$ rpki-client -vvf rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft File: khLuorkaMmYPdScf7IWJswnDifA.mft (raw, json) Hash identifier: WjleWOAq/rkdMU+EsQIKdGn7dgoWIQiudOWCgywz1bw= Subject key identifier: 03:74:30:A3:7F:D0:67:C3:AF:2C:FB:35:A4:29:79:D4:A6:AA:E8:B8 Authority key identifier: 92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 Certificate issuer: /CN=A91999F5/serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Certificate serial: 042C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft Manifest number: 0424 Signing time: Sun 01 Mar 2026 01:11:29 +0000 Manifest this update: Sun 01 Mar 2026 01:11:28 +0000 Manifest next update: Sun 08 Mar 2026 01:11:28 +0000 Files and hashes: 1: khLuorkaMmYPdScf7IWJswnDifA.crl (hash: xS/p9oMbZObdrD5UmZJiKxiMKccPnOqVSnoyixPE1iI=) 2: F84777FCD9DC11EDA4083A71C4F9AE02.roa (hash: CoOJrAcKTrWo0nejzXhp58RWFVEIO9a7vZX9DurBX3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1068 (0x42c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91999F5, serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Validity Not Before: Mar 1 01:11:28 2026 GMT Not After : Mar 8 01:11:28 2026 GMT Subject: CN=69a39240-cf63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:15:18:87:7d:16:88:e8:e1:af:59:73:f7:15: e2:b1:88:47:35:ee:eb:48:24:ab:30:53:f7:65:ae: 4c:d6:2d:26:38:5f:b2:1f:aa:d4:66:ab:f5:d3:22: aa:6d:da:8e:16:e9:d2:a0:28:11:b8:41:1c:ae:01: 50:31:0e:f7:ce:2e:0f:ad:71:17:ba:82:77:b8:5c: 79:c2:88:b1:b7:f8:d0:0c:e2:1c:66:3e:c3:05:3f: c0:d2:8f:e5:2e:d5:fc:c0:18:21:eb:95:84:f9:7d: cf:7b:ab:06:6f:9a:14:f6:a7:84:7d:86:76:03:6f: ce:e7:e5:30:54:bb:41:18:16:f8:c2:43:ba:d1:5c: 0c:a2:ac:fa:0e:68:94:66:08:a9:ac:0a:20:29:f1: b0:6f:38:f1:5d:6b:02:4d:57:e9:54:1d:72:46:1b: 16:64:bc:d0:25:bd:61:a7:dc:9c:c0:7f:7e:43:49: 70:c5:fe:cb:a3:2a:18:db:88:f8:47:b2:05:18:94: 1f:76:b8:73:81:6c:e1:0c:77:b2:4c:bb:fb:38:11: 09:2b:ed:60:e7:4a:33:71:01:ab:9d:e1:2d:a2:d8: 8f:2b:db:09:65:e9:06:b1:4b:71:1f:7f:a2:97:ae: f6:d0:bd:49:5b:56:18:de:b5:c1:05:0f:01:0c:b4: 3c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:74:30:A3:7F:D0:67:C3:AF:2C:FB:35:A4:29:79:D4:A6:AA:E8:B8 X509v3 Authority Key Identifier: keyid:92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:3c:c8:b9:63:f1:a7:ea:44:a4:25:39:90:a6:bb:7e:c3:36: ec:51:40:5b:a1:4a:4c:70:02:f4:91:f7:09:d6:4b:21:0f:4f: df:64:10:29:12:2e:53:4e:68:11:a2:93:08:d8:ef:28:20:40: ed:db:c7:7d:9d:cc:47:37:4c:ca:8a:64:d0:b4:b2:0f:97:f3: 15:5a:8f:ac:fc:3c:a4:8a:05:a0:fb:cc:73:7a:c0:bc:f5:7f: 4c:54:6c:7f:51:22:0b:70:eb:f2:29:47:a0:62:51:fa:85:92: e6:ea:80:7d:b5:bb:58:18:39:d7:c8:88:ff:39:63:84:08:b2: c1:4a:26:5b:2c:69:43:be:d5:11:7d:94:c1:a1:e1:fd:f4:69: 75:59:eb:9b:8e:0e:25:24:46:da:4c:62:c7:99:9e:01:06:e9: 2b:da:74:ee:f6:29:65:70:e5:51:83:ef:47:ae:69:f1:4c:08: d5:13:7f:30:ba:a8:ea:9b:33:3b:d1:82:30:49:7b:1a:e3:ab: 38:30:6d:f1:5e:b8:cb:9e:30:1e:01:75:e3:ea:3e:24:c4:90: b4:b3:2b:9b:92:f9:ae:93:b3:bc:b3:da:be:68:95:a2:3e:f4: 2a:b8:bd:25:c0:68:f2:db:39:2c:db:54:c7:15:d8:6a:41:31: 61:3b:f5:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5RjUxMTAvBgNVBAUTKDkyMTJFRUEyQjkxQTMyNjYwRjc1MjcxRkVDODU4OUIz MDlDMzg5RjAwHhcNMjYwMzAxMDExMTI4WhcNMjYwMzA4MDExMTI4WjAYMRYwFAYD VQQDDA02OWEzOTI0MC1jZjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxUYh30WiOjhr1lz9xXisYhHNe7rSCSrMFP3Za5M1i0mOF+yH6rUZqv10yKq bdqOFunSoCgRuEEcrgFQMQ73zi4PrXEXuoJ3uFx5woixt/jQDOIcZj7DBT/A0o/l LtX8wBgh65WE+X3Pe6sGb5oU9qeEfYZ2A2/O5+UwVLtBGBb4wkO60VwMoqz6DmiU ZgiprAogKfGwbzjxXWsCTVfpVB1yRhsWZLzQJb1hp9ycwH9+Q0lwxf7LoyoY24j4 R7IFGJQfdrhzgWzhDHeyTLv7OBEJK+1g50ozcQGrneEtotiPK9sJZekGsUtxH3+i l6720L1JW1YY3rXBBQ8BDLQ89QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAN0MKN/ 0GfDryz7NaQpedSmqui4MB8GA1UdIwQYMBaAFJIS7qK5GjJmD3UnH+yFibMJw4nw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTlGNS82QTNEQjU3ODlG NzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1tWVBkU2NmN0lXSnN3bkRp ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTHVvcmthTW1ZUGRTY2Y3SVdKc3duRGlmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTlGNS82QTNEQjU3ODlGNzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1t WVBkU2NmN0lXSnN3bkRpZkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArTzIuWPxp+pEpCU5kKa7fsM27FFAW6FKTHAC9JH3CdZLIQ9P32QQKRIuU05o EaKTCNjvKCBA7dvHfZ3MRzdMyopk0LSyD5fzFVqPrPw8pIoFoPvMc3rAvPV/TFRs f1EiC3Dr8ilHoGJR+oWS5uqAfbW7WBg518iI/zljhAiywUomWyxpQ77VEX2UwaHh /fRpdVnrm44OJSRG2kxix5meAQbpK9p07vYpZXDlUYPvR65p8UwI1RN/MLqo6psz O9GCMEl7GuOrODBt8V64y54wHgF14+o+JMSQtLMrm5L5rpOzvLPavmiVoj70Kri9 JcBo8ts5LNtUxxXYakExYTv1UA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:15:06 2026 by rpki-client