$ rpki-client -vvf rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft File: KcmzN9Z7DxREgXmLTVsNc9eIrys.mft (raw, json) Hash identifier: Sk4m4KR5J4DHeeGuKK5kHeOTuz4EsaFCXYuPVsKeOhk= Subject key identifier: 8A:64:0F:31:A3:09:DB:16:AB:DE:71:3F:34:20:68:0A:9C:FC:F0:2B Authority key identifier: 29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B Certificate issuer: /CN=A91608B2/serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft Manifest number: 88 Signing time: Sun 01 Mar 2026 08:55:29 +0000 Manifest this update: Sun 01 Mar 2026 08:55:28 +0000 Manifest next update: Sun 08 Mar 2026 08:55:28 +0000 Files and hashes: 1: KcmzN9Z7DxREgXmLTVsNc9eIrys.crl (hash: Ngqku4IaHvM4sTEkbkRR8qdQRiMyUIy5ka3ExBFGqCU=) 2: 13B4125A4A5311F08B06EF0FC4F9AE02.roa (hash: YZdUm7+WLurwEjDF7nwXv0d6iTCyzNott8Mq+jpg6ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91608B2, serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Validity Not Before: Mar 1 08:55:28 2026 GMT Not After : Mar 8 08:55:28 2026 GMT Subject: CN=69a3ff01-29a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a6:6c:40:b3:8d:de:b9:be:99:6f:7a:46:20: dc:ba:e4:f1:88:4e:1e:4b:4a:ef:be:7a:c9:62:d7: 52:54:2b:82:86:2c:90:6a:9f:eb:92:61:0c:b0:8d: cc:1a:c2:be:f3:5b:4a:bb:15:aa:92:ea:3a:87:44: d4:74:67:eb:87:b7:70:89:0d:2d:31:17:53:72:e0: c4:b0:e0:68:73:03:f9:fe:91:b3:c6:e2:db:e9:8b: 3e:07:1a:77:1c:97:fa:41:0f:bf:c2:68:20:f6:e2: 23:b7:49:c0:d5:1e:4e:49:27:bd:49:2f:67:25:a1: 6e:7c:10:a4:09:14:8c:c3:88:d0:4b:ed:57:20:d1: a8:31:4e:8f:28:22:7f:f1:36:8d:70:17:8d:75:ee: af:ab:18:60:ef:b5:fd:c4:23:77:99:30:06:34:40: ab:4b:13:ff:2a:ba:34:ac:b5:37:f2:37:50:64:fc: d5:0d:9b:a9:ba:f8:fe:b0:8c:e5:74:5f:db:8f:69: a8:04:d6:68:d9:d3:84:1f:bb:d5:60:17:2f:f6:ec: 85:e9:f0:ad:2b:9a:ae:a3:4d:5d:58:e6:13:c8:3a: bd:0a:18:c8:1c:96:f7:f4:f9:bd:3d:29:46:49:6f: 08:79:3d:43:0b:1c:12:8d:8d:1f:5f:f1:02:e3:c9: 18:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:64:0F:31:A3:09:DB:16:AB:DE:71:3F:34:20:68:0A:9C:FC:F0:2B X509v3 Authority Key Identifier: keyid:29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:0b:ee:d0:c1:00:3e:ba:a2:29:a8:1b:34:a5:03:40:6d:b8: 0c:07:78:53:df:8c:c3:f2:a1:50:22:85:3b:b3:38:c5:82:24: 82:0f:73:11:a1:5a:a1:a1:0e:9c:03:d1:bf:0c:ec:ff:5c:d2: 56:46:95:35:1a:2e:11:32:ec:0b:5c:4e:b6:41:73:b8:24:bb: 5a:09:6b:fb:07:53:72:6e:aa:bb:e7:7d:c7:97:e2:4f:54:f4: ef:ed:dd:74:df:7b:09:cd:9e:c9:2c:ca:8f:5e:d0:56:22:4f: 2e:29:4b:db:df:fe:77:ff:78:f2:73:89:9c:78:ac:82:39:b0: 4b:b4:27:50:dd:1b:4c:74:ca:94:c7:09:6f:1b:02:a7:5c:9a: 84:9a:f2:57:31:0f:04:5e:ec:b2:6b:7f:ea:89:41:5b:02:1e: 6b:95:4e:cd:64:54:99:05:aa:50:4d:6d:33:7c:60:ae:df:37: 65:dc:c4:ea:28:c7:63:b9:0f:b5:c3:06:0c:bb:3f:6b:01:28: 9c:53:2a:66:6e:cd:94:5b:b1:31:d4:2d:2a:73:27:e7:98:79: 65:b0:57:83:fc:c7:8d:7a:9f:d1:bf:54:b8:be:1c:ba:56:e8: ac:4c:86:d1:c4:19:25:84:0e:2c:cb:f8:99:c9:73:11:6d:e4: e5:9b:47:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA4QjIxMTAvBgNVBAUTKDI5QzlCMzM3RDY3QjBGMTQ0NDgxNzk4QjRENUIwRDcz RDc4OEFGMkIwHhcNMjYwMzAxMDg1NTI4WhcNMjYwMzA4MDg1NTI4WjAYMRYwFAYD VQQDEw02OWEzZmYwMS0yOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6aZsQLON3rm+mW96RiDcuuTxiE4eS0rvvnrJYtdSVCuChiyQap/rkmEMsI3M GsK+81tKuxWqkuo6h0TUdGfrh7dwiQ0tMRdTcuDEsOBocwP5/pGzxuLb6Ys+Bxp3 HJf6QQ+/wmgg9uIjt0nA1R5OSSe9SS9nJaFufBCkCRSMw4jQS+1XINGoMU6PKCJ/ 8TaNcBeNde6vqxhg77X9xCN3mTAGNECrSxP/Kro0rLU38jdQZPzVDZupuvj+sIzl dF/bj2moBNZo2dOEH7vVYBcv9uyF6fCtK5quo01dWOYTyDq9ChjIHJb39Pm9PSlG SW8IeT1DCxwSjY0fX/EC48kYqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIpkDzGj CdsWq95xPzQgaAqc/PArMB8GA1UdIwQYMBaAFCnJszfWew8URIF5i01bDXPXiK8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDhCMi9DOTVBNDlBRTRB NTIxMUYwOTg5RDcwMEZDNEY5QUUwMi9LY216TjlaN0R4UkVnWG1MVFZzTmM5ZUly eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tjbXpOOVo3RHhSRWdYbUxUVnNOYzllSXJ5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDhCMi9DOTVBNDlBRTRBNTIxMUYwOTg5RDcwMEZDNEY5QUUwMi9LY216TjlaN0R4 UkVnWG1MVFZzTmM5ZUlyeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxAvu0MEAPrqiKagbNKUDQG24DAd4U9+Mw/KhUCKFO7M4xYIkgg9zEaFaoaEO nAPRvwzs/1zSVkaVNRouETLsC1xOtkFzuCS7Wglr+wdTcm6qu+d9x5fiT1T07+3d dN97Cc2eySzKj17QViJPLilL29/+d/948nOJnHisgjmwS7QnUN0bTHTKlMcJbxsC p1yahJryVzEPBF7ssmt/6olBWwIea5VOzWRUmQWqUE1tM3xgrt83ZdzE6ijHY7kP tcMGDLs/awEonFMqZm7NlFuxMdQtKnMn55h5ZbBXg/zHjXqf0b9UuL4culborEyG 0cQZJYQOLMv4mclzEW3k5ZtHFQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:29:10 2026 by rpki-client