$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: WbH+LqAYF7qWv6wJJOq4ErX9uxYlX7V2MKZojbVUEzY= Subject key identifier: 7D:61:71:7D:19:8D:28:14:A7:1E:85:A4:D8:B8:FC:83:04:FB:19:91 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 01CC Signing time: Sun 01 Mar 2026 04:26:23 +0000 Manifest this update: Sun 01 Mar 2026 04:26:23 +0000 Manifest next update: Sun 08 Mar 2026 04:26:23 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: GJjvgdS/HCNevjifBJ2s3zZt6YH8QUOf4eww+XI4sC4=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: E2MEy59tbIM1Maudg/5GMAqeAqrNk3TYYaN2opqqFDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Mar 1 04:26:23 2026 GMT Not After : Mar 8 04:26:23 2026 GMT Subject: CN=69a3bfef-7a0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:26:15:4c:15:98:b4:dc:5f:c3:6c:ce:92:82: 9e:98:24:77:b6:b8:84:ee:11:16:20:05:9d:64:5a: 6c:d7:f1:97:51:99:09:9d:8d:a0:ec:4e:fb:cc:48: f1:fe:0b:08:23:4f:e9:05:0b:c8:6b:7e:f1:40:81: 72:d4:a1:23:f3:d5:40:d0:f4:cc:70:85:78:c0:16: 26:aa:57:de:cb:0a:74:e7:1e:bc:8a:d9:4e:30:c1: 7d:54:cc:e9:2f:cc:3f:9d:db:76:01:9f:a0:51:d9: e0:d9:09:60:19:42:31:dd:b0:fa:7b:24:12:5d:2d: e1:3d:f6:06:95:35:26:37:00:77:94:0f:cd:f4:9e: 07:a7:10:42:45:21:9e:81:d6:51:12:50:4d:b4:97: 89:26:f1:77:42:06:22:c2:d1:fe:81:ff:3e:0f:a9: bc:3d:e9:d0:da:74:b9:b1:15:d2:91:7d:0d:34:07: 62:0d:57:72:a8:53:58:40:ea:61:85:98:f4:54:41: 11:3c:92:2d:3d:33:a3:ac:e0:09:89:b1:0b:89:47: 45:45:53:1c:46:ba:64:3e:15:f6:ab:75:84:1a:fd: 19:00:ab:55:ef:73:a5:62:2e:9f:de:df:51:40:71: 23:00:4b:92:60:eb:cb:e7:43:51:5b:3d:45:19:64: 38:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:61:71:7D:19:8D:28:14:A7:1E:85:A4:D8:B8:FC:83:04:FB:19:91 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:c1:9e:67:53:70:c0:5e:89:59:66:e7:c8:45:4b:18:fa:0c: 86:1d:15:9b:95:0f:bc:03:1b:dc:8b:e4:d2:25:c6:7b:ff:f2: 65:a2:3b:4b:a9:f6:bf:f7:80:59:b2:20:05:a4:3d:56:d6:d5: 16:f2:3c:0a:5e:83:7f:00:91:de:b4:8d:db:df:51:7d:8e:55: 98:53:7f:c0:27:d0:8c:28:ef:30:63:cf:d8:1e:4e:4e:da:a8: dd:36:2b:67:4b:64:c3:c4:a0:a2:f3:40:7f:d8:62:0e:b9:e4: 81:e5:a5:ad:41:e2:a1:46:5f:a0:93:1a:7f:39:29:6d:57:ad: e0:12:a0:bf:78:c0:3d:93:4d:35:9e:f8:98:46:cd:98:10:85: c0:cd:18:ac:b2:4c:c0:8d:96:83:ea:f8:b3:a1:9c:c8:a4:44: bd:52:13:6a:03:00:62:18:46:2e:27:d5:48:b7:38:68:3a:c0: c1:bc:04:1d:9c:e3:5d:6a:0c:73:3d:03:ef:37:be:64:fe:f5: 2e:2e:ec:4b:2a:80:50:ec:c9:7c:e1:bd:f0:f8:7c:e6:ee:21: 56:90:b3:be:c3:ac:ee:51:18:89:64:1a:b6:d0:04:77:96:dc: 8c:b5:67:ac:c2:69:42:37:06:d6:fd:1d:cf:56:4b:07:01:72: 04:b1:14:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjYwMzAxMDQyNjIzWhcNMjYwMzA4MDQyNjIzWjAYMRYwFAYD VQQDDA02OWEzYmZlZi03YTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SYVTBWYtNxfw2zOkoKemCR3triE7hEWIAWdZFps1/GXUZkJnY2g7E77zEjx /gsII0/pBQvIa37xQIFy1KEj89VA0PTMcIV4wBYmqlfeywp05x68itlOMMF9VMzp L8w/ndt2AZ+gUdng2QlgGUIx3bD6eyQSXS3hPfYGlTUmNwB3lA/N9J4HpxBCRSGe gdZRElBNtJeJJvF3QgYiwtH+gf8+D6m8PenQ2nS5sRXSkX0NNAdiDVdyqFNYQOph hZj0VEERPJItPTOjrOAJibELiUdFRVMcRrpkPhX2q3WEGv0ZAKtV73OlYi6f3t9R QHEjAEuSYOvL50NRWz1FGWQ4EwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH1hcX0Z jSgUpx6FpNi4/IME+xmRMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF8GeZ1NwwF6JWWbnyEVLGPoMhh0Vm5UPvAMb3Ivk0iXGe//yZaI7S6n2v/eA WbIgBaQ9VtbVFvI8Cl6DfwCR3rSN299RfY5VmFN/wCfQjCjvMGPP2B5OTtqo3TYr Z0tkw8SgovNAf9hiDrnkgeWlrUHioUZfoJMafzkpbVet4BKgv3jAPZNNNZ74mEbN mBCFwM0YrLJMwI2Wg+r4s6GcyKREvVITagMAYhhGLifVSLc4aDrAwbwEHZzjXWoM cz0D7ze+ZP71Li7sSyqAUOzJfOG98Ph85u4hVpCzvsOs7lEYiWQattAEd5bcjLVn rMJpQjcG1v0dz1ZLBwFyBLEURg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:36:18 2026 by rpki-client