$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: WdaPg9KY1Kygj+gcPbd3+RpudaDDmgzBvSfbq00XK50= Subject key identifier: B7:38:52:E9:1E:ED:0B:F8:11:D0:E9:CA:E8:86:6E:84:D5:AE:03:DF Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 13B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 13AE Signing time: Mon 02 Mar 2026 02:43:29 +0000 Manifest this update: Mon 02 Mar 2026 02:43:28 +0000 Manifest next update: Mon 09 Mar 2026 02:43:28 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: jAXGahnDGpJRNcZ1MvKWZgl/Fup35NYlEBvYh7i7p9U=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: RPjXeL3Zl8P6QkaRaUeCd76+wyQHC30Y9Dr1jaF8lPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5049 (0x13b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Mar 2 02:43:28 2026 GMT Not After : Mar 9 02:43:28 2026 GMT Subject: CN=69a4f951-00c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c2:37:69:1e:01:74:0d:81:86:53:61:1f:cf: c6:6d:16:1c:6c:32:c6:17:50:00:e3:bb:d3:05:99: 16:20:81:9c:94:81:87:51:2c:ed:35:70:f3:05:7d: 2e:7d:67:e9:9e:b4:b5:a4:6d:61:9e:bd:70:74:b8: 83:1c:0c:a7:71:9f:88:fc:78:f2:82:f8:85:78:78: c1:b5:3c:f2:ba:d3:97:ad:e6:c1:f9:43:c6:94:b3: ff:11:56:ce:e8:04:d3:73:7b:0d:b6:3e:11:fd:32: d8:df:db:a8:ee:4f:1f:57:0f:ea:a9:5e:fd:3c:ed: 80:3c:55:24:97:1a:62:41:18:3e:53:87:f5:21:1e: 19:ec:58:53:7e:31:cb:d1:d9:f3:bd:94:8b:c9:b6: 1b:14:83:44:3d:db:e9:f7:37:23:4b:c6:43:97:c8: 8d:7d:7b:c3:db:45:b2:4d:40:8e:17:13:28:47:61: 9c:fe:fe:2a:34:d1:da:24:d1:5e:19:36:a3:af:93: c5:42:e7:41:b4:88:c4:70:d4:ca:b7:8b:4c:58:86: ad:a8:db:8f:51:6b:98:51:03:6b:4f:b8:a7:b8:8b: 73:df:5f:e2:47:1d:ed:29:a0:a3:e9:e6:f6:ba:06: 04:4c:e9:bd:19:45:9d:ba:80:3a:a4:e1:9a:a2:df: 28:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:38:52:E9:1E:ED:0B:F8:11:D0:E9:CA:E8:86:6E:84:D5:AE:03:DF X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:0d:8b:3c:b9:48:ff:c5:02:e9:6a:42:5e:d2:68:3a:6d:19: 7a:c6:e5:ec:c5:db:13:74:e7:84:ff:5a:57:97:af:1f:82:8e: e2:b4:df:65:f9:34:db:d6:d1:4c:5e:07:d7:85:01:a4:ae:b2: ab:ff:52:67:77:01:46:2a:3e:c0:f0:6b:e3:41:c0:b1:73:a8: a7:ee:ad:bb:ac:d3:12:9c:c7:94:f4:d1:80:62:4e:b6:84:8b: b8:32:50:f6:63:79:4b:88:04:00:6f:be:c4:c9:51:6c:0f:0b: 24:4b:ec:6d:79:ca:74:54:d0:fc:e0:63:aa:1f:a4:bc:47:77: e4:61:24:9d:a1:ef:33:a2:6c:56:b3:fa:e2:97:73:68:1a:47: a9:13:f0:fa:f0:54:7d:91:01:1b:90:b6:d2:59:43:43:f4:90: 72:85:cb:05:3c:92:85:ae:04:be:cc:82:80:35:a9:10:8c:aa: 18:e2:f2:ea:ac:bd:d6:54:39:4e:27:62:6a:4b:81:61:22:f7: be:f1:08:ab:a3:81:07:37:cf:57:64:1b:a4:99:c5:16:5b:13: e9:93:5d:d0:ba:2a:17:27:92:e9:11:66:f4:7f:9b:11:01:59: a3:f1:22:45:22:a2:00:34:d4:9c:32:ad:46:30:56:d0:6a:e8: 58:f4:0f:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjYwMzAyMDI0MzI4WhcNMjYwMzA5MDI0MzI4WjAYMRYwFAYD VQQDEw02OWE0Zjk1MS0wMGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncI3aR4BdA2BhlNhH8/GbRYcbDLGF1AA47vTBZkWIIGclIGHUSztNXDzBX0u fWfpnrS1pG1hnr1wdLiDHAyncZ+I/HjygviFeHjBtTzyutOXrebB+UPGlLP/EVbO 6ATTc3sNtj4R/TLY39uo7k8fVw/qqV79PO2APFUklxpiQRg+U4f1IR4Z7FhTfjHL 0dnzvZSLybYbFINEPdvp9zcjS8ZDl8iNfXvD20WyTUCOFxMoR2Gc/v4qNNHaJNFe GTajr5PFQudBtIjEcNTKt4tMWIatqNuPUWuYUQNrT7inuItz31/iRx3tKaCj6eb2 ugYETOm9GUWduoA6pOGaot8o+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLc4Uuke 7Qv4EdDpyuiGboTVrgPfMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJg2LPLlI/8UC6WpCXtJoOm0Zesbl7MXbE3TnhP9aV5evH4KO4rTfZfk029bR TF4H14UBpK6yq/9SZ3cBRio+wPBr40HAsXOop+6tu6zTEpzHlPTRgGJOtoSLuDJQ 9mN5S4gEAG++xMlRbA8LJEvsbXnKdFTQ/OBjqh+kvEd35GEknaHvM6JsVrP64pdz aBpHqRPw+vBUfZEBG5C20llDQ/SQcoXLBTySha4EvsyCgDWpEIyqGOLy6qy91lQ5 TidiakuBYSL3vvEIq6OBBzfPV2QbpJnFFlsT6ZNd0LoqFyeS6RFm9H+bEQFZo/Ei RSKiADTUnDKtRjBW0GroWPQPLg== -----END CERTIFICATE-----Generated at Mon Mar 2 16:53:10 2026 by rpki-client