$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: GnoGDoIga7o3gA2F8AL6aeX0za1ZN4+NJ61Rbltl7XY= Subject key identifier: 9E:A9:1C:52:5B:DC:F4:35:29:C5:81:75:48:8E:2F:95:B5:B4:8E:CF Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C88 Signing time: Sat 28 Feb 2026 18:45:41 +0000 Manifest this update: Sat 28 Feb 2026 18:45:41 +0000 Manifest next update: Sat 07 Mar 2026 18:45:41 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: X2pXHJX56O17UFYmEteKRV7zPYQ6M9tJyCnEnQX2b5E=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Feb 28 18:45:41 2026 GMT Not After : Mar 7 18:45:41 2026 GMT Subject: CN=69a337d5-fbb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cf:2b:bf:a9:52:c9:5c:99:a4:47:e8:9b:60: 64:19:bc:e9:2f:07:8a:d6:18:1b:fe:fd:df:a6:90: 18:44:6e:dd:8d:d5:51:8a:ea:6a:6e:f6:89:ec:f5: 22:fa:e8:bf:ae:e3:b6:67:01:7e:82:2f:a4:50:61: 4c:5b:08:26:d2:d6:5b:98:c3:13:c9:81:d8:cc:1c: 01:0c:47:d6:22:7a:cc:f6:19:c7:78:a0:8e:00:ca: 13:e2:54:cf:82:74:a3:42:07:f6:55:78:55:d0:32: 73:ac:98:c3:95:19:26:25:7d:62:4f:20:7a:5c:e9: 86:e3:7b:8e:cf:ce:c1:65:a6:34:2d:28:04:35:e0: 2f:2d:e0:0b:4b:f5:92:d8:41:b4:47:a4:43:5c:3a: 77:e5:71:ce:a6:5b:a9:65:2d:c7:31:71:02:12:29: 65:70:ad:46:a2:49:51:12:69:a9:91:6b:35:c9:1c: a5:43:1f:cb:b6:00:e9:12:e0:82:09:f4:99:1e:cb: 5f:64:7e:05:47:a3:7f:0e:62:de:74:80:75:6b:e5: 88:98:10:bb:f1:2c:e8:20:86:e9:34:fe:4d:43:17: 32:3f:69:1c:2e:65:3d:0c:9f:e9:6c:7f:45:bf:96: 27:be:4a:b8:e2:d1:13:c4:48:43:dd:b5:1f:fe:a2: 76:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A9:1C:52:5B:DC:F4:35:29:C5:81:75:48:8E:2F:95:B5:B4:8E:CF X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:f4:87:bf:30:07:32:35:b7:c9:cd:65:56:cb:d9:a7:63:d0: f8:43:ce:99:33:4e:bc:04:0f:ca:1c:ca:9d:6a:84:c3:a3:d2: 50:f7:5a:8b:32:2f:69:38:bd:07:47:5e:83:72:ee:19:56:f0: 49:fa:05:ca:a7:4b:26:d2:4e:81:cb:d0:3a:a9:b1:51:54:84: 27:40:b0:4b:cf:0a:75:a0:b1:dd:8a:3c:31:3a:47:0b:be:62: 3f:4c:bc:28:fc:8e:58:88:25:9c:f4:7b:d8:01:4a:2f:97:0c: 27:30:a2:bb:29:04:dc:98:89:c7:e7:fc:2e:c8:64:68:0a:d2: 27:83:9c:fe:11:ce:6c:5b:f0:be:6f:f8:4a:4d:52:e5:03:05: 27:90:ac:ed:5d:3b:5e:c1:73:6d:05:22:68:fd:a7:5b:b9:3c: 94:93:39:87:b8:f8:5d:d6:df:ee:32:7a:de:2f:a4:64:42:35: 2e:8e:0d:f3:e2:f5:ef:dd:65:49:f5:e6:63:8b:c4:29:c6:58: 2f:ac:fc:71:f0:82:ba:ac:99:9c:b5:a7:bf:dc:8d:06:a9:9e: 8a:11:9f:63:79:8d:21:13:e5:17:c0:66:56:3c:2f:0c:49:16: 78:af:a8:c1:2d:8f:19:f2:9a:bd:0e:9c:8e:b1:59:de:2a:d8: 87:0c:6b:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjYwMjI4MTg0NTQxWhcNMjYwMzA3MTg0NTQxWjAYMRYwFAYD VQQDDA02OWEzMzdkNS1mYmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1s8rv6lSyVyZpEfom2BkGbzpLweK1hgb/v3fppAYRG7djdVRiupqbvaJ7PUi +ui/ruO2ZwF+gi+kUGFMWwgm0tZbmMMTyYHYzBwBDEfWInrM9hnHeKCOAMoT4lTP gnSjQgf2VXhV0DJzrJjDlRkmJX1iTyB6XOmG43uOz87BZaY0LSgENeAvLeALS/WS 2EG0R6RDXDp35XHOplupZS3HMXECEillcK1GoklREmmpkWs1yRylQx/LtgDpEuCC CfSZHstfZH4FR6N/DmLedIB1a+WImBC78SzoIIbpNP5NQxcyP2kcLmU9DJ/pbH9F v5Ynvkq44tETxEhD3bUf/qJ2zwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ6pHFJb 3PQ1KcWBdUiOL5W1tI7PMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh/SHvzAHMjW3yc1lVsvZp2PQ+EPOmTNOvAQPyhzKnWqEw6PSUPdaizIvaTi9 B0deg3LuGVbwSfoFyqdLJtJOgcvQOqmxUVSEJ0CwS88KdaCx3Yo8MTpHC75iP0y8 KPyOWIglnPR72AFKL5cMJzCiuykE3JiJx+f8LshkaArSJ4Oc/hHObFvwvm/4Sk1S 5QMFJ5Cs7V07XsFzbQUiaP2nW7k8lJM5h7j4Xdbf7jJ63i+kZEI1Lo4N8+L1791l SfXmY4vEKcZYL6z8cfCCuqyZnLWnv9yNBqmeihGfY3mNIRPlF8BmVjwvDEkWeK+o wS2PGfKavQ6cjrFZ3irYhwxrrw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:31:39 2026 by rpki-client