$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft File: km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json) Hash identifier: uC/XCqP54k21TTK0VfdYHbO3AbKTdk+7JdRZG7QuI5Q= Subject key identifier: B9:75:08:83:F8:4F:FB:93:45:94:D5:4F:61:1F:18:2D:89:3E:6F:11 Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft Manifest number: 0249 Signing time: Wed 25 Mar 2026 01:54:42 +0000 Manifest this update: Wed 25 Mar 2026 01:54:41 +0000 Manifest next update: Wed 01 Apr 2026 01:54:41 +0000 Files and hashes: 1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: RyVN5DmPyNaNsRwaMn9j3YPDg6+cTXt/d9QnPIR47yA=) 2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: fY7nCOHqK93oVhC5DmscMwb888TwpZD1ZSvnmNHDxkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: Mar 25 01:54:41 2026 GMT Not After : Apr 1 01:54:41 2026 GMT Subject: CN=69c34062-8809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:79:a5:cb:93:57:22:d3:4d:f1:fa:4f:40:43: d2:c6:c6:75:a1:39:4a:d0:86:c7:0f:1d:95:f3:3c: 60:ff:6c:57:eb:f5:f2:98:b3:9c:b9:83:10:dc:25: 75:6d:42:47:94:02:72:c0:a6:1a:89:f4:7b:56:c2: f8:17:03:4c:b8:91:41:f4:4a:51:da:04:aa:7c:a6: f3:bd:c2:87:8a:d2:8d:50:26:a8:10:1b:95:1a:59: 6f:fc:d0:82:39:4d:a5:29:4e:62:3d:74:ba:6c:b6: 88:51:ed:0f:59:d1:63:26:96:c1:f1:79:3f:78:4a: 0a:a1:cf:ca:be:6c:be:8e:39:b4:19:4e:ca:7e:22: c6:49:5f:9a:ad:ae:83:6c:93:0b:c0:58:6c:96:3a: fe:96:43:5a:f8:10:93:f1:26:6e:a4:15:b8:27:cf: 08:00:bc:f8:03:ef:99:5e:cb:64:0b:da:25:a5:06: 35:4a:42:3b:86:1c:68:96:0a:9f:12:18:a3:bc:fe: c8:0d:14:d1:61:81:0a:be:ec:17:be:ad:bd:2d:aa: c5:db:91:00:3a:87:f1:f4:72:f6:69:51:33:63:9a: 40:f8:8e:dd:cc:0c:a1:81:41:d5:55:e7:df:a8:99: 8e:e1:e2:14:6c:c0:13:3e:7f:5d:c7:69:55:45:e9: 85:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:75:08:83:F8:4F:FB:93:45:94:D5:4F:61:1F:18:2D:89:3E:6F:11 X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:d9:7f:4a:b4:60:9f:97:30:9c:68:bf:27:a2:c1:79:54:fc: 41:3d:d2:cf:66:61:be:c6:e8:4d:ca:1f:b2:bf:35:95:a4:4d: d0:d2:f1:8f:ea:a8:b5:12:c1:0d:3e:00:eb:46:b6:ee:dd:64: ec:3c:5f:80:e2:91:cd:2f:16:20:11:4d:87:6d:5c:8d:00:2b: 15:8b:97:d3:e7:de:ed:16:19:0d:39:02:d1:92:e7:0d:d8:65: d9:d3:fc:6c:b6:f8:71:46:c4:6f:2a:c6:70:aa:be:4f:6b:f1: 70:c2:60:7f:ad:d7:6c:f1:54:e6:b6:ae:13:ca:66:a4:97:bb: 4a:37:fe:9e:07:8f:cc:f0:a1:24:7e:66:c5:d2:41:37:21:a4: 66:1d:41:3b:fe:82:17:50:be:9d:6b:eb:77:84:a0:44:02:1a: c6:48:b5:b7:c3:38:38:fa:66:9c:58:75:ac:b3:03:d0:53:84: 7d:2e:1b:8f:66:89:93:cd:04:a5:11:32:12:41:13:05:84:c1: be:65:90:54:a0:0d:a6:80:af:36:de:44:0d:d2:d8:ca:a4:1f: 0d:f2:5b:dc:ad:54:b5:fb:6c:65:9f:7b:d9:a4:8c:b0:15:91: 7b:58:5e:b5:91:ed:26:91:63:0d:38:22:0c:a3:4b:73:1b:32: cd:13:65:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjYwMzI1MDE1NDQxWhcNMjYwNDAxMDE1NDQxWjAYMRYwFAYD VQQDEw02OWMzNDA2Mi04ODA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Hmly5NXItNN8fpPQEPSxsZ1oTlK0IbHDx2V8zxg/2xX6/XymLOcuYMQ3CV1 bUJHlAJywKYaifR7VsL4FwNMuJFB9EpR2gSqfKbzvcKHitKNUCaoEBuVGllv/NCC OU2lKU5iPXS6bLaIUe0PWdFjJpbB8Xk/eEoKoc/Kvmy+jjm0GU7KfiLGSV+ara6D bJMLwFhsljr+lkNa+BCT8SZupBW4J88IALz4A++ZXstkC9olpQY1SkI7hhxolgqf EhijvP7IDRTRYYEKvuwXvq29LarF25EAOofx9HL2aVEzY5pA+I7dzAyhgUHVVeff qJmO4eIUbMATPn9dx2lVRemFIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLl1CIP4 T/uTRZTVT2EfGC2JPm8RMB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkEwRS9EQkJFRDIwNkMwMDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5 ZGx1MEVpY29EQjhSaEc3aGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsdl/SrRgn5cwnGi/J6LBeVT8QT3Sz2ZhvsboTcofsr81laRN0NLxj+qotRLB DT4A60a27t1k7DxfgOKRzS8WIBFNh21cjQArFYuX0+fe7RYZDTkC0ZLnDdhl2dP8 bLb4cUbEbyrGcKq+T2vxcMJgf63XbPFU5rauE8pmpJe7Sjf+ngePzPChJH5mxdJB NyGkZh1BO/6CF1C+nWvrd4SgRAIaxki1t8M4OPpmnFh1rLMD0FOEfS4bj2aJk80E pREyEkETBYTBvmWQVKANpoCvNt5EDdLYyqQfDfJb3K1UtftsZZ972aSMsBWRe1he tZHtJpFjDTgiDKNLcxsyzRNlYg== -----END CERTIFICATE-----Generated at Thu Mar 26 05:14:26 2026 by rpki-client