$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: Z70okmYXUvccbCy6Tr2kfDNoAlwffw0zGW5btUoOGQ0= Subject key identifier: B4:58:24:81:45:CD:AA:C9:FB:16:5F:C0:A9:6D:39:48:C9:F6:AF:62 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0C1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0C0D Signing time: Tue 24 Mar 2026 18:39:14 +0000 Manifest this update: Tue 24 Mar 2026 18:39:13 +0000 Manifest next update: Tue 31 Mar 2026 18:39:13 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: 2jOKaN4tHtjJ4hXlKm+x3hHAGe3JGY02KEj1EGMQtdc=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: FbKjiGyoYXtJ+Sip8tCWTgSCfHXUOeTdm95y0Shz3Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Mar 24 18:39:13 2026 GMT Not After : Mar 31 18:39:13 2026 GMT Subject: CN=69c2da51-4580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ba:08:c2:4f:ad:28:42:88:c2:7d:ec:87:2a: ea:0e:62:bb:f0:ad:f6:eb:3f:6e:32:04:cc:f5:0c: 71:fc:c8:04:99:b8:03:e5:bd:b3:03:bb:73:e5:20: f2:8f:fa:7e:80:db:6a:e5:8a:fa:ca:eb:94:17:8d: 30:81:0a:2d:02:70:67:ed:a4:ef:e5:9d:f3:b0:b8: a8:40:ce:77:24:c0:63:c1:5c:93:73:c6:1f:ba:45: fd:ff:37:3c:d8:1f:a8:b4:c0:7f:12:65:bd:bf:45: bb:1b:f0:45:3e:c6:11:af:13:8e:35:1c:c2:fc:f6: e4:d6:13:cd:60:9a:fd:28:e7:b2:a1:6d:cc:e1:85: b6:8b:6a:ce:f6:ef:5b:bb:2c:da:c9:d1:d0:1d:a6: 8a:a9:61:d2:09:bc:28:b1:71:5a:5f:26:da:ee:3e: fd:cf:00:e4:2b:f1:9b:31:42:26:7b:02:89:52:c2: 2d:59:1c:e4:68:05:fc:88:07:9c:f0:9c:25:ed:81: 4c:0f:7e:63:7a:36:61:df:33:9f:20:1f:e4:0a:32: 89:35:a1:01:d3:a9:ac:f4:36:b2:d9:54:5b:58:10: ed:b1:07:9b:fd:7b:b8:96:08:7f:0c:c5:fd:56:1b: 5a:36:ca:38:d8:b3:d0:1a:56:a0:9c:70:09:7e:74: 8d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:58:24:81:45:CD:AA:C9:FB:16:5F:C0:A9:6D:39:48:C9:F6:AF:62 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:9f:d3:e4:ff:38:86:16:d5:df:5a:78:ca:95:ba:22:40:2c: b4:de:58:2e:82:38:82:b8:9b:b0:f2:c7:00:f4:7f:ab:c1:b8: 10:8c:c4:dd:c3:6d:a3:c2:aa:55:c6:77:24:9d:57:ea:66:fd: d3:8f:9b:51:3b:51:72:5e:30:c4:ec:63:ea:db:9f:c0:24:fd: 51:99:7f:d1:64:95:e9:a0:2b:ba:20:ae:ac:ca:0b:77:6b:9c: a9:62:19:80:d2:9e:a2:d0:0e:f6:77:9b:92:b2:fc:aa:f2:62: cc:76:5f:c5:8d:0a:13:0b:e0:c5:50:c8:9c:d1:47:35:b3:82: df:c5:20:1d:3e:7d:93:ff:61:77:92:e5:6e:2a:de:c4:10:1b: 5c:98:11:93:2a:32:e8:3e:61:e0:ae:93:87:7f:9c:70:ab:89: c7:cd:82:24:21:72:4c:22:e9:7f:79:01:d7:a7:b1:86:02:4b: 5c:ad:fe:99:c2:2a:76:fb:0b:ce:1b:29:31:af:e2:f7:4b:d8: 93:bb:7f:92:c5:5d:ea:15:1b:ed:e7:02:b0:0e:38:18:fa:25: a6:f5:8b:29:15:61:79:68:cc:12:7e:83:46:54:18:fe:3f:ec: 06:8a:5a:66:45:67:d6:55:0d:eb:00:4f:46:9f:c7:37:65:64: d3:2a:7a:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjYwMzI0MTgzOTEzWhcNMjYwMzMxMTgzOTEzWjAYMRYwFAYD VQQDEw02OWMyZGE1MS00NTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3roIwk+tKEKIwn3shyrqDmK78K326z9uMgTM9Qxx/MgEmbgD5b2zA7tz5SDy j/p+gNtq5Yr6yuuUF40wgQotAnBn7aTv5Z3zsLioQM53JMBjwVyTc8YfukX9/zc8 2B+otMB/EmW9v0W7G/BFPsYRrxOONRzC/Pbk1hPNYJr9KOeyoW3M4YW2i2rO9u9b uyzaydHQHaaKqWHSCbwosXFaXyba7j79zwDkK/GbMUImewKJUsItWRzkaAX8iAec 8Jwl7YFMD35jejZh3zOfIB/kCjKJNaEB06ms9Day2VRbWBDtsQeb/Xu4lgh/DMX9 VhtaNso42LPQGlagnHAJfnSNOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLRYJIFF zarJ+xZfwKltOUjJ9q9iMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmp/T5P84hhbV31p4ypW6IkAstN5YLoI4gribsPLHAPR/q8G4EIzE3cNto8Kq VcZ3JJ1X6mb904+bUTtRcl4wxOxj6tufwCT9UZl/0WSV6aAruiCurMoLd2ucqWIZ gNKeotAO9nebkrL8qvJizHZfxY0KEwvgxVDInNFHNbOC38UgHT59k/9hd5Llbire xBAbXJgRkyoy6D5h4K6Th3+ccKuJx82CJCFyTCLpf3kB16exhgJLXK3+mcIqdvsL zhspMa/i90vYk7t/ksVd6hUb7ecCsA44GPolpvWLKRVheWjMEn6DRlQY/j/sBopa ZkVn1lUN6wBPRp/HN2Vk0yp6mw== -----END CERTIFICATE-----Generated at Thu Mar 26 19:46:43 2026 by rpki-client