$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: 8OMsTMLy24J9MKD+o3Aga/rYApJPhj2Vnv+/nnJgxGc= Subject key identifier: 43:20:76:0D:46:5B:62:7F:F0:0D:6C:A1:26:65:16:7D:09:7C:E8:BE Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 06EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 06E7 Signing time: Sun 01 Mar 2026 23:20:16 +0000 Manifest this update: Sun 01 Mar 2026 23:20:12 +0000 Manifest next update: Sun 08 Mar 2026 23:20:12 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: Z1RT3Xjk4W79CJDgnrBR1lwTnXAc/Y9aORO0VKkyXVE=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: JFLwuBXWDX0J8f5lX14aiOUiyE2v7U9ODxE/5aeQfZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1775 (0x6ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F, serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: Mar 1 23:20:12 2026 GMT Not After : Mar 8 23:20:12 2026 GMT Subject: CN=69a4c9af-fce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f9:cd:d4:32:f1:e5:37:05:c7:7e:17:9d:44: 3e:df:45:52:7f:3a:65:aa:ee:cc:b6:e5:39:76:a7: 89:5e:ac:79:69:8f:86:07:ca:b8:34:47:d4:25:82: 8c:5b:1f:f5:82:57:52:62:97:a4:57:76:69:28:a5: 6f:78:0b:40:8c:12:c9:b6:90:12:55:ee:14:e7:e9: d7:c1:d2:71:4f:77:8e:6b:49:5f:82:90:cd:ca:40: 9e:db:4c:52:1a:1a:35:fd:28:e6:8d:33:a0:7b:f0: 40:f9:6b:e6:f4:42:02:29:52:72:8e:83:8c:c4:9e: 29:2d:37:0d:b8:16:e0:58:0a:76:34:aa:00:a9:df: 7c:56:07:71:42:f7:27:19:cd:3e:97:aa:7e:b0:df: ba:bc:f8:af:3a:45:48:7d:b0:69:17:be:d7:1e:10: cc:86:91:9d:60:33:74:ac:94:fa:76:9e:cc:8d:ab: 91:8e:76:31:14:e6:6c:d8:e7:ec:2d:1a:3b:8a:57: 91:cb:11:37:29:00:55:bf:b2:64:22:64:77:1e:7f: 6f:5f:80:2e:e8:ee:3a:e8:ed:61:81:f9:86:55:31: 19:bd:a3:8e:a5:32:db:2a:1c:b9:37:17:33:cb:dc: a3:d1:eb:7a:7f:bd:4f:34:a6:51:5e:32:c0:a6:88: 36:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:20:76:0D:46:5B:62:7F:F0:0D:6C:A1:26:65:16:7D:09:7C:E8:BE X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:48:99:d4:d0:0d:fe:53:c2:64:5c:ce:96:c2:44:fa:e1:ca: c4:63:8b:98:48:b3:05:17:c4:08:ef:fa:86:88:75:76:07:47: d6:b7:59:05:5b:bf:2e:30:53:48:69:6d:29:05:3b:59:e1:88: d4:88:b3:b3:aa:b1:6a:17:45:bc:3e:bd:cd:27:4e:4f:ae:46: fb:70:5e:c4:ec:b8:ec:4a:c3:93:ea:c7:21:df:5d:04:0a:9b: 15:3f:d5:14:07:e7:3b:dc:83:a5:c3:eb:2c:86:14:83:28:94: a0:32:78:d9:52:45:8f:44:06:b6:4b:87:67:18:5b:55:96:86: 52:44:0f:d0:d5:f9:06:00:b7:c1:6f:07:30:da:63:92:58:29: a6:1d:fb:40:78:86:fe:85:d3:8a:e1:90:ec:9b:6f:4f:9d:69: 1f:c3:0c:a5:45:b5:d9:7c:fd:fd:a2:ff:d6:2a:39:3f:42:7d: 1c:ce:40:6c:24:b4:1c:07:1b:ff:ca:8d:57:a6:f3:01:5c:84: 2d:fb:40:6b:8c:5f:fa:7b:91:d0:ff:ea:f0:c3:7a:13:6f:8c: ca:35:c8:31:50:9b:2f:a2:a5:02:70:9d:41:e7:cd:c5:d3:58: 07:f0:9a:5b:ce:3d:0f:10:5e:37:b4:e9:39:2d:60:84:1d:a2: a2:e0:f8:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjYwMzAxMjMyMDEyWhcNMjYwMzA4MjMyMDEyWjAYMRYwFAYD VQQDEw02OWE0YzlhZi1mY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PnN1DLx5TcFx34XnUQ+30VSfzplqu7MtuU5dqeJXqx5aY+GB8q4NEfUJYKM Wx/1gldSYpekV3ZpKKVveAtAjBLJtpASVe4U5+nXwdJxT3eOa0lfgpDNykCe20xS Gho1/SjmjTOge/BA+Wvm9EICKVJyjoOMxJ4pLTcNuBbgWAp2NKoAqd98VgdxQvcn Gc0+l6p+sN+6vPivOkVIfbBpF77XHhDMhpGdYDN0rJT6dp7MjauRjnYxFOZs2Ofs LRo7ileRyxE3KQBVv7JkImR3Hn9vX4Au6O466O1hgfmGVTEZvaOOpTLbKhy5Nxcz y9yj0et6f71PNKZRXjLApog2FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEMgdg1G W2J/8A1soSZlFn0JfOi+MB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP0iZ1NAN/lPCZFzOlsJE+uHKxGOLmEizBRfECO/6hoh1dgdH1rdZBVu/LjBT SGltKQU7WeGI1Iizs6qxahdFvD69zSdOT65G+3BexOy47ErDk+rHId9dBAqbFT/V FAfnO9yDpcPrLIYUgyiUoDJ42VJFj0QGtkuHZxhbVZaGUkQP0NX5BgC3wW8HMNpj klgpph37QHiG/oXTiuGQ7JtvT51pH8MMpUW12Xz9/aL/1io5P0J9HM5AbCS0HAcb /8qNV6bzAVyELftAa4xf+nuR0P/q8MN6E2+MyjXIMVCbL6KlAnCdQefNxdNYB/Ca W849DxBeN7TpOS1ghB2iouD4jQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:53:28 2026 by rpki-client