$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft File: KoE65dYVKWBF2z4sQsuPzaxq0gw.mft (raw, json) Hash identifier: /ob8mlzIp8Q8+HYlw3Zw1brFlbjri5xHYp1JRz8067M= Subject key identifier: EF:45:36:52:2D:CE:B2:6A:FC:C9:71:50:BA:0B:F9:08:0B:EE:49:EB Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft Manifest number: 021B Signing time: Mon 02 Mar 2026 00:22:39 +0000 Manifest this update: Mon 02 Mar 2026 00:22:37 +0000 Manifest next update: Mon 09 Mar 2026 00:22:37 +0000 Files and hashes: 1: KoE65dYVKWBF2z4sQsuPzaxq0gw.crl (hash: 9fx0P/cKfYJUb0Mciyxi5xxGF5cWlAUkmu3dNEL30dI=) 2: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (hash: 72/bCWar4kI1SS9FjdRKOsQjDQzMinFfK2s3pr0xemY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8, serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: Mar 2 00:22:37 2026 GMT Not After : Mar 9 00:22:37 2026 GMT Subject: CN=69a4d84e-9d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a8:f6:71:4f:56:8c:48:eb:0f:84:89:d4:0f: 7a:b7:52:61:df:93:74:b6:47:2e:c0:b1:36:da:3d: 43:6e:58:92:93:73:0c:33:ac:92:1f:c1:47:41:dd: 73:f7:06:e2:1d:3b:0b:ee:76:70:98:24:18:d6:96: df:5a:2e:89:77:fa:2d:81:38:3d:ac:8b:ed:1c:82: 41:62:a2:b4:ba:e8:df:ee:e1:1a:21:af:1a:69:cb: 36:24:64:ac:1a:85:8f:76:8f:33:34:e2:c7:5a:9e: 75:a2:70:41:b4:df:22:ee:13:76:11:1c:04:aa:69: f5:23:af:85:70:bc:11:4c:cb:49:9f:e1:84:4d:24: a2:93:b2:6c:85:52:90:c6:b5:a2:d9:3e:7e:b8:9c: ec:32:f2:5f:6e:d7:59:8d:ea:dc:59:09:df:d9:fe: 0c:db:48:e9:8d:e1:db:63:68:d3:1b:c1:72:9e:d9: 87:31:27:d9:c3:73:88:4d:b0:76:e6:ff:14:f2:29: 22:5d:c6:ac:91:85:69:d1:30:56:6f:dd:9c:a1:f4: 4b:27:1e:2e:0a:5c:0d:04:06:36:dc:f8:a8:b8:51: ca:70:31:ae:b9:c1:4f:7c:6e:8a:0a:2a:eb:ba:81: f6:a9:ad:1a:e2:22:31:42:05:b1:60:a8:7b:de:a2: 23:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:45:36:52:2D:CE:B2:6A:FC:C9:71:50:BA:0B:F9:08:0B:EE:49:EB X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:d0:35:a4:6b:ad:96:ce:40:72:5c:3d:68:44:0c:9d:5d:da: 79:89:f0:a4:db:b0:9d:69:13:f5:d5:91:3d:50:d9:87:ec:ff: d5:23:3a:5a:09:ad:ff:d6:8e:9c:6d:0e:35:36:a8:00:15:5f: 01:76:b5:14:4e:64:ee:ee:f1:79:1d:42:ac:2d:dc:05:6b:43: 55:e4:d5:f1:5f:0e:07:c9:20:56:97:5d:9f:a6:7e:97:fb:f4: 1a:a9:d3:11:a0:a3:07:ad:7b:ac:8b:fc:e3:1a:26:5d:a3:f8: f0:08:16:9f:bf:c9:18:b4:88:42:53:77:6a:c6:81:d3:7a:0f: 4d:2c:5d:3f:81:76:2e:7f:9b:8f:20:bd:8a:08:0f:09:1d:18: 35:7c:9a:f3:53:5d:4a:02:ab:e7:1d:24:18:76:be:63:09:a3: d9:97:1f:2d:04:a0:e9:b4:4c:ed:1d:97:c1:ec:a9:9a:eb:47: a4:b0:7d:d4:c1:1c:4b:46:d4:bd:20:bd:eb:95:3c:86:9c:18: 20:6f:e2:8e:e5:87:6d:a6:73:6f:20:d2:8a:26:5c:d2:cf:d7: da:c0:e9:2a:8c:f1:5f:4d:fc:9e:a8:40:2e:67:05:d1:51:23: ab:5b:75:9e:f2:42:f6:da:e0:47:dc:4b:04:ce:64:ef:b3:2d: 37:cd:78:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCRjgxMTAvBgNVBAUTKDJBODEzQUU1RDYxNTI5NjA0NURCM0UyQzQyQ0I4RkNE QUM2QUQyMEMwHhcNMjYwMzAyMDAyMjM3WhcNMjYwMzA5MDAyMjM3WjAYMRYwFAYD VQQDEw02OWE0ZDg0ZS05ZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6j2cU9WjEjrD4SJ1A96t1Jh35N0tkcuwLE22j1DbliSk3MMM6ySH8FHQd1z 9wbiHTsL7nZwmCQY1pbfWi6Jd/otgTg9rIvtHIJBYqK0uujf7uEaIa8aacs2JGSs GoWPdo8zNOLHWp51onBBtN8i7hN2ERwEqmn1I6+FcLwRTMtJn+GETSSik7JshVKQ xrWi2T5+uJzsMvJfbtdZjercWQnf2f4M20jpjeHbY2jTG8FyntmHMSfZw3OITbB2 5v8U8ikiXcaskYVp0TBWb92cofRLJx4uClwNBAY23PiouFHKcDGuucFPfG6KCirr uoH2qa0a4iIxQgWxYKh73qIj2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO9FNlIt zrJq/MlxULoL+QgL7knrMB8GA1UdIwQYMBaAFCqBOuXWFSlgRds+LELLj82satIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0JGOC9BMjJCRDE1OEUw MTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktXQkYyejRzUXN1UHpheHEw Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0JGOC9BMjJCRDE1OEUwMTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktX QkYyejRzUXN1UHpheHEwZ3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYdA1pGutls5Aclw9aEQMnV3aeYnwpNuwnWkT9dWRPVDZh+z/1SM6Wgmt/9aO nG0ONTaoABVfAXa1FE5k7u7xeR1CrC3cBWtDVeTV8V8OB8kgVpddn6Z+l/v0GqnT EaCjB617rIv84xomXaP48AgWn7/JGLSIQlN3asaB03oPTSxdP4F2Ln+bjyC9iggP CR0YNXya81NdSgKr5x0kGHa+Ywmj2ZcfLQSg6bRM7R2XweypmutHpLB91MEcS0bU vSC965U8hpwYIG/ijuWHbaZzbyDSiiZc0s/X2sDpKozxX038nqhALmcF0VEjq1t1 nvJC9trgR9xLBM5k77MtN814wA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:17:16 2026 by rpki-client