$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: d/Kixrg4sBQCYH2X7BUE0MVd2w7fjZ6vXBxza7kTV4U= Subject key identifier: BC:3F:AC:CD:8C:66:AA:9A:1A:FF:49:0B:E6:0C:E6:67:EB:0A:47:5B Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 0702 Signing time: Mon 02 Mar 2026 01:53:47 +0000 Manifest this update: Mon 02 Mar 2026 01:53:46 +0000 Manifest next update: Mon 09 Mar 2026 01:53:46 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: jY0wyhvaREsroYDIVo2FsW5XgnveUWkv7ih+iVKofGM=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: SMXgd0Qe6A0+Zb1ETGRTYsNnB3dN/PWbVvtwDpEc6yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Mar 2 01:53:46 2026 GMT Not After : Mar 9 01:53:46 2026 GMT Subject: CN=69a4edab-9667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a1:d8:81:3a:99:d8:e2:c4:a7:0d:bf:13:6a: 32:d6:ad:be:e9:87:9a:c9:28:e3:5c:4b:a3:50:f6: 4a:df:e3:f2:82:10:5d:41:6d:4d:da:37:30:ec:bc: f9:65:27:02:74:70:c9:8b:ac:ac:ca:bd:7b:4f:ea: 1a:65:ec:0e:b7:01:b4:bf:58:cb:fa:9d:d5:de:4f: a1:2c:e6:d9:12:df:a3:3c:a4:26:8f:b0:7a:6d:38: 0c:75:a5:b7:8f:1b:9b:af:62:5b:43:94:4e:a8:c7: 61:01:81:fc:ca:11:41:2d:b8:3d:96:69:75:7e:c3: dd:8e:c7:58:99:94:7f:00:0d:98:1d:f9:86:3a:92: da:d3:55:3b:a6:17:1a:32:e6:00:6a:ea:45:2d:76: 2b:12:9f:9f:fc:90:dd:8c:c5:2f:03:32:c3:1d:96: 26:25:7e:93:d1:a1:38:cc:7a:18:18:75:84:f4:2f: 85:7d:6c:9b:94:6e:6b:4e:c4:da:60:c8:1d:5e:34: 9c:c2:c9:67:6e:c2:b0:fa:91:56:13:62:91:0e:31: 18:7b:df:ef:49:b7:80:6d:b3:d1:0f:0e:28:cb:53: 94:df:86:69:67:11:ae:6b:07:2a:96:cd:84:e8:6e: 02:04:9d:03:78:f5:ab:a8:bb:e8:f7:0a:45:2f:de: 0c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3F:AC:CD:8C:66:AA:9A:1A:FF:49:0B:E6:0C:E6:67:EB:0A:47:5B X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:54:4a:a4:82:85:04:67:ca:6c:de:83:c8:ea:39:97:8d:dd: 18:bf:b8:5c:55:78:f5:fd:c5:1a:f1:1a:57:a9:7e:c6:07:d7: 3a:44:91:33:27:47:2f:2a:7b:81:ca:0e:ae:21:41:fd:c3:fe: d7:d3:32:14:51:1b:a9:bf:69:1d:26:45:27:1c:20:51:23:30: 30:b3:8f:bf:84:93:bc:f0:07:fb:7e:a9:a7:b2:39:7f:1d:7a: 16:5d:a5:49:03:db:21:6f:40:60:5c:6a:b4:d6:a2:ea:09:0f: 1c:dd:ad:4c:da:2b:25:ad:2a:95:92:18:4c:3b:b9:8c:ef:87: 23:a9:58:7d:c7:0e:68:5f:99:f5:61:cd:37:93:8f:a5:1e:0c: e3:07:e6:02:7d:ed:1f:25:c2:35:fb:69:64:e5:7e:c6:cd:87: c8:f0:34:c4:74:21:81:95:55:90:7f:b2:a4:a7:69:4e:16:65: 56:27:46:35:c3:63:3f:84:65:37:0c:9a:90:12:03:da:36:f0: 9d:56:eb:9c:94:9e:e5:b6:cc:a7:17:23:df:78:87:78:5c:50: 4e:e3:4a:58:42:04:49:69:16:b8:e8:b6:1a:1b:5f:52:fd:fa: 25:ff:d7:7e:da:36:67:bb:35:7c:57:ae:8d:d7:d8:53:f2:5b: 22:92:05:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjYwMzAyMDE1MzQ2WhcNMjYwMzA5MDE1MzQ2WjAYMRYwFAYD VQQDEw02OWE0ZWRhYi05NjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKHYgTqZ2OLEpw2/E2oy1q2+6YeaySjjXEujUPZK3+PyghBdQW1N2jcw7Lz5 ZScCdHDJi6ysyr17T+oaZewOtwG0v1jL+p3V3k+hLObZEt+jPKQmj7B6bTgMdaW3 jxubr2JbQ5ROqMdhAYH8yhFBLbg9lml1fsPdjsdYmZR/AA2YHfmGOpLa01U7phca MuYAaupFLXYrEp+f/JDdjMUvAzLDHZYmJX6T0aE4zHoYGHWE9C+FfWyblG5rTsTa YMgdXjScwslnbsKw+pFWE2KRDjEYe9/vSbeAbbPRDw4oy1OU34ZpZxGuawcqls2E 6G4CBJ0DePWrqLvo9wpFL94MJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLw/rM2M ZqqaGv9JC+YM5mfrCkdbMB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvFRKpIKFBGfKbN6DyOo5l43dGL+4XFV49f3FGvEaV6l+xgfXOkSRMydHLyp7 gcoOriFB/cP+19MyFFEbqb9pHSZFJxwgUSMwMLOPv4STvPAH+36pp7I5fx16Fl2l SQPbIW9AYFxqtNai6gkPHN2tTNorJa0qlZIYTDu5jO+HI6lYfccOaF+Z9WHNN5OP pR4M4wfmAn3tHyXCNftpZOV+xs2HyPA0xHQhgZVVkH+ypKdpThZlVidGNcNjP4Rl NwyakBID2jbwnVbrnJSe5bbMpxcj33iHeFxQTuNKWEIESWkWuOi2GhtfUv36Jf/X fto2Z7s1fFeujdfYU/JbIpIFIQ== -----END CERTIFICATE-----Generated at Mon Mar 2 16:24:56 2026 by rpki-client