$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: 4HzaClTam00848o0HxhGVhu0oWMJNMto7I4Go8A053Q= Subject key identifier: 7A:CB:96:CC:1A:A6:AE:D8:1A:76:9A:8C:43:70:95:A0:4A:65:1C:09 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 3522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 351A Signing time: Sun 01 Mar 2026 22:24:22 +0000 Manifest this update: Sun 01 Mar 2026 22:24:21 +0000 Manifest next update: Sun 08 Mar 2026 22:24:21 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: oJZ8SR1GE9jZkWQnGfMhKqdnXPasYyqYTuMPM4pNlhc=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: H75vp8KnVCyEkBU2ciSVAYWnVqr6J6YZvmHhlQG4SNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Mar 1 22:24:21 2026 GMT Not After : Mar 8 22:24:21 2026 GMT Subject: CN=69a4bc95-278e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c9:7b:d3:0a:05:c6:1d:a3:4a:76:47:95:56: 8f:59:58:a5:48:9f:f8:56:cb:24:15:63:dc:cf:59: 7c:ca:5f:ee:75:3f:c5:25:e5:6e:b6:0b:72:da:26: da:cf:84:c7:d4:01:41:bb:c3:2c:68:04:5c:b2:18: cf:ca:d7:08:f6:67:c4:12:5b:3e:7e:d1:38:ec:c0: 5f:2e:be:1f:b5:ea:1e:b4:1d:8c:c8:17:be:cc:c0: ac:19:b0:c6:c2:a3:29:1a:53:f0:bf:7b:61:9f:51: 22:a4:9f:b5:8f:72:26:6c:fc:00:db:59:8c:ab:bc: 33:13:02:64:8e:11:af:3f:ea:48:04:66:58:6b:2f: 2e:da:70:21:51:ba:1c:92:65:cd:4f:c0:76:cd:9f: 80:ec:af:54:40:40:10:6d:d1:d0:29:5f:79:26:a4: 9c:e9:4c:1b:13:67:17:9a:96:3e:e5:25:6f:33:af: 6c:f8:af:76:ce:4b:07:b3:13:56:38:a6:1a:4e:7d: f1:f0:47:24:48:d9:ed:63:35:4f:9d:1d:e5:d7:ef: f0:e9:1b:a4:09:ee:71:17:e2:9e:ec:ce:69:8d:85: 96:fb:f2:96:5f:2e:87:12:b1:fa:7b:25:6d:62:bd: c8:ab:18:a8:d9:22:86:1b:54:a1:1b:a0:0d:31:44: 6e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:CB:96:CC:1A:A6:AE:D8:1A:76:9A:8C:43:70:95:A0:4A:65:1C:09 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:29:16:47:7f:75:a6:d1:60:8d:61:78:74:06:b0:10:36:16: 69:1a:0f:7b:55:6b:30:60:6b:8c:61:26:15:ec:14:27:d7:68: 72:be:1b:ba:52:be:27:06:41:3b:c1:88:7d:64:e5:0c:c5:d2: af:87:f1:5d:fb:b1:b9:f9:e6:85:f8:9a:6a:7f:83:30:49:2d: 19:5d:2a:71:f9:2a:44:85:82:23:ab:73:0c:d1:0b:f2:9d:6a: 74:41:74:5c:e8:aa:6c:e2:a3:31:91:08:96:4c:42:13:61:8f: 7d:e8:9e:91:ad:f5:9d:22:89:58:0e:ab:9d:17:6d:c9:2f:b1: d9:11:df:8c:00:bc:8f:ec:d8:e7:b8:a5:c4:c9:ae:82:a9:46: 28:eb:f7:7a:c7:b0:cb:a7:da:f7:f8:43:dd:ad:72:08:c7:9e: 1d:e5:d2:ae:6e:e6:39:5d:9c:be:32:7c:15:9f:d3:67:a9:40: c3:31:39:b8:c9:f6:5d:10:38:3e:89:b5:5f:3a:3a:15:fd:d8: 14:8a:8b:eb:78:ac:86:2f:5b:65:7f:d7:c5:02:6c:27:86:6f: cc:6d:9c:10:c8:ff:17:57:4b:9f:4a:a6:74:0e:7d:3b:ae:cb: 59:33:af:83:2d:77:e6:0b:d9:de:05:d6:d8:25:b0:d2:cf:8e: 4e:4c:c6:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjYwMzAxMjIyNDIxWhcNMjYwMzA4MjIyNDIxWjAYMRYwFAYD VQQDEw02OWE0YmM5NS0yNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8l70woFxh2jSnZHlVaPWVilSJ/4VsskFWPcz1l8yl/udT/FJeVutgty2iba z4TH1AFBu8MsaARcshjPytcI9mfEEls+ftE47MBfLr4fteoetB2MyBe+zMCsGbDG wqMpGlPwv3thn1EipJ+1j3ImbPwA21mMq7wzEwJkjhGvP+pIBGZYay8u2nAhUboc kmXNT8B2zZ+A7K9UQEAQbdHQKV95JqSc6UwbE2cXmpY+5SVvM69s+K92zksHsxNW OKYaTn3x8EckSNntYzVPnR3l1+/w6RukCe5xF+Ke7M5pjYWW+/KWXy6HErH6eyVt Yr3Iqxio2SKGG1ShG6ANMURu3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHrLlswa pq7YGnaajENwlaBKZRwJMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAESkWR391ptFgjWF4dAawEDYWaRoPe1VrMGBrjGEmFewUJ9docr4bulK+JwZB O8GIfWTlDMXSr4fxXfuxufnmhfiaan+DMEktGV0qcfkqRIWCI6tzDNEL8p1qdEF0 XOiqbOKjMZEIlkxCE2GPfeieka31nSKJWA6rnRdtyS+x2RHfjAC8j+zY57ilxMmu gqlGKOv3esewy6fa9/hD3a1yCMeeHeXSrm7mOV2cvjJ8FZ/TZ6lAwzE5uMn2XRA4 Pom1Xzo6Ff3YFIqL63ishi9bZX/XxQJsJ4ZvzG2cEMj/F1dLn0qmdA59O67LWTOv gy135gvZ3gXW2CWw0s+OTkzGuw== -----END CERTIFICATE-----Generated at Mon Mar 2 06:06:12 2026 by rpki-client