$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: fvGVNZ5dThV0oiNvAmsfK+gH/FGc9mS2P8MAwl0oMQ0= Subject key identifier: 1E:3D:6B:7C:28:A9:F2:D0:0F:C2:5D:31:1B:6C:B7:09:E5:1A:92:18 Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0B12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0AF5 Signing time: Sat 28 Feb 2026 19:38:01 +0000 Manifest this update: Sat 28 Feb 2026 19:38:00 +0000 Manifest next update: Sat 07 Mar 2026 19:38:00 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: YDYcMoztsVsT97Kpa94dCmvHuygKZXXBuE3rQm0oRmk=) 2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: 0+FYOd7cEHhPhl5/EXB24cdR/+U1VPktvi4vWKzamkI=) 3: 53C1347EB60D11F0AD4B0751C4F9AE02.roa (hash: vbzoDXxoxDAXMA+SBS3V9UK64+8j7fYiBs+VYN+R5aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Feb 28 19:38:00 2026 GMT Not After : Mar 7 19:38:00 2026 GMT Subject: CN=69a34418-5e41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fb:1f:ed:9d:4a:cb:97:42:e1:3b:95:36:30: 92:4a:77:3e:99:df:2c:d6:61:64:04:14:87:73:ed: 7c:e5:a4:19:3c:79:28:60:3d:c5:31:ff:2e:77:54: 99:7b:31:af:4f:90:5e:60:ab:10:d9:37:61:33:ff: f3:bd:2b:8e:e5:e9:ee:17:9f:5b:5d:a1:09:7d:f8: a7:59:c7:67:9b:74:e7:b6:b8:25:c4:5e:e3:68:e5: e2:01:d4:67:cd:c7:a8:54:fb:15:17:7e:cc:21:77: 56:87:85:63:06:90:7b:d6:9b:4f:25:fb:f1:37:6a: 27:8a:e7:ba:68:4f:f7:03:39:c5:1f:e0:88:b5:1c: c8:e4:e1:29:e6:ea:50:5f:ca:84:c9:e0:cc:86:22: 04:78:68:e1:21:c7:32:3c:a5:a5:a0:c6:0d:62:fe: 94:c7:e8:78:1d:ba:4f:1b:d0:6e:0c:5b:a7:6e:b9: a6:31:1c:9c:c0:2c:76:57:81:d0:cd:8a:a3:f4:5e: e1:c0:96:4c:c6:6a:38:f4:45:b5:4d:e2:9d:1f:a0: 2d:b2:bf:88:3d:00:ed:e9:7f:fa:e5:b8:a7:39:80: f5:0c:2d:c3:65:cf:6f:65:be:8f:f7:b5:9c:a6:d9: d0:d3:17:a9:9f:90:74:af:41:48:74:9a:4a:d3:ec: ef:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:3D:6B:7C:28:A9:F2:D0:0F:C2:5D:31:1B:6C:B7:09:E5:1A:92:18 X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:25:1f:ae:f5:6c:49:6f:2b:a8:2d:99:53:ca:26:6c:7e:b4: 84:d4:53:86:a4:50:d2:7b:54:5f:74:9f:13:43:3e:c4:7c:7c: da:67:bd:1d:9e:83:ed:00:d2:2d:86:a0:61:5b:98:6b:80:79: 3a:a5:9d:b5:66:8b:e2:f1:da:e2:aa:8a:b3:56:da:5b:8a:ac: 91:bb:b9:06:c4:3e:3d:ba:4a:3e:30:7d:eb:b1:aa:fd:23:83: a6:bb:70:57:6e:0c:e4:3f:cd:93:54:e3:de:47:6f:c3:6f:16: 8f:f7:46:70:4c:46:d4:bf:86:da:83:70:b6:42:2f:09:03:7e: db:da:1a:a5:20:ec:cb:0c:e3:3f:8c:da:53:28:39:b3:3e:3e: 12:47:32:1b:40:a5:57:ca:52:d8:8f:c7:35:cd:a1:64:d8:00: 8a:99:5c:26:a1:db:db:df:fe:ea:17:d4:18:fa:f5:c6:e5:b5: 21:3d:51:18:55:be:0a:b4:6d:de:83:73:00:c1:15:46:fb:bb: 8a:fa:3e:62:d7:73:32:5c:32:fd:02:5d:58:30:b8:f1:82:01: 97:9a:04:a8:fd:da:22:6d:61:89:8a:fa:1b:f6:95:34:73:bf: ab:8d:a4:c3:1c:dc:08:a3:3b:b8:44:f0:e0:89:e4:46:fd:1b: 7f:9b:63:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjYwMjI4MTkzODAwWhcNMjYwMzA3MTkzODAwWjAYMRYwFAYD VQQDDA02OWEzNDQxOC01ZTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/sf7Z1Ky5dC4TuVNjCSSnc+md8s1mFkBBSHc+185aQZPHkoYD3FMf8ud1SZ ezGvT5BeYKsQ2TdhM//zvSuO5enuF59bXaEJffinWcdnm3TntrglxF7jaOXiAdRn zceoVPsVF37MIXdWh4VjBpB71ptPJfvxN2oniue6aE/3AznFH+CItRzI5OEp5upQ X8qEyeDMhiIEeGjhIccyPKWloMYNYv6Ux+h4HbpPG9BuDFunbrmmMRycwCx2V4HQ zYqj9F7hwJZMxmo49EW1TeKdH6Atsr+IPQDt6X/65binOYD1DC3DZc9vZb6P97Wc ptnQ0xepn5B0r0FIdJpK0+zvUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB49a3wo qfLQD8JdMRtstwnlGpIYMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqiUfrvVsSW8rqC2ZU8ombH60hNRThqRQ0ntUX3SfE0M+xHx82me9HZ6D7QDS LYagYVuYa4B5OqWdtWaL4vHa4qqKs1baW4qskbu5BsQ+PbpKPjB967Gq/SODprtw V24M5D/Nk1Tj3kdvw28Wj/dGcExG1L+G2oNwtkIvCQN+29oapSDsywzjP4zaUyg5 sz4+EkcyG0ClV8pS2I/HNc2hZNgAiplcJqHb29/+6hfUGPr1xuW1IT1RGFW+CrRt 3oNzAMEVRvu7ivo+YtdzMlwy/QJdWDC48YIBl5oEqP3aIm1hiYr6G/aVNHO/q42k wxzcCKM7uETw4InkRv0bf5tjaw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:49:55 2026 by rpki-client