$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: b0ZYvGMEZfYNu9Q4Pasv1+HdL5AxJ1xwWWKpOXnUk6I= Subject key identifier: BE:24:64:28:C7:4E:53:0D:A9:44:21:A4:E2:FE:15:F9:FB:38:18:1D Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 023A Signing time: Mon 02 Mar 2026 03:09:53 +0000 Manifest this update: Mon 02 Mar 2026 03:09:52 +0000 Manifest next update: Mon 09 Mar 2026 03:09:52 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: AZHmbXlflg5uU/MhYajbRaEt/jaEIi7Ax7QYHe1E1mg=) 2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: gF+wRybYqzRDn6Gcs13+OYJlZyu3AwVXsipzWwYqmyI=) 3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: UK3A/oQxQUdjUg4kSQf+8LqIPors4EamqRUdq1d2ntQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Mar 2 03:09:52 2026 GMT Not After : Mar 9 03:09:52 2026 GMT Subject: CN=69a4ff81-4c2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:cd:e2:f2:9a:03:3c:22:e4:e1:35:f7:6f:be: bb:78:3b:74:71:06:c8:0d:3b:b7:c4:57:ae:f8:86: 23:b0:d7:6f:3e:4e:28:8f:ed:a8:93:59:98:f3:a6: 5a:01:84:7d:29:0a:f0:c3:85:12:f4:97:80:82:2a: 19:42:ae:52:98:f2:ac:0c:94:b6:57:a7:24:12:cd: 27:95:c3:2e:9a:e6:d9:1e:2d:01:6b:39:6c:5d:19: ef:11:43:2a:61:c2:d3:18:e5:6e:ee:c5:4a:5f:df: e6:24:b6:ae:52:f3:75:1a:f4:c8:07:48:79:e8:5b: 77:c6:ee:3a:af:cd:ef:8f:ce:e4:f7:41:82:51:29: 90:a8:6e:69:ad:38:67:fd:06:72:71:bf:7f:70:d1: 6b:05:b3:b8:62:03:3d:b4:84:1f:03:60:62:f7:31: 8d:fb:d4:07:96:29:fe:2f:f1:ae:0a:d6:b9:68:bc: 1c:d6:3c:37:38:4f:21:76:dd:9a:52:fa:2e:62:af: a9:8f:f9:f8:c5:be:1e:7b:96:a8:1e:e2:22:a1:13: 7e:e5:7a:6a:a4:8a:54:0f:0d:d8:ee:9f:a6:4c:21: c7:00:b5:56:0c:ed:ce:c6:5a:87:fd:c6:ee:f0:35: d4:74:4e:d4:84:46:10:b3:87:73:53:42:6c:93:c1: 0f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:24:64:28:C7:4E:53:0D:A9:44:21:A4:E2:FE:15:F9:FB:38:18:1D X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:55:a6:56:37:93:15:37:24:5d:13:89:e7:6f:0d:f1:70:09: 57:99:5f:20:0e:59:b8:37:c6:6a:85:cc:70:fd:c8:d7:43:57: a0:49:67:70:12:87:e6:a8:70:dd:4f:c8:46:57:bb:21:78:1f: 6a:8e:6e:c5:8d:bd:43:a7:0c:f2:2a:ea:28:5e:74:0b:f1:52: 06:c8:19:53:4b:30:b2:20:7e:d0:ba:96:1a:65:2c:97:0c:9e: 4d:bd:86:a7:6c:fb:af:b7:f8:1f:bd:fa:93:18:f3:d9:29:f0: de:01:b5:39:c3:d2:b1:13:d6:44:f2:ad:aa:85:46:1d:4e:3d: 9f:4d:16:c0:44:de:36:26:50:2a:33:eb:b3:51:98:9f:29:7d: 9d:b8:26:f3:d5:29:1a:91:e4:16:85:58:ed:f1:ee:58:74:20: ad:3b:7f:f8:d9:94:cd:c6:99:9f:f5:ed:9b:db:e8:a7:e9:b3: f5:c3:34:85:7a:10:f7:7e:a3:03:61:90:b5:6d:fb:d9:af:c5: 99:5a:84:ee:5e:b0:cc:0b:c0:6e:21:fb:55:0b:53:42:00:ae: 17:81:cb:e5:a9:28:98:03:e2:ff:97:0c:08:08:79:9f:51:89: 98:33:f7:57:c9:ee:2d:51:48:e9:36:af:b7:85:68:c5:fe:06: af:a6:6f:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjYwMzAyMDMwOTUyWhcNMjYwMzA5MDMwOTUyWjAYMRYwFAYD VQQDEw02OWE0ZmY4MS00YzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh83i8poDPCLk4TX3b767eDt0cQbIDTu3xFeu+IYjsNdvPk4oj+2ok1mY86Za AYR9KQrww4US9JeAgioZQq5SmPKsDJS2V6ckEs0nlcMumubZHi0BazlsXRnvEUMq YcLTGOVu7sVKX9/mJLauUvN1GvTIB0h56Ft3xu46r83vj87k90GCUSmQqG5prThn /QZycb9/cNFrBbO4YgM9tIQfA2Bi9zGN+9QHlin+L/GuCta5aLwc1jw3OE8hdt2a UvouYq+pj/n4xb4ee5aoHuIioRN+5XpqpIpUDw3Y7p+mTCHHALVWDO3OxlqH/cbu 8DXUdE7UhEYQs4dzU0Jsk8EPoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL4kZCjH TlMNqUQhpOL+Ffn7OBgdMB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALFWmVjeTFTckXROJ528N8XAJV5lfIA5ZuDfGaoXMcP3I10NXoElncBKH5qhw 3U/IRle7IXgfao5uxY29Q6cM8irqKF50C/FSBsgZU0swsiB+0LqWGmUslwyeTb2G p2z7r7f4H736kxjz2Snw3gG1OcPSsRPWRPKtqoVGHU49n00WwETeNiZQKjPrs1GY nyl9nbgm89UpGpHkFoVY7fHuWHQgrTt/+NmUzcaZn/Xtm9vop+mz9cM0hXoQ936j A2GQtW372a/FmVqE7l6wzAvAbiH7VQtTQgCuF4HL5akomAPi/5cMCAh5n1GJmDP3 V8nuLVFI6Tavt4Voxf4Gr6Zvpw== -----END CERTIFICATE-----Generated at Mon Mar 2 23:58:26 2026 by rpki-client