$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: /nGK5J+jr87MeVRT6afvCyUA+nKJBkzviNl45mhX6s8= Subject key identifier: 49:9C:22:AE:88:9E:CF:B8:0A:E5:14:3A:3C:F4:E9:CC:C9:66:FD:DC Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 0153 Signing time: Wed 25 Mar 2026 04:21:41 +0000 Manifest this update: Wed 25 Mar 2026 04:21:41 +0000 Manifest next update: Wed 01 Apr 2026 04:21:41 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: 5wXaLnVuLmZTpuEmbjmg4GH7jSgK06xa6/mPpRwQHZk=) 2: CCAF2918109411F186362BB2353D8C67.roa (hash: Upvyy2jPvhhD/OdsNESStZNIXsW/r3KlLDVUrD02B1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Mar 25 04:21:41 2026 GMT Not After : Apr 1 04:21:41 2026 GMT Subject: CN=69c362d5-cf1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e5:8f:53:f5:cc:15:bb:38:dd:4b:03:f9:6c: 80:b1:46:79:af:00:10:d2:6b:88:ad:64:c2:8c:63: 3d:86:1d:18:b5:a3:b3:37:2e:59:05:24:2c:5a:10: 5d:8e:5a:3d:2a:0a:0e:c6:5c:d3:c0:0d:f4:70:c6: df:7c:c4:22:c1:86:74:e8:fb:94:68:31:a2:4a:75: 80:7f:66:00:0e:41:2e:f6:c9:be:aa:c6:c7:9d:45: 0c:90:a0:1c:18:bd:3b:7d:6a:4e:65:c1:58:3f:0b: 77:c7:ba:96:9a:c7:21:f9:f4:47:99:28:2d:d6:d6: a7:21:93:17:95:9e:d1:48:12:e4:fa:91:53:86:6b: 26:d8:0b:1f:39:8e:b3:cf:cb:9c:50:c5:f7:fe:9b: 0e:ae:c5:ad:d5:54:63:8a:6a:ac:8c:47:3d:df:f6: 71:ea:12:e0:a1:41:b5:d2:0f:b4:b7:c4:f9:c1:42: c0:6c:c6:3a:e2:91:8e:53:f5:89:37:28:d7:3d:f9: b7:c1:0c:8d:08:77:f4:e8:e2:31:9f:db:c4:71:e1: 1c:c2:a6:2f:18:af:74:59:a0:0f:78:a4:e1:98:ab: 26:1c:0f:97:5f:61:8c:49:11:2d:5f:9c:ae:10:9b: cf:0b:06:90:64:70:37:58:4c:0c:ba:0c:55:f7:c8: 32:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9C:22:AE:88:9E:CF:B8:0A:E5:14:3A:3C:F4:E9:CC:C9:66:FD:DC X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:68:8e:20:06:a6:05:38:95:fe:fc:1e:c7:1f:dc:96:a6:8d: 4c:2c:19:1c:39:6f:24:85:aa:b2:ef:64:51:a7:9e:dc:21:15: 3a:02:d8:8e:20:5d:68:38:a9:6a:da:90:b6:a9:de:bf:90:54: 1d:01:48:54:c7:8b:fd:69:bb:81:f4:88:96:3a:c4:01:a4:75: ab:98:6d:db:3a:7c:59:a2:ab:db:1b:e7:96:f2:1c:81:02:83: 6e:69:59:47:d1:b6:6c:92:14:f0:6d:8f:04:b5:7f:94:1f:4c: 13:26:d2:68:ac:bc:41:73:91:cc:cf:c5:d4:47:42:7b:70:20: 71:c8:c0:a1:82:f9:e0:4b:ef:c0:8f:ef:84:b2:52:90:e4:00: 82:04:db:5c:2e:9d:42:df:6d:cb:7d:f7:37:98:13:d4:c3:39: 2b:71:90:87:05:45:df:2e:9e:5f:de:bb:e4:3e:9b:4a:d2:52: 0a:73:a2:97:68:a7:50:23:5f:7d:aa:62:a4:c5:a6:a7:38:c2: c7:5a:e0:f2:1d:4c:b7:83:16:14:08:81:8f:62:e3:ac:1b:99: 96:db:ef:10:d1:bf:af:5b:25:6a:f6:22:3b:10:ac:8f:a5:d4: cb:52:e8:7a:df:8a:47:6b:ad:0d:0a:e8:6c:16:aa:1e:62:6b: 95:d2:a8:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjYwMzI1MDQyMTQxWhcNMjYwNDAxMDQyMTQxWjAYMRYwFAYD VQQDEw02OWMzNjJkNS1jZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+WPU/XMFbs43UsD+WyAsUZ5rwAQ0muIrWTCjGM9hh0YtaOzNy5ZBSQsWhBd jlo9KgoOxlzTwA30cMbffMQiwYZ06PuUaDGiSnWAf2YADkEu9sm+qsbHnUUMkKAc GL07fWpOZcFYPwt3x7qWmsch+fRHmSgt1tanIZMXlZ7RSBLk+pFThmsm2AsfOY6z z8ucUMX3/psOrsWt1VRjimqsjEc93/Zx6hLgoUG10g+0t8T5wULAbMY64pGOU/WJ NyjXPfm3wQyNCHf06OIxn9vEceEcwqYvGK90WaAPeKThmKsmHA+XX2GMSREtX5yu EJvPCwaQZHA3WEwMugxV98gyqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEmcIq6I ns+4CuUUOjz06czJZv3cMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe2iOIAamBTiV/vwexx/clqaNTCwZHDlvJIWqsu9kUaee3CEVOgLYjiBdaDip atqQtqnev5BUHQFIVMeL/Wm7gfSIljrEAaR1q5ht2zp8WaKr2xvnlvIcgQKDbmlZ R9G2bJIU8G2PBLV/lB9MEybSaKy8QXORzM/F1EdCe3AgccjAoYL54EvvwI/vhLJS kOQAggTbXC6dQt9ty333N5gT1MM5K3GQhwVF3y6eX9675D6bStJSCnOil2inUCNf fapipMWmpzjCx1rg8h1Mt4MWFAiBj2LjrBuZltvvENG/r1slavYiOxCsj6XUy1Lo et+KR2utDQrobBaqHmJrldKo6g== -----END CERTIFICATE-----Generated at Thu Mar 26 02:32:42 2026 by rpki-client