$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: duEa3j2GLg9o7rnGwomyU/31l1Ss/wenfNyI6iL4VjY= Subject key identifier: 5B:00:23:FC:7E:94:2F:2B:BE:6F:61:84:BA:98:6A:40:4D:64:56:10 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 3543 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 352F Signing time: Sun 01 Mar 2026 23:20:17 +0000 Manifest this update: Sun 01 Mar 2026 23:20:15 +0000 Manifest next update: Sun 08 Mar 2026 23:20:15 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: FM84dhjOiw5o6qf6ww+JFJCoXBfCsrXIn9jXIAowrjQ=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: 3W4AiNrrj2kArnRpgqwuIaUDi20UJ9Jgfp+kFDwU8cQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13635 (0x3543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Mar 1 23:20:15 2026 GMT Not After : Mar 8 23:20:15 2026 GMT Subject: CN=69a4c9b1-5913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:23:75:ed:02:49:02:0d:f2:6a:cd:95:be:a0: 81:1e:33:c2:a6:c8:8f:39:ec:78:c3:ff:e3:b0:37: 28:20:db:2e:1d:31:ec:9d:67:d8:b0:a8:d0:12:ce: 3a:f6:30:da:15:14:7b:3f:6b:d9:8e:ac:ea:1c:5b: 81:83:41:a7:12:fc:2e:23:04:10:f3:18:04:e0:73: d9:58:09:d7:85:ab:58:9e:9e:59:70:ae:bc:62:e1: 9c:fb:07:24:a5:4e:2c:03:42:1a:66:65:ff:49:a8: 64:66:e6:93:d4:8c:ef:20:75:cb:12:3f:ba:6e:17: f5:7c:91:b1:b7:19:70:19:fe:2a:0a:fc:5e:5e:fc: db:44:9f:4f:5c:fc:af:24:ba:a8:0b:86:4d:2c:7e: c6:d6:6e:13:d7:1d:9a:78:af:c1:c5:25:4e:89:6f: 7c:1d:bd:2c:2e:32:e2:42:bd:20:16:fe:aa:4f:37: 98:eb:3a:ed:7f:1e:67:fb:69:7a:eb:e0:82:37:77: 90:93:1f:be:10:51:3e:53:0d:7e:76:75:70:5a:f4: fe:9c:d3:75:69:ba:b1:de:cd:39:41:bb:92:30:85: 09:b9:60:9f:1b:20:d3:f6:65:da:5d:a0:04:f9:f9: 18:3c:9f:5a:47:cd:06:92:69:20:9c:2e:22:83:09: d2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:00:23:FC:7E:94:2F:2B:BE:6F:61:84:BA:98:6A:40:4D:64:56:10 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:ad:a4:d1:4c:03:37:0f:44:7e:f7:bd:ac:e1:a4:6e:af:82: d1:70:7b:ea:33:b8:46:4a:e6:5f:61:51:5e:12:46:e8:13:de: 22:3c:a2:e2:4c:ca:f0:57:b5:55:0c:39:fe:80:73:93:5f:88: d8:b7:22:c9:d9:04:56:bf:50:5b:49:d8:55:ef:0c:99:0c:44: 43:f7:25:64:d3:4f:d7:b4:08:de:5d:c1:51:f1:54:16:5d:56: f0:d9:c7:f6:1b:36:95:1a:ba:ee:f2:a0:c9:5f:8d:55:a4:00: 4f:ca:da:0a:94:a4:e3:c9:18:b5:f3:ff:af:96:66:84:9a:d3: bf:28:71:f9:d7:aa:29:cb:b6:d6:bb:50:22:11:2e:f7:e7:ad: 04:64:4d:6d:f3:18:be:60:79:f4:9a:cf:41:ba:4c:70:00:bb: 8a:d7:2c:91:53:54:cd:1b:69:e0:9e:23:fc:d5:de:6f:84:33: e7:ad:dc:9c:a5:a0:d5:e6:0b:8f:f4:63:e4:ad:08:69:fc:02: 0e:ad:46:53:13:70:39:6f:47:52:a0:c0:63:b4:40:23:a1:3e: bc:18:1e:47:2b:2b:ce:a9:62:3d:41:0d:dc:df:02:24:5d:3f: c0:0e:8f:1e:5e:8a:4b:5b:e8:ff:e9:4d:8e:3f:30:e6:ed:da: f1:20:f9:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjYwMzAxMjMyMDE1WhcNMjYwMzA4MjMyMDE1WjAYMRYwFAYD VQQDEw02OWE0YzliMS01OTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySN17QJJAg3yas2VvqCBHjPCpsiPOex4w//jsDcoINsuHTHsnWfYsKjQEs46 9jDaFRR7P2vZjqzqHFuBg0GnEvwuIwQQ8xgE4HPZWAnXhatYnp5ZcK68YuGc+wck pU4sA0IaZmX/SahkZuaT1IzvIHXLEj+6bhf1fJGxtxlwGf4qCvxeXvzbRJ9PXPyv JLqoC4ZNLH7G1m4T1x2aeK/BxSVOiW98Hb0sLjLiQr0gFv6qTzeY6zrtfx5n+2l6 6+CCN3eQkx++EFE+Uw1+dnVwWvT+nNN1abqx3s05QbuSMIUJuWCfGyDT9mXaXaAE +fkYPJ9aR80GkmkgnC4igwnSuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFsAI/x+ lC8rvm9hhLqYakBNZFYQMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASa2k0UwDNw9Efve9rOGkbq+C0XB76jO4RkrmX2FRXhJG6BPeIjyi4kzK8Fe1 VQw5/oBzk1+I2LciydkEVr9QW0nYVe8MmQxEQ/clZNNP17QI3l3BUfFUFl1W8NnH 9hs2lRq67vKgyV+NVaQAT8raCpSk48kYtfP/r5ZmhJrTvyhx+deqKcu21rtQIhEu 9+etBGRNbfMYvmB59JrPQbpMcAC7itcskVNUzRtp4J4j/NXeb4Qz563cnKWg1eYL j/Rj5K0IafwCDq1GUxNwOW9HUqDAY7RAI6E+vBgeRysrzqliPUEN3N8CJF0/wA6P Hl6KS1vo/+lNjj8w5u3a8SD5jA== -----END CERTIFICATE-----Generated at Mon Mar 2 15:37:51 2026 by rpki-client