$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: xqo7yEAb7PDktn+2lmJd0Wh19RkjeqJhE+WkdWSw1vc= Subject key identifier: 1F:A5:11:34:08:1E:82:D9:1B:3B:FA:D6:55:26:33:65:5E:7C:F7:35 Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 02CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 02C9 Signing time: Sun 01 Mar 2026 02:15:13 +0000 Manifest this update: Sun 01 Mar 2026 02:15:12 +0000 Manifest next update: Sun 08 Mar 2026 02:15:12 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: HkvY08B5qBFyzMrl/+xjarMhbL82B2pGAR7CwR8Vj3g=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: wBqvUEdJXS+W4twJcgw0kDbGssoYll+0BYZGvLl67rM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Mar 1 02:15:12 2026 GMT Not After : Mar 8 02:15:12 2026 GMT Subject: CN=69a3a130-57c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9a:2a:37:1f:45:a2:df:56:bf:a0:e6:6a:55: 69:38:fa:d9:cd:e3:fe:b7:cf:60:20:49:a9:12:50: 38:89:d6:ba:21:32:e2:2a:98:6c:21:80:fb:9d:95: b1:36:42:79:38:56:c6:79:bf:fa:e9:73:ae:29:81: 80:7a:70:91:08:a9:0c:65:d8:e7:50:47:c2:a3:d5: 33:67:4a:03:4f:bd:1f:69:04:f1:39:00:80:e4:6d: 51:d5:af:89:a8:2e:1a:75:3d:09:0f:1a:c4:94:13: 7c:d7:a9:82:53:61:4d:5f:1f:f2:1e:0b:0e:45:1c: c4:53:04:73:39:68:e2:c0:e5:a9:66:58:8a:80:b6: 13:4f:5d:e9:e4:e6:3e:0c:60:b7:2d:0b:d8:93:e5: 90:ec:4f:b0:47:84:fe:a2:bc:48:84:68:7d:06:54: a3:9b:31:9b:4b:34:67:09:b6:92:ef:05:d2:be:f6: ec:6d:ab:f4:e3:d3:c8:f6:61:ed:50:20:4b:f4:de: 1d:9b:19:5f:83:e1:7a:ca:ce:71:65:9d:be:b5:5c: 51:dc:c1:61:82:c5:ad:ab:08:f8:86:58:9f:77:7b: ef:44:72:50:0d:c7:cd:f9:94:00:4c:e1:4d:18:34: 15:d5:aa:be:8f:3f:43:21:d4:5a:e2:ef:ce:9e:c5: 8b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A5:11:34:08:1E:82:D9:1B:3B:FA:D6:55:26:33:65:5E:7C:F7:35 X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:6f:7b:66:3b:da:ed:dd:0e:ee:ae:00:80:da:dc:65:83:93: d3:f6:8b:34:d6:ac:14:3d:31:c9:01:73:84:f1:65:1a:32:c8: 5d:36:e7:9d:e2:c7:27:b3:9d:2b:aa:83:62:16:03:f6:41:bb: 2e:81:9c:39:7d:2e:27:42:af:7f:d1:00:18:14:b8:ab:8a:88: 1c:ac:b3:ec:79:54:49:dd:2d:3f:9e:c2:bf:03:e7:b3:58:aa: 1b:09:2f:b2:5b:b2:20:8f:42:b0:10:3a:67:73:69:61:d1:9c: e9:45:72:88:67:f9:39:8f:12:fe:89:df:51:67:de:16:57:ef: cd:9a:91:40:cf:f2:1c:01:dd:b3:cb:bc:70:d4:80:7d:1d:2f: 7d:f0:79:32:b4:fa:b8:0a:63:d1:9d:b1:e3:64:29:7c:d6:90: 71:29:84:ea:42:f9:98:68:bc:fc:a1:ba:e8:61:d7:fc:9a:4e: 83:10:06:e6:87:9c:56:70:f2:9f:05:60:6e:a6:fd:d0:d4:a0: 46:7a:14:66:1d:af:28:ac:68:dd:c7:62:37:f2:a2:c8:1f:76: 56:9a:98:43:bb:5c:7b:d9:f8:c8:e1:b5:3d:6a:91:3f:27:9b: 0a:af:d6:4b:00:75:dd:0c:a1:ec:54:b7:97:e1:79:08:f3:36: ae:76:20:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjYwMzAxMDIxNTEyWhcNMjYwMzA4MDIxNTEyWjAYMRYwFAYD VQQDDA02OWEzYTEzMC01N2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZoqNx9Fot9Wv6DmalVpOPrZzeP+t89gIEmpElA4ida6ITLiKphsIYD7nZWx NkJ5OFbGeb/66XOuKYGAenCRCKkMZdjnUEfCo9UzZ0oDT70faQTxOQCA5G1R1a+J qC4adT0JDxrElBN816mCU2FNXx/yHgsORRzEUwRzOWjiwOWpZliKgLYTT13p5OY+ DGC3LQvYk+WQ7E+wR4T+orxIhGh9BlSjmzGbSzRnCbaS7wXSvvbsbav049PI9mHt UCBL9N4dmxlfg+F6ys5xZZ2+tVxR3MFhgsWtqwj4hlifd3vvRHJQDcfN+ZQATOFN GDQV1aq+jz9DIdRa4u/OnsWLpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB+lETQI HoLZGzv61lUmM2VefPc1MB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPm97Zjva7d0O7q4AgNrcZYOT0/aLNNasFD0xyQFzhPFlGjLIXTbnneLHJ7Od K6qDYhYD9kG7LoGcOX0uJ0Kvf9EAGBS4q4qIHKyz7HlUSd0tP57CvwPns1iqGwkv sluyII9CsBA6Z3NpYdGc6UVyiGf5OY8S/onfUWfeFlfvzZqRQM/yHAHds8u8cNSA fR0vffB5MrT6uApj0Z2x42QpfNaQcSmE6kL5mGi8/KG66GHX/JpOgxAG5oecVnDy nwVgbqb90NSgRnoUZh2vKKxo3cdiN/KiyB92VpqYQ7tce9n4yOG1PWqRPyebCq/W SwB13Qyh7FS3l+F5CPM2rnYgWQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:34:49 2026 by rpki-client