$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: QE7YwfVUq1SAZ8Xzl5f8RaVcgswJRkfw18tstMiUrBM= Subject key identifier: 68:C1:62:71:99:A0:19:53:D9:E6:2E:46:36:73:C1:3D:71:4B:7C:D9 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 1156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 24F3 Signing time: Sat 28 Feb 2026 17:01:26 +0000 Manifest this update: Sat 28 Feb 2026 17:01:26 +0000 Manifest next update: Sat 07 Mar 2026 17:01:26 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: B4KQNHhWxt5KlwFxFs9esXIXYzBIOfL169gaXmf4vSE=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: dRGqWnvgsIsN2pbF+Ps/gIu/drVJ5zxN2ZisSAeqSPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4438 (0x1156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Feb 28 17:01:26 2026 GMT Not After : Mar 7 17:01:26 2026 GMT Subject: CN=69a31f66-2bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1e:63:d2:0e:6f:5d:4e:4c:cb:70:73:c8:72: ac:c7:db:0a:b5:0d:a7:f3:b8:e7:9f:74:22:cc:51: d6:06:42:38:d4:24:34:7a:e5:c9:ac:eb:c7:8b:31: 62:b6:14:13:d4:cd:7e:cc:cd:63:65:6d:2b:aa:22: 26:6e:75:c0:30:cf:48:a6:fe:c2:46:d1:93:60:77: 40:3e:24:9a:7d:7a:40:6a:4a:67:91:82:a9:ae:db: 9e:03:87:d3:98:7f:eb:e5:25:ac:3f:87:5f:2e:51: b3:db:c9:c0:c8:92:43:d4:b2:c7:de:ec:34:f5:17: 99:5f:4c:a8:4e:e2:21:6a:32:d7:8f:a0:c8:51:54: 78:37:b1:b3:c6:c3:08:14:20:4e:eb:e9:dc:a0:8c: 45:8f:8c:36:17:78:4e:e9:7b:27:6f:ad:96:0e:b7: d4:1f:56:aa:4f:d5:54:59:51:2d:b4:3f:8c:a9:d5: 99:37:0a:5e:d3:d4:e3:9e:ff:9c:39:49:f2:19:92: bb:8c:43:07:45:00:ad:41:d1:8c:d8:72:e1:82:c9: 55:ae:10:5d:4c:c0:c2:92:28:c7:cb:50:af:f4:2d: af:d1:1c:cb:65:c0:d3:16:53:3b:45:ca:d3:95:8d: bd:a2:67:5f:47:72:d3:ae:8c:4c:19:52:62:ec:0a: f8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C1:62:71:99:A0:19:53:D9:E6:2E:46:36:73:C1:3D:71:4B:7C:D9 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:85:cf:8d:43:b8:61:8c:ff:ce:cb:73:6c:47:85:75:59:98: 64:d8:71:53:4b:f2:6b:23:21:42:f4:50:91:e1:a6:35:0c:0e: 16:d2:6e:a8:80:f1:7f:89:fc:e7:8e:c8:5c:c4:a1:a9:96:0c: 6f:b6:a3:37:5c:90:85:14:3d:d0:90:09:c5:1f:71:23:74:c1: db:7d:10:41:f3:fb:b6:6e:63:2a:86:47:f2:63:70:45:67:09: 13:c4:31:dd:d3:30:c3:1d:de:53:35:45:11:cb:19:42:46:cc: 34:4b:b7:18:c5:89:2a:b2:57:b8:6d:07:22:e5:58:ec:6b:ab: b9:62:93:f8:51:5c:41:74:9a:89:ee:d6:43:51:1b:6f:d9:fd: 3c:79:69:bc:3f:cd:5a:47:ba:b2:7b:61:e8:96:62:11:30:61: b8:90:b7:6e:9a:77:f2:0e:6e:a7:1e:43:0e:4c:6b:ab:e5:8a: da:3a:f0:f6:89:e7:43:23:4b:e2:ff:bd:a7:8a:1c:7e:a8:2a: 85:e2:da:ed:5e:62:5d:87:77:63:d3:77:82:d9:a1:29:71:49: 27:87:97:e7:cc:04:8f:c9:75:0d:a0:27:bf:95:a5:68:7d:82: 28:80:d0:a1:51:2f:c3:e9:f4:5c:50:c2:3e:23:80:8a:1c:cd: a5:75:3c:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjYwMjI4MTcwMTI2WhcNMjYwMzA3MTcwMTI2WjAYMRYwFAYD VQQDDA02OWEzMWY2Ni0yYmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsR5j0g5vXU5My3BzyHKsx9sKtQ2n87jnn3QizFHWBkI41CQ0euXJrOvHizFi thQT1M1+zM1jZW0rqiImbnXAMM9Ipv7CRtGTYHdAPiSafXpAakpnkYKprtueA4fT mH/r5SWsP4dfLlGz28nAyJJD1LLH3uw09ReZX0yoTuIhajLXj6DIUVR4N7GzxsMI FCBO6+ncoIxFj4w2F3hO6Xsnb62WDrfUH1aqT9VUWVEttD+MqdWZNwpe09Tjnv+c OUnyGZK7jEMHRQCtQdGM2HLhgslVrhBdTMDCkijHy1Cv9C2v0RzLZcDTFlM7RcrT lY29omdfR3LTroxMGVJi7Ar4dwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjBYnGZ oBlT2eYuRjZzwT1xS3zZMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa4XPjUO4YYz/zstzbEeFdVmYZNhxU0vyayMhQvRQkeGmNQwOFtJuqIDxf4n8 547IXMShqZYMb7ajN1yQhRQ90JAJxR9xI3TB230QQfP7tm5jKoZH8mNwRWcJE8Qx 3dMwwx3eUzVFEcsZQkbMNEu3GMWJKrJXuG0HIuVY7GuruWKT+FFcQXSaie7WQ1Eb b9n9PHlpvD/NWke6snth6JZiETBhuJC3bpp38g5upx5DDkxrq+WK2jrw9onnQyNL 4v+9p4ocfqgqheLa7V5iXYd3Y9N3gtmhKXFJJ4eX58wEj8l1DaAnv5WlaH2CKIDQ oVEvw+n0XFDCPiOAihzNpXU8Ew== -----END CERTIFICATE-----Generated at Mon Mar 2 02:33:04 2026 by rpki-client