$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft File: KKyX2Zh-eNvuncufA3NcKDvOGGI.mft (raw, json) Hash identifier: Nt3NZ20cmY0m02rbQfg/Vd3jNr67vn+7BM3PuIxD2DA= Subject key identifier: 23:71:E6:06:83:A3:39:49:06:F8:94:60:81:41:84:33:8C:10:B7:1F Authority key identifier: 28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 Certificate issuer: /CN=A9157BC3/serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft Manifest number: 024B Signing time: Sun 01 Mar 2026 03:04:29 +0000 Manifest this update: Sun 01 Mar 2026 03:04:29 +0000 Manifest next update: Sun 08 Mar 2026 03:04:29 +0000 Files and hashes: 1: KKyX2Zh-eNvuncufA3NcKDvOGGI.crl (hash: eA1HOUf6ykU5+G407Z3JV4g6cd3f8qjIcCiydYTSTZ0=) 2: 1FCD9DE2926611EDA99A9419C4F9AE02.roa (hash: L00caG4ZDpGGSc80SMg+b5jUbtMEv6l+o+7FJ2B99mI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BC3, serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Validity Not Before: Mar 1 03:04:29 2026 GMT Not After : Mar 8 03:04:29 2026 GMT Subject: CN=69a3acbd-6ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bb:a6:b5:08:00:e5:6a:66:19:6f:2b:46:85: 95:e6:c6:3e:b1:21:75:1c:af:f0:d8:11:0a:06:fd: 64:9e:cc:96:25:09:2f:92:1d:b1:27:11:31:2c:1f: c8:ab:d8:d6:97:a0:27:31:2f:f0:3c:68:8b:15:22: e1:02:cf:73:6e:97:23:62:5d:ed:80:b9:d9:91:33: e9:32:9c:10:d0:10:41:28:47:e1:69:60:22:cf:42: b8:90:29:21:65:8a:5b:4c:88:34:05:ea:57:2a:ad: 9e:49:23:39:f4:ec:41:66:ed:cb:17:f9:4c:6f:3f: 8b:62:83:20:ca:c0:e2:76:37:0c:1b:41:65:38:34: c5:f9:e8:a1:3e:85:a7:6c:f5:d6:be:0f:c9:84:a7: 59:e2:16:9f:64:4a:ec:93:68:bc:16:46:90:df:53: 4f:b7:62:2a:dd:e3:bc:24:fc:2e:5b:0a:a2:c7:e4: cf:6e:cf:03:ab:a8:a3:84:c5:3b:4c:73:06:24:a4: 7a:33:00:db:48:59:a4:b6:0e:e9:e6:fb:7b:c5:30: 7f:e4:f5:e3:45:0f:19:16:d3:70:da:4d:99:7e:5b: 85:e4:56:87:9d:f4:24:c4:9f:49:17:35:d5:25:78: 77:cc:99:98:37:d3:dd:b7:f2:aa:7b:5e:cf:7e:67: 52:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:71:E6:06:83:A3:39:49:06:F8:94:60:81:41:84:33:8C:10:B7:1F X509v3 Authority Key Identifier: keyid:28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:67:ff:70:b7:90:5d:4f:7d:47:6a:c2:30:e4:48:67:64:f7: 21:57:2a:86:83:2e:5d:51:6b:00:a5:63:cd:6e:f9:96:a5:4d: 8b:66:51:92:2f:ee:b0:02:26:90:67:04:e1:25:4a:83:cf:aa: 5f:78:c3:0c:45:e4:ab:8f:8e:6a:c9:e9:ee:ca:8e:72:25:44: 25:84:83:44:22:96:cb:b8:c7:3f:0d:98:a4:38:b9:4c:09:77: 9c:7c:ac:76:f3:44:25:3d:7b:0e:67:59:1c:be:23:9c:78:86: 8c:d8:34:1e:4f:5b:bf:22:3f:e6:61:ff:0d:59:db:de:be:3a: 44:69:c1:f6:65:d4:9d:31:db:9a:28:3b:84:08:b1:3f:92:18: 25:8b:a9:46:89:8f:76:ed:cc:8d:9f:56:3b:34:9e:60:f0:2e: 00:ba:0b:e4:0e:aa:dc:5a:cf:96:4d:3a:92:02:66:91:30:f1: 54:b4:57:17:50:58:47:d0:04:df:61:68:a9:8f:ed:2a:20:21: e7:0a:4a:dd:db:60:9f:31:96:1c:f1:c1:72:dd:53:06:6f:c4: 4e:27:26:bc:fd:75:5b:4b:62:6d:7e:90:33:72:08:42:a8:7c: 56:77:13:32:5e:4f:34:60:97:09:7f:da:19:da:22:83:03:5d: 9e:9b:1d:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCQzMxMTAvBgNVBAUTKDI4QUM5N0Q5OTg3RTc4REJFRTlEQ0I5RjAzNzM1QzI4 M0JDRTE4NjIwHhcNMjYwMzAxMDMwNDI5WhcNMjYwMzA4MDMwNDI5WjAYMRYwFAYD VQQDDA02OWEzYWNiZC02Y2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rumtQgA5WpmGW8rRoWV5sY+sSF1HK/w2BEKBv1knsyWJQkvkh2xJxExLB/I q9jWl6AnMS/wPGiLFSLhAs9zbpcjYl3tgLnZkTPpMpwQ0BBBKEfhaWAiz0K4kCkh ZYpbTIg0BepXKq2eSSM59OxBZu3LF/lMbz+LYoMgysDidjcMG0FlODTF+eihPoWn bPXWvg/JhKdZ4hafZErsk2i8FkaQ31NPt2Iq3eO8JPwuWwqix+TPbs8Dq6ijhMU7 THMGJKR6MwDbSFmktg7p5vt7xTB/5PXjRQ8ZFtNw2k2ZfluF5FaHnfQkxJ9JFzXV JXh3zJmYN9Pdt/Kqe17PfmdS8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCNx5gaD ozlJBviUYIFBhDOMELcfMB8GA1UdIwQYMBaAFCisl9mYfnjb7p3LnwNzXCg7zhhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JDMy83MDhFNkY2ODky NjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVOdnVuY3VmQTNOY0tEdk9H R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tLeVgyWmgtZU52dW5jdWZBM05jS0R2T0dHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0JDMy83MDhFNkY2ODkyNjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVO dnVuY3VmQTNOY0tEdk9HR0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbGf/cLeQXU99R2rCMORIZ2T3IVcqhoMuXVFrAKVjzW75lqVNi2ZRki/usAIm kGcE4SVKg8+qX3jDDEXkq4+Oasnp7sqOciVEJYSDRCKWy7jHPw2YpDi5TAl3nHys dvNEJT17DmdZHL4jnHiGjNg0Hk9bvyI/5mH/DVnb3r46RGnB9mXUnTHbmig7hAix P5IYJYupRomPdu3MjZ9WOzSeYPAuALoL5A6q3FrPlk06kgJmkTDxVLRXF1BYR9AE 32FoqY/tKiAh5wpK3dtgnzGWHPHBct1TBm/ETicmvP11W0tibX6QM3IIQqh8VncT Ml5PNGCXCX/aGdoigwNdnpsddQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:25 2026 by rpki-client