$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft File: KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft (raw, json) Hash identifier: 9FrB5EcbMphqZ+p7jPR0Co6jv1WQOJnbbrroac83S0w= Subject key identifier: 7D:93:81:2D:CB:5A:96:2E:97:D6:A6:5C:D5:12:93:DB:D5:0F:13:7B Authority key identifier: 28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 Certificate issuer: /CN=A915FE9F/serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft Manifest number: 8F Signing time: Sun 01 Mar 2026 08:58:45 +0000 Manifest this update: Sun 01 Mar 2026 08:58:44 +0000 Manifest next update: Sun 08 Mar 2026 08:58:44 +0000 Files and hashes: 1: KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl (hash: 6wmJkRvOI2ddf058yvH5hBVvhBcKPtnvIPg9h5shAhY=) 2: BA44C5C2FF3611F08F27381B8BEE528E.roa (hash: mJMnRK88uDv1nqZ1nZk8rnTiWVQ/NAjnCxer9jKXxm4=) 3: BB593434FF3611F08F27381B8BEE528E.roa (hash: HQT952CXQhI/dZz6h2jRdbg19A374S/bX/PFyWaek7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE9F, serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Validity Not Before: Mar 1 08:58:44 2026 GMT Not After : Mar 8 08:58:44 2026 GMT Subject: CN=69a3ffc5-e885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:bf:8e:a2:92:e4:d8:db:45:f9:88:72:c5:e1: 12:d0:33:d3:70:03:47:23:49:9f:cd:1a:6d:47:ac: 52:70:c1:f7:f4:ba:32:a4:c4:3f:69:b5:81:51:ea: 5f:ab:88:b2:94:01:e5:59:64:6f:95:99:a5:2e:af: e9:d4:23:d4:f1:f7:b2:a1:80:36:c0:28:34:cd:c1: 15:dd:ef:b7:1a:0e:7e:d2:b4:10:85:0b:04:84:2c: 67:52:62:7e:4b:77:32:b9:b9:75:8d:4a:ff:27:bc: d9:ec:50:64:5d:a0:fb:63:b1:3b:97:33:4b:3e:8f: 12:15:ac:c1:19:2a:57:de:2c:5a:f2:1b:fc:7c:b7: 52:ab:fd:bc:ce:65:6a:9d:48:e0:a3:de:b3:3f:cf: 5a:7c:86:ed:20:b3:d2:8c:19:af:d4:88:53:8a:53: 65:55:3b:3c:a3:77:f9:f4:e1:c9:b3:4f:46:3c:e3: ef:26:e1:db:69:9d:c1:eb:fc:7f:68:b8:47:42:b2: 1b:7f:1b:d8:72:f5:f5:0f:b8:30:96:0b:5b:f3:be: f2:be:94:e2:98:00:fd:5f:82:aa:a1:23:26:d8:cc: ab:4b:5f:5e:80:6b:58:97:e8:77:0e:3f:89:93:55: dc:64:e8:06:ea:e3:c1:0c:61:ef:d5:4c:aa:14:ac: 2a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:93:81:2D:CB:5A:96:2E:97:D6:A6:5C:D5:12:93:DB:D5:0F:13:7B X509v3 Authority Key Identifier: keyid:28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:32:07:42:c4:40:03:27:37:53:76:cf:24:68:39:ea:af:ee: 89:40:8a:f2:4e:ab:d6:71:2d:a4:5d:e1:ff:c9:dc:f4:7b:f3: b1:ed:26:46:f6:f4:9e:6d:b2:81:00:48:f8:df:75:3a:37:b9: 3e:09:d5:ce:be:8a:1c:dd:79:93:5d:2b:7f:41:83:c6:59:9d: 69:59:37:cf:07:69:ed:63:25:4c:e1:42:07:a5:f3:59:9c:3d: 74:0c:3a:54:f0:b0:ef:06:37:09:6f:61:ed:52:54:93:13:09: 3f:70:cf:d2:c1:c0:14:ad:1c:d5:ef:8e:62:60:bb:0c:7c:28: c3:78:18:3b:b7:8c:6a:41:c7:33:75:50:c2:40:8a:7f:a8:71: 70:4e:c4:f1:85:c4:8a:62:58:04:1d:fa:eb:8b:8a:c4:03:fe: 04:2a:79:7b:c6:ba:76:23:16:eb:2d:30:e2:9a:bf:4b:a9:c7: 60:67:11:21:12:c5:87:9a:64:2d:83:d0:db:02:ae:cb:23:e6: 7b:8c:40:f9:05:ca:7f:0f:90:27:42:ac:74:da:1b:83:d5:f0: b3:1b:7b:de:4f:a9:f7:36:db:e6:84:50:9e:85:3e:ed:09:9b: ad:33:ca:68:b0:b1:2f:c3:c3:ec:79:32:4a:b1:e5:fe:5e:0d: 29:48:49:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFOUYxMTAvBgNVBAUTKDI4REFEOEQ0Q0M2Rjc0MEZBMDAwRDQzNjg2OUFFMEYx NzZFQUU5MzMwHhcNMjYwMzAxMDg1ODQ0WhcNMjYwMzA4MDg1ODQ0WjAYMRYwFAYD VQQDEw02OWEzZmZjNS1lODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlL+OopLk2NtF+YhyxeES0DPTcANHI0mfzRptR6xScMH39LoypMQ/abWBUepf q4iylAHlWWRvlZmlLq/p1CPU8feyoYA2wCg0zcEV3e+3Gg5+0rQQhQsEhCxnUmJ+ S3cyubl1jUr/J7zZ7FBkXaD7Y7E7lzNLPo8SFazBGSpX3ixa8hv8fLdSq/28zmVq nUjgo96zP89afIbtILPSjBmv1IhTilNlVTs8o3f59OHJs09GPOPvJuHbaZ3B6/x/ aLhHQrIbfxvYcvX1D7gwlgtb877yvpTimAD9X4KqoSMm2MyrS19egGtYl+h3Dj+J k1XcZOgG6uPBDGHv1UyqFKwq9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH2TgS3L WpYul9amXNUSk9vVDxN7MB8GA1UdIwQYMBaAFCja2NTMb3QPoADUNoaa4PF26ukz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkU5Ri8yMzAyNzEyNDUx NzAxMUYwQjlEQkNCODdDNEY5QUUwMi9LTnJZMU14dmRBLWdBTlEyaHByZzhYYnE2 VE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOclkxTXh2ZEEtZ0FOUTJocHJnOFhicTZUTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkU5Ri8yMzAyNzEyNDUxNzAxMUYwQjlEQkNCODdDNEY5QUUwMi9LTnJZMU14dmRB LWdBTlEyaHByZzhYYnE2VE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPzIHQsRAAyc3U3bPJGg56q/uiUCK8k6r1nEtpF3h/8nc9Hvzse0mRvb0nm2y gQBI+N91Oje5PgnVzr6KHN15k10rf0GDxlmdaVk3zwdp7WMlTOFCB6XzWZw9dAw6 VPCw7wY3CW9h7VJUkxMJP3DP0sHAFK0c1e+OYmC7DHwow3gYO7eMakHHM3VQwkCK f6hxcE7E8YXEimJYBB3664uKxAP+BCp5e8a6diMW6y0w4pq/S6nHYGcRIRLFh5pk LYPQ2wKuyyPme4xA+QXKfw+QJ0KsdNobg9Xwsxt73k+p9zbb5oRQnoU+7QmbrTPK aLCxL8PD7HkySrHl/l4NKUhJww== -----END CERTIFICATE-----Generated at Sun Mar 1 21:08:09 2026 by rpki-client