$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: KG8VmzCLOAuDXPfg7P3/yBUA+xEqbpjjy0wMGcwYNE4= Subject key identifier: 68:3F:77:94:CF:97:96:11:8A:15:9C:57:76:6D:F7:A5:76:8D:34:4F Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: B3 Signing time: Sun 01 Mar 2026 08:21:38 +0000 Manifest this update: Sun 01 Mar 2026 08:21:37 +0000 Manifest next update: Sun 08 Mar 2026 08:21:37 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: 6F3W0BDlJA/kZ3X2yfODvOU2fqOSjUzps8iYItfUfek=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: VXXRhTLok9KmSWKm9VOdzclE8xHVvdHguqGzdC82who=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Mar 1 08:21:37 2026 GMT Not After : Mar 8 08:21:37 2026 GMT Subject: CN=69a3f711-d85f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:92:e0:1f:80:4a:7b:11:11:f8:9e:3f:45: 32:2b:90:8b:b2:a3:38:fb:01:42:f0:7a:c2:18:ee: d4:b1:8c:b6:0d:cd:ed:fb:8f:46:96:b3:c6:61:7f: 71:d8:1c:55:30:ed:1e:be:97:20:1b:75:45:8e:86: fb:22:fb:56:42:7b:11:66:1a:36:66:f7:4d:44:4f: 7a:1a:59:94:f4:6b:18:61:43:6e:f5:06:f6:5b:e3: cf:71:9e:58:0a:39:f7:5d:69:47:f8:67:d1:f2:44: f5:db:cc:a6:ab:09:da:30:51:02:95:91:80:16:c9: 4b:b7:e9:af:5e:26:78:f8:8e:59:0c:9f:91:b6:0c: 6b:d8:c1:ce:03:66:ba:0a:a7:10:bb:52:83:d1:c2: 60:a0:16:ad:9b:2d:43:74:0e:25:fd:9c:80:73:aa: b8:95:ed:02:7a:67:26:2f:36:31:51:d2:f7:e5:7f: 5a:d7:ac:50:74:72:e7:d8:5c:a9:10:f6:19:c5:37: a2:63:89:bc:f8:9e:2c:f3:7c:3d:a9:6f:5d:18:80: 9c:b2:de:14:ab:fd:3c:21:ee:eb:11:60:56:2f:8a: df:ec:91:38:ff:94:6d:0c:db:04:c2:6c:b2:47:58: a1:5b:a5:25:13:0f:7a:67:36:a6:c7:ee:60:4b:36: 8f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:3F:77:94:CF:97:96:11:8A:15:9C:57:76:6D:F7:A5:76:8D:34:4F X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:16:80:7f:60:c9:ec:b7:08:c0:50:95:a1:51:e4:9d:f0:d0: db:fe:28:4e:7c:05:53:26:a0:86:56:94:a1:b0:45:0d:c6:4d: 06:45:57:01:b5:3c:f1:88:9d:79:d5:a4:53:dd:c2:ea:7d:1e: 04:7c:6e:0b:73:19:33:46:64:cf:19:08:2b:a3:49:a9:3c:63: 2d:8f:c0:4c:95:e6:a2:9c:1d:53:79:17:54:13:88:47:a9:e9: 85:ae:46:56:e3:bc:2b:43:df:05:c5:1b:88:c4:88:29:72:76: fd:23:77:4e:5d:78:ff:44:4b:4b:ce:39:8f:18:17:60:13:6a: 85:01:37:d7:bc:79:be:41:83:74:29:56:70:57:68:58:77:87: 4b:c8:8a:f0:ed:26:a8:5b:b4:29:19:01:7e:b2:ce:84:12:f4: d9:ce:cd:7c:7f:f3:4a:59:ff:47:c0:4a:7a:72:52:3b:30:23: 63:fd:ea:71:e3:47:35:db:a1:b7:f7:7f:48:c0:c4:62:93:87: 1a:68:d3:40:73:64:22:8e:1e:94:97:c0:7a:93:f3:e9:fa:7f: 9d:44:01:44:8f:55:49:29:e6:ff:aa:36:03:fd:de:5c:59:57: 3a:7e:8a:77:d2:3b:80:a5:dc:42:33:66:a4:d0:c0:7e:dd:75: ac:ad:e7:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyODcxMTAvBgNVBAUTKDJBNDVBNDFENjBFMkYxMDREM0REMzlDODZGMTRCQzU5 MDA4ODNGNEIwHhcNMjYwMzAxMDgyMTM3WhcNMjYwMzA4MDgyMTM3WjAYMRYwFAYD VQQDEw02OWEzZjcxMS1kODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm+S4B+ASnsREfieP0UyK5CLsqM4+wFC8HrCGO7UsYy2Dc3t+49GlrPGYX9x 2BxVMO0evpcgG3VFjob7IvtWQnsRZho2ZvdNRE96GlmU9GsYYUNu9Qb2W+PPcZ5Y Cjn3XWlH+GfR8kT128ymqwnaMFEClZGAFslLt+mvXiZ4+I5ZDJ+Rtgxr2MHOA2a6 CqcQu1KD0cJgoBatmy1DdA4l/ZyAc6q4le0CemcmLzYxUdL35X9a16xQdHLn2Fyp EPYZxTeiY4m8+J4s83w9qW9dGICcst4Uq/08Ie7rEWBWL4rf7JE4/5RtDNsEwmyy R1ihW6UlEw96Zzamx+5gSzaPiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGg/d5TP l5YRihWcV3Zt96V2jTRPMB8GA1UdIwQYMBaAFCpFpB1g4vEE0905yG8UvFkAiD9L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI4Ny8zNzI3OEMxNjA0 NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThRVFQzVG5JYnhTOFdRQ0lQ MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI4Ny8zNzI3OEMxNjA0NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThR VFQzVG5JYnhTOFdRQ0lQMHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArxaAf2DJ7LcIwFCVoVHknfDQ2/4oTnwFUyaghlaUobBFDcZNBkVXAbU88Yid edWkU93C6n0eBHxuC3MZM0ZkzxkIK6NJqTxjLY/ATJXmopwdU3kXVBOIR6npha5G VuO8K0PfBcUbiMSIKXJ2/SN3Tl14/0RLS845jxgXYBNqhQE317x5vkGDdClWcFdo WHeHS8iK8O0mqFu0KRkBfrLOhBL02c7NfH/zSln/R8BKenJSOzAjY/3qceNHNduh t/d/SMDEYpOHGmjTQHNkIo4elJfAepPz6fp/nUQBRI9VSSnm/6o2A/3eXFlXOn6K d9I7gKXcQjNmpNDAft11rK3nrw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:56:21 2026 by rpki-client