73:98:0f:50:a8:50: b0:9b:af:d4:e3:b1:1e:97:cb:a3:d4:a3:a5:b0:53:36:2f:da: a6:9f:f6:e8:49:dd:80:2f:8f:0b:b6:52:14:d8:7a:df:c7:6c: 30:4e:5f:73:a0:7d:87:70:43:3d:ba:03:c4:1c:25:67:dc:63: b7:a8:b1:c2:0a:d4:f5:c5:90:38:d3:b9:40:fd:e4:81:5f:41: 7c:6c:ac:be:b7:e9:d7:aa:8b:19:32:f5:17:f6:8b:2c:86:c9: 88:f6:c3:e7:69:6e:9f:31:0f:44:f0:ef:54:a5:53:b0:4d:67: 9c:10:56:cf:28:b2:25:6b:53:e7:8e:34:ed:21:43:ff:4c:3b: a4:c6:bf:5a:80:99:bc:a0:eb:05:6c:b7:11:f9:41:b4:9e:1f: f9:12:d6:cf:20:25:f0:ba:4f:9c:0f:05:ef:8f:22:bf:c3:27: 73:03:0a:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjYwMzI1MDA0NDU4WhcNMjYwNDAxMDA0NDU4WjAYMRYwFAYD VQQDEw02OWMzMzAwYS05ZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynT2eghfaLa6EJMlGco7Q45fBJmCDJDG883gZNIWDLslSTiyQMvR6Vo/v1Uq seb3dtFYGCJavFEiVAbCNY1OC8KLrajTc6xVrRMCNTJh+0siLi3376cKikIQDplU 7OksypEAcrBJdJ3QvELotmZGepfeimYN947fk6RxGRw7pQsw2SRmsJC3xPFUTKXk uaL3lUZpNsa0LRIUhUKPoUxFIzHLbc+4+JMeAA2a7VPuVvtxBow6d7zKR0Wn+i19 2fx9PEqwIcXJ1co1KazV7k8EEQwsfRZNjgviG+hBgZP/RIF0lFA5YsEHNAgwuNp5 EXAJtF7sDTyYcaZnn7thvmCDEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGrwlhbk Vhm0/Fe2I9NY7RjTSAxVMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzYItOoh4whHOWzjez35luuZra9BIad2lpvg98ZC2OZZfxd6SdtEquJVWmey6 DTiiZfUF94plZq5irAgPQH+AREygmS/JlyguiRcA0YBRjoW5hFbic5gPUKhQsJuv 1OOxHpfLo9SjpbBTNi/app/26EndgC+PC7ZSFNh638dsME5fc6B9h3BDPboDxBwl Z9xjt6ixwgrU9cWQONO5QP3kgV9BfGysvrfp16qLGTL1F/aLLIbJiPbD52lunzEP RPDvVKVTsE1nnBBWzyiyJWtT54407SFD/0w7pMa/WoCZvKDrBWy3EflBtJ4f+RLW zyAl8LpPnA8F748iv8MncwMKkw== -----END CERTIFICATE-----Generated at Thu Mar 26 14:27:13 2026 by rpki-client