$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: RclUiPkJG71OfKVNf06UN9VMAka/zPpq3XVDq2n1rHw= Subject key identifier: F2:09:2B:97:71:81:52:27:C5:06:3D:23:6A:55:89:DE:FD:21:1F:BF Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: C0 Signing time: Sun 01 Mar 2026 08:20:17 +0000 Manifest this update: Sun 01 Mar 2026 08:20:17 +0000 Manifest next update: Sun 08 Mar 2026 08:20:17 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: yj15/W8qZanyNr+4DBRJmPHsxvpNhPR6ZC8bF7bW7nU=) 2: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: RGGyK8DspBxTZffeC/YcsDxozPm/op0sIdvWa7dUrhw=) 3: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: ACjymaT82Ts20I3seIpJ3qFJasSA4FVf/+MM9Q+0Im8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Mar 1 08:20:17 2026 GMT Not After : Mar 8 08:20:17 2026 GMT Subject: CN=69a3f6c1-d63e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f4:a3:ca:57:67:0f:37:9b:94:67:72:24:95: 6d:c4:0f:24:af:f8:f3:c7:c6:93:f1:84:27:3f:61: 41:6a:fe:ba:2b:c6:46:c0:74:86:dd:75:ad:e0:61: e9:f1:da:d2:37:c1:b3:ee:6e:bb:11:4f:6c:d7:03: f0:f3:0f:b1:48:a9:b5:09:81:25:b8:4e:3b:31:40: 69:0d:85:fb:a3:be:a2:db:26:1e:c6:39:b9:e0:2b: ad:4c:d5:b0:7c:4f:3b:5a:36:3f:23:1a:fe:4b:91: 1e:47:c9:9a:79:34:3a:1c:d0:d0:3d:0c:a5:86:23: 4a:9f:b4:c0:ae:28:15:f7:3f:6a:6f:d7:4a:4d:14: 0a:c5:ea:95:01:ec:cd:cb:03:9c:31:3f:ca:cf:e1: e4:d8:de:fa:c1:79:ce:3b:b4:52:61:ec:4a:1a:0c: b2:a5:1a:00:d3:d6:0c:2b:ff:59:37:a8:d7:55:b7: 14:b3:23:31:77:bf:e4:cf:2f:8e:b7:47:20:2f:ad: 1a:fe:61:eb:6d:3c:e2:8b:47:17:40:74:bc:04:86: 59:3a:6c:f4:f6:ae:50:77:d1:69:7a:36:6a:aa:5c: f6:3c:20:57:2a:b5:84:e6:14:bb:75:35:2e:44:f9: 4e:d1:a3:90:03:e0:b0:f6:8b:bd:c0:b9:c3:6a:f9: cc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:09:2B:97:71:81:52:27:C5:06:3D:23:6A:55:89:DE:FD:21:1F:BF X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:36:94:84:51:8b:11:ef:ad:03:53:59:3a:c9:43:5a:fc:c7: 11:e2:f5:2b:a6:d2:d5:7f:51:8b:d5:80:43:d8:28:b0:3b:df: 8c:cc:bc:5e:36:37:f6:0b:40:13:0f:11:6d:d8:dd:3b:52:14: 0b:34:2b:a0:6e:75:85:20:f8:58:55:6a:4c:f4:46:5d:3f:5a: 6d:6e:cd:ce:75:cd:ef:a8:03:7f:e6:86:56:e7:9a:ff:cf:03: 23:31:ff:5d:bc:10:ce:40:0b:14:4f:ee:97:0e:31:c6:c9:52: f0:9f:37:ce:1a:0b:1d:aa:2b:7f:c4:6c:0e:82:88:c1:43:b6: 3d:f1:96:fb:fa:df:8a:16:63:c2:97:18:d2:85:7d:7d:79:c3: 79:1c:34:c2:3b:4e:b4:ea:6c:56:6e:a8:b7:f0:25:7a:be:a9: 36:60:df:e2:78:59:c6:c6:3e:65:cc:c0:11:22:ed:30:b0:a2: 0c:95:80:fb:53:59:5b:8d:5f:60:bf:0c:9c:92:86:73:1c:c3: a7:38:57:c9:27:2c:88:6e:18:6f:0a:9c:80:8e:46:28:6f:9a: 21:81:85:c4:b4:ba:5a:f9:93:b6:54:52:ab:20:9d:b0:d2:71: ad:69:f1:36:cd:26:88:9e:e8:ac:41:31:f7:05:77:38:e4:85: 9b:95:13:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjYwMzAxMDgyMDE3WhcNMjYwMzA4MDgyMDE3WjAYMRYwFAYD VQQDEw02OWEzZjZjMS1kNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfSjyldnDzeblGdyJJVtxA8kr/jzx8aT8YQnP2FBav66K8ZGwHSG3XWt4GHp 8drSN8Gz7m67EU9s1wPw8w+xSKm1CYEluE47MUBpDYX7o76i2yYexjm54CutTNWw fE87WjY/Ixr+S5EeR8maeTQ6HNDQPQylhiNKn7TArigV9z9qb9dKTRQKxeqVAezN ywOcMT/Kz+Hk2N76wXnOO7RSYexKGgyypRoA09YMK/9ZN6jXVbcUsyMxd7/kzy+O t0cgL60a/mHrbTzii0cXQHS8BIZZOmz09q5Qd9FpejZqqlz2PCBXKrWE5hS7dTUu RPlO0aOQA+Cw9ou9wLnDavnMGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPIJK5dx gVInxQY9I2pVid79IR+/MB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARDaUhFGLEe+tA1NZOslDWvzHEeL1K6bS1X9Ri9WAQ9gosDvfjMy8XjY39gtA Ew8RbdjdO1IUCzQroG51hSD4WFVqTPRGXT9abW7NznXN76gDf+aGVuea/88DIzH/ XbwQzkALFE/ulw4xxslS8J83zhoLHaorf8RsDoKIwUO2PfGW+/rfihZjwpcY0oV9 fXnDeRw0wjtOtOpsVm6ot/Aler6pNmDf4nhZxsY+ZczAESLtMLCiDJWA+1NZW41f YL8MnJKGcxzDpzhXyScsiG4YbwqcgI5GKG+aIYGFxLS6WvmTtlRSqyCdsNJxrWnx Ns0miJ7orEEx9wV3OOSFm5UTyg== -----END CERTIFICATE-----Generated at Mon Mar 2 05:57:35 2026 by rpki-client