$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: p9ld7NIzlK0Kg+XtSwNS2EXfnTcdEK9b6UiPK62q9pE= Subject key identifier: 14:F1:D9:08:AB:C6:7A:E0:AD:3D:92:A6:A5:C0:86:D2:78:26:2F:12 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 0125 Signing time: Mon 02 Mar 2026 13:54:52 +0000 Manifest this update: Mon 02 Mar 2026 13:54:52 +0000 Manifest next update: Mon 09 Mar 2026 13:54:52 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: BAK64InjXLpXB+sU0fp1NugHzaw4QMLzPOuGk6iylPg=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: vOf/o1JHkb8wuECkMMHoKSsb6jXZeHUN4IdzhUHE9fc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Mar 2 13:54:52 2026 GMT Not After : Mar 9 13:54:52 2026 GMT Subject: CN=69a596ac-08c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7d:47:a9:30:1c:93:44:4d:04:24:86:9b:ac: 9d:29:11:b1:fd:9c:a9:cc:8a:43:cf:52:34:65:67: 04:16:46:d1:db:38:9e:e1:5f:0c:03:31:56:a9:f6: 02:16:5d:3d:64:80:63:45:44:ca:31:74:dd:09:42: f3:13:70:b4:3f:94:e7:08:e1:a2:06:63:8c:8c:bb: c3:88:0c:9e:82:f2:09:be:4b:8c:44:37:3d:a1:8f: bf:ef:f5:00:25:3f:c8:94:a6:6d:b0:58:aa:8d:cd: e7:bd:5d:a7:5f:4f:c8:53:c1:93:02:e2:46:4b:be: 0f:ff:2a:48:30:96:d4:46:a0:cb:45:fa:ad:96:8e: 83:41:16:73:45:f3:e5:65:f3:9f:6b:34:2a:00:16: b4:f4:c3:37:58:44:01:db:64:a2:f9:ce:e7:83:2e: d3:13:4a:64:47:0a:fe:55:9c:e5:f3:0d:7c:45:2e: 01:58:06:95:ec:da:6a:9b:d7:94:fb:a6:6c:7e:05: 6b:21:1b:80:f5:51:67:89:12:9d:cc:f8:4b:f0:63: a6:d7:75:e9:9f:57:6c:36:35:52:ac:24:ee:e7:c6: 23:48:fd:57:f7:49:10:86:f6:b4:6b:28:2a:9d:3b: 4a:8e:e7:7b:1b:c7:d6:5f:cf:2e:5f:84:6f:46:30: 9b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F1:D9:08:AB:C6:7A:E0:AD:3D:92:A6:A5:C0:86:D2:78:26:2F:12 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:32:a7:c9:94:dc:84:ab:c1:ce:67:aa:2f:02:60:c0:23:d7: 3c:47:45:04:98:59:80:00:77:27:f4:f7:15:d1:45:4f:92:72: 1f:71:47:ec:e8:55:c0:61:73:85:ae:c8:84:66:e7:08:a8:c7: a8:7c:08:2e:a6:67:3a:93:1b:f9:e6:b4:1a:62:d6:9b:0e:6b: bd:8a:bf:71:11:e2:e5:a1:78:b8:25:d5:6b:a1:6c:96:3e:d7: 3d:70:b7:3d:7b:e8:d5:c3:3d:4b:a9:41:45:08:cc:5c:52:57: 5a:86:3e:c7:93:82:e8:8f:4f:3f:cd:d1:60:cb:3c:33:71:fb: 96:57:16:f7:bc:e4:a0:f4:67:55:ae:4e:01:d7:92:53:dc:1d: 3a:da:43:c2:c9:0d:d5:29:55:e1:ed:e6:e7:53:d3:9e:af:d0: 1e:66:dc:41:28:7d:18:a8:a7:8e:7e:0a:76:bd:a3:d1:ad:46: 7d:2b:bf:14:1e:7e:21:19:ee:cd:64:0d:ae:5f:36:67:5a:e3: 66:bb:b7:43:eb:1c:c8:f2:a0:41:eb:2d:6f:29:4a:40:6c:56: 34:8d:cc:6b:50:a5:eb:14:41:96:8f:13:21:ac:74:d3:28:a8: de:6e:37:56:ba:02:d5:07:a2:f1:19:62:aa:c1:0a:c9:8d:4a: dc:30:89:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjYwMzAyMTM1NDUyWhcNMjYwMzA5MTM1NDUyWjAYMRYwFAYD VQQDEw02OWE1OTZhYy0wOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsH1HqTAck0RNBCSGm6ydKRGx/ZypzIpDz1I0ZWcEFkbR2zie4V8MAzFWqfYC Fl09ZIBjRUTKMXTdCULzE3C0P5TnCOGiBmOMjLvDiAyegvIJvkuMRDc9oY+/7/UA JT/IlKZtsFiqjc3nvV2nX0/IU8GTAuJGS74P/ypIMJbURqDLRfqtlo6DQRZzRfPl ZfOfazQqABa09MM3WEQB22Si+c7ngy7TE0pkRwr+VZzl8w18RS4BWAaV7Npqm9eU +6ZsfgVrIRuA9VFniRKdzPhL8GOm13Xpn1dsNjVSrCTu58YjSP1X90kQhva0aygq nTtKjud7G8fWX88uX4RvRjCbpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBTx2Qir xnrgrT2SpqXAhtJ4Ji8SMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGTKnyZTchKvBzmeqLwJgwCPXPEdFBJhZgAB3J/T3FdFFT5JyH3FH7OhVwGFz ha7IhGbnCKjHqHwILqZnOpMb+ea0GmLWmw5rvYq/cRHi5aF4uCXVa6Fslj7XPXC3 PXvo1cM9S6lBRQjMXFJXWoY+x5OC6I9PP83RYMs8M3H7llcW97zkoPRnVa5OAdeS U9wdOtpDwskN1SlV4e3m51PTnq/QHmbcQSh9GKinjn4Kdr2j0a1GfSu/FB5+IRnu zWQNrl82Z1rjZru3Q+scyPKgQestbylKQGxWNI3Ma1Cl6xRBlo8TIax00yio3m43 VroC1Qei8RliqsEKyY1K3DCJKw== -----END CERTIFICATE-----Generated at Mon Mar 2 16:58:31 2026 by rpki-client