$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: mHANtI/N2V8CUqjg8/+sSlZYcZk0AlIyMKwVWao6B/0= Subject key identifier: A9:E2:C3:E9:32:E0:0A:67:94:2F:EE:D5:92:E4:03:A6:E6:ED:D4:D0 Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0AA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A9D Signing time: Sat 28 Feb 2026 19:45:42 +0000 Manifest this update: Sat 28 Feb 2026 19:45:42 +0000 Manifest next update: Sat 07 Mar 2026 19:45:42 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: R5Y9u/8HfUR44WIfNAYwXus3ibQIXui9RFRTlrPRLQo=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: OgrtZob9BenmszWmMepyuR4+jTnWhH21Nc4ELG9DAkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2725 (0xaa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Feb 28 19:45:42 2026 GMT Not After : Mar 7 19:45:42 2026 GMT Subject: CN=69a345e6-6ddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dc:da:c6:0b:ae:2e:87:4f:35:97:69:8c:8d: 06:47:e9:1f:9d:57:55:b8:6c:0d:3c:b5:71:62:06: 98:e7:68:d9:f6:75:24:d9:3e:8c:b1:ad:b0:78:7d: 0c:98:cf:a3:c5:f2:43:27:00:c2:58:ee:9e:5a:95: c3:14:bc:27:62:07:db:46:fe:94:6e:24:8d:8b:c2: c1:14:41:01:b5:8a:b6:36:e6:ea:fd:d5:59:c7:c5: 9a:65:b5:21:e0:6b:e3:c9:8f:c2:e6:07:74:a7:e8: 2e:e8:22:73:49:d6:b1:fa:19:11:e1:28:ce:4a:a2: 2e:80:a7:20:36:08:a6:f4:80:6e:33:15:71:31:42: 76:6c:5e:74:d8:aa:fc:cf:46:12:ba:6e:f1:ba:6c: 3b:7e:0f:ff:c0:76:eb:35:0e:f0:f4:44:4d:69:6a: 40:56:e0:47:04:36:98:65:e0:b0:e5:be:9e:d0:1c: 83:63:e3:3e:d2:a7:47:3b:46:ee:c2:51:0c:13:89: ab:9c:b7:c5:ad:6f:fb:73:11:11:05:40:73:00:7f: 9a:66:0a:ab:5b:a8:9c:ee:f6:ea:a2:ac:9a:cb:e1: 7c:c0:04:e5:38:97:f2:f3:65:6d:b3:2b:bb:37:6a: ff:7e:25:8d:9c:6e:37:52:58:93:2c:46:29:da:4b: 19:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E2:C3:E9:32:E0:0A:67:94:2F:EE:D5:92:E4:03:A6:E6:ED:D4:D0 X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:28:28:80:6b:fe:c1:13:23:f2:c2:46:7f:fd:3b:54:7e:99: 81:fa:4b:55:09:ee:da:14:6a:2b:9c:ef:57:0d:65:96:9c:73: db:bf:38:8b:e4:0e:19:c9:a1:59:88:cd:09:91:66:01:61:8a: af:2b:ce:e1:67:fd:69:bc:d9:75:0e:e3:6c:ae:7b:6a:b9:66: 2f:8b:b2:92:c7:f6:2c:ac:12:4f:d2:75:f0:4c:f5:04:d5:84: 86:ad:7d:f0:15:f4:3e:00:87:20:0a:54:2c:e1:b5:e0:34:19: e7:65:0c:cb:16:6f:0a:0d:ce:cc:da:be:5c:fc:5a:15:78:ee: b2:c2:70:11:4d:e7:68:1c:79:79:35:5e:6d:21:64:6e:b2:b8: cb:cc:0c:04:02:12:10:d0:ad:7c:99:57:4f:52:2f:24:73:aa: a4:8e:ff:a4:11:ba:f7:ee:51:ca:50:ce:26:04:af:00:2c:34: c0:6b:7e:fd:81:22:ab:9d:59:1c:df:0f:74:3e:8b:3b:ad:e0: 37:4a:ac:be:57:11:bd:f0:e5:be:df:fc:dc:86:ac:53:b0:4f: 20:69:7d:ef:88:8d:66:43:80:65:7f:13:4c:a1:e1:95:34:fd: bf:c9:93:e2:e6:bf:cc:8a:a8:70:59:68:cc:c2:51:69:a7:d9: 72:4c:95:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjYwMjI4MTk0NTQyWhcNMjYwMzA3MTk0NTQyWjAYMRYwFAYD VQQDDA02OWEzNDVlNi02ZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9zaxguuLodPNZdpjI0GR+kfnVdVuGwNPLVxYgaY52jZ9nUk2T6Msa2weH0M mM+jxfJDJwDCWO6eWpXDFLwnYgfbRv6UbiSNi8LBFEEBtYq2Nubq/dVZx8WaZbUh 4GvjyY/C5gd0p+gu6CJzSdax+hkR4SjOSqIugKcgNgim9IBuMxVxMUJ2bF502Kr8 z0YSum7xumw7fg//wHbrNQ7w9ERNaWpAVuBHBDaYZeCw5b6e0ByDY+M+0qdHO0bu wlEME4mrnLfFrW/7cxERBUBzAH+aZgqrW6ic7vbqoqyay+F8wATlOJfy82Vtsyu7 N2r/fiWNnG43UliTLEYp2ksZWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKniw+ky 4ApnlC/u1ZLkA6bm7dTQMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArygogGv+wRMj8sJGf/07VH6ZgfpLVQnu2hRqK5zvVw1llpxz2784i+QOGcmh WYjNCZFmAWGKryvO4Wf9abzZdQ7jbK57arlmL4uyksf2LKwST9J18Ez1BNWEhq19 8BX0PgCHIApULOG14DQZ52UMyxZvCg3OzNq+XPxaFXjussJwEU3naBx5eTVebSFk brK4y8wMBAISENCtfJlXT1IvJHOqpI7/pBG69+5RylDOJgSvACw0wGt+/YEiq51Z HN8PdD6LO63gN0qsvlcRvfDlvt/83IasU7BPIGl974iNZkOAZX8TTKHhlTT9v8mT 4ua/zIqocFlozMJRaafZckyVZw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:03:14 2026 by rpki-client