$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: Eg7JxST/NjOlw0Ef97M5TNWLtuIHsm2Ljdic+ikXP5o= Subject key identifier: 99:18:3C:49:82:15:C1:0C:CE:F5:46:99:B7:BA:16:33:67:84:C5:80 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 0127 Signing time: Sun 01 Mar 2026 06:37:05 +0000 Manifest this update: Sun 01 Mar 2026 06:37:05 +0000 Manifest next update: Sun 08 Mar 2026 06:37:05 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: gQdsGUzPjHCYGqFhkWyMtUuqopy4tzE0BqqA0fniPjM=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Mar 1 06:37:05 2026 GMT Not After : Mar 8 06:37:05 2026 GMT Subject: CN=69a3de91-9ae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dd:7a:5c:75:d8:fe:f9:52:c8:5b:ea:a4:7f: c9:68:82:81:79:f2:39:7e:1d:11:2a:05:53:2d:d6: 3d:bd:72:30:b8:98:56:df:82:46:78:c6:be:7a:1e: 2a:30:3d:bd:34:78:54:31:71:13:8c:66:46:cf:b3: d1:a2:d4:40:a3:ea:db:50:09:d7:4c:c5:49:a1:65: 66:61:ba:5f:ac:41:60:42:c1:6b:ac:95:ba:4d:6b: c9:01:02:b7:ed:4d:5d:ae:4c:6a:5a:97:e5:b0:62: d5:d8:58:7c:ce:0d:9f:fd:1c:12:a3:28:2d:20:0a: 0e:5b:25:05:53:c4:83:2c:16:02:20:da:45:39:7e: a1:a1:4c:20:e8:2a:71:6a:13:89:a8:a3:51:b6:65: 66:88:93:f4:50:b7:a2:2e:2a:da:38:b8:85:94:18: 0d:92:ff:a1:b8:97:70:69:c9:db:7b:1f:ad:59:31: c5:05:b6:5f:6c:b6:71:be:d8:20:44:e4:88:e1:a7: 69:ac:be:78:c4:9a:b5:39:ae:19:62:57:ae:46:f3: 8c:dd:4d:12:27:67:89:2f:c5:15:31:12:31:74:7b: 43:b0:e5:c1:63:55:56:bc:56:a8:e5:74:6c:93:97: fe:33:8a:72:ae:20:ca:dc:79:2f:4c:d7:7b:f7:97: 55:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:18:3C:49:82:15:C1:0C:CE:F5:46:99:B7:BA:16:33:67:84:C5:80 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:4f:60:2c:9f:49:6f:20:a8:a5:be:19:fe:2e:2c:f7:19:e8: 40:8f:07:a9:fb:9f:03:59:61:2a:4f:24:38:7a:c1:26:ff:f6: 6f:a8:d2:75:2c:84:73:3e:97:e7:2b:d7:3b:bd:cf:33:01:da: f5:a4:99:6b:e6:ac:f0:cd:db:ec:9a:2a:29:72:14:08:77:bb: b7:0e:b7:88:33:31:d4:fa:b8:5a:43:0d:fd:27:48:21:a7:c7: 49:17:4d:ae:4f:14:98:a6:89:17:2a:31:2f:60:95:86:32:5e: c2:93:12:6f:af:d0:71:b4:7d:a6:a3:03:90:80:ed:63:8c:da: 08:53:e5:20:dd:ab:e5:ec:3f:2d:cc:94:54:31:2a:ba:c0:92: 41:aa:2c:60:17:87:0c:9d:48:61:e1:fe:ca:72:31:f1:44:0c: 20:8a:51:59:b1:e4:a4:5f:f2:a5:fe:44:cf:22:cf:d7:c5:a7: a0:76:9c:68:73:49:fe:62:9a:e2:c5:e4:1a:cb:93:4b:97:6f: 8f:f8:1e:e1:a7:b5:9f:1a:89:ed:60:25:96:4e:db:53:82:81: 4a:89:3e:bd:6f:ab:c6:eb:7a:2c:d5:de:cc:4d:8e:67:ef:1c: 4c:f3:3c:1f:db:12:93:84:a3:2c:a3:b4:34:84:0d:9e:72:c6: 29:11:ec:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjYwMzAxMDYzNzA1WhcNMjYwMzA4MDYzNzA1WjAYMRYwFAYD VQQDEw02OWEzZGU5MS05YWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs916XHXY/vlSyFvqpH/JaIKBefI5fh0RKgVTLdY9vXIwuJhW34JGeMa+eh4q MD29NHhUMXETjGZGz7PRotRAo+rbUAnXTMVJoWVmYbpfrEFgQsFrrJW6TWvJAQK3 7U1drkxqWpflsGLV2Fh8zg2f/RwSoygtIAoOWyUFU8SDLBYCINpFOX6hoUwg6Cpx ahOJqKNRtmVmiJP0ULeiLiraOLiFlBgNkv+huJdwacnbex+tWTHFBbZfbLZxvtgg ROSI4adprL54xJq1Oa4ZYleuRvOM3U0SJ2eJL8UVMRIxdHtDsOXBY1VWvFao5XRs k5f+M4pyriDK3HkvTNd795dV5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJkYPEmC FcEMzvVGmbe6FjNnhMWAMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnE9gLJ9JbyCopb4Z/i4s9xnoQI8HqfufA1lhKk8kOHrBJv/2b6jSdSyEcz6X 5yvXO73PMwHa9aSZa+as8M3b7JoqKXIUCHe7tw63iDMx1Pq4WkMN/SdIIafHSRdN rk8UmKaJFyoxL2CVhjJewpMSb6/QcbR9pqMDkIDtY4zaCFPlIN2r5ew/LcyUVDEq usCSQaosYBeHDJ1IYeH+ynIx8UQMIIpRWbHkpF/ypf5EzyLP18WnoHacaHNJ/mKa 4sXkGsuTS5dvj/ge4ae1nxqJ7WAllk7bU4KBSok+vW+rxut6LNXezE2OZ+8cTPM8 H9sSk4SjLKO0NIQNnnLGKRHs4g== -----END CERTIFICATE-----Generated at Sun Mar 1 20:25:30 2026 by rpki-client