$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: eGo7kcyrHHjX6eSX7Xy2RiYfSOIThJCVYVCGmdJAUUw= Subject key identifier: F5:F4:E1:66:AD:FD:D4:6E:5F:89:CE:53:15:81:B8:E5:4E:B0:EF:76 Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 01D9 Signing time: Sun 01 Mar 2026 04:15:48 +0000 Manifest this update: Sun 01 Mar 2026 04:15:47 +0000 Manifest next update: Sun 08 Mar 2026 04:15:47 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: TYrpr0q+nfj1W2VYyPvRa+X13nsEUDFPHFHwAEUqrEI=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: bUZufHm2YUJjKX7UE+iKB/iI+xqEJZ46mEmd8NCr+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Mar 1 04:15:47 2026 GMT Not After : Mar 8 04:15:47 2026 GMT Subject: CN=69a3bd73-0ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:76:9d:2b:6c:12:ce:4a:1c:69:9d:27:ec:0f: eb:49:69:85:42:c1:30:7a:23:68:1c:c1:36:29:27: af:ae:94:f6:4e:23:24:58:5e:3a:dd:d9:b6:68:87: eb:bf:b2:88:b5:9f:cb:1e:56:00:46:15:3a:8b:21: c8:97:a9:b2:70:32:54:b0:6f:4a:d5:7b:06:ba:b4: 05:2f:6c:f8:ec:69:6f:7c:cf:e7:bc:dc:31:ed:fb: 7c:99:83:25:21:4f:78:ea:ab:8a:74:c4:e4:86:2f: 60:1e:2e:e7:c9:07:39:23:9c:d3:2a:91:b4:1e:9e: 9c:5e:07:a6:5a:99:9d:af:7a:30:98:20:a2:2b:3a: 7e:a8:8d:1c:dd:19:7b:27:54:c3:88:00:af:c5:8b: c7:a7:5d:71:52:7d:67:0a:b7:5f:90:33:b0:f5:39: 88:20:e7:9d:f3:74:a3:59:66:af:4b:cd:b9:16:86: 81:65:a8:b0:b1:3e:a4:50:38:6f:c5:b2:b6:41:2e: 2b:6b:ef:60:73:81:dd:97:d7:65:e0:ef:be:41:90: b9:39:e9:08:0e:59:c4:a1:c0:3a:48:61:5f:9e:95: 27:26:44:46:e3:88:f7:33:27:a3:40:23:ef:96:d7: 9a:d8:e9:92:cc:6b:62:d6:5e:67:62:f9:0b:8a:5a: 94:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F4:E1:66:AD:FD:D4:6E:5F:89:CE:53:15:81:B8:E5:4E:B0:EF:76 X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:3a:43:cf:6a:c0:92:86:c3:b6:3f:da:3b:a1:c1:01:7d:e6: ce:ec:ea:8d:db:0c:69:3f:7b:25:c9:04:ad:00:f7:c5:73:9d: 57:cc:d3:73:68:d8:0d:80:98:7d:ad:8b:1d:db:ed:3a:2b:11: 8c:b4:28:56:93:5c:2d:15:ee:f3:14:ee:92:e3:f7:7d:41:ba: 2e:31:20:2c:75:0d:75:1f:18:42:44:1b:f4:da:d9:f8:8b:67: dd:5f:6f:8a:f6:ed:be:66:2d:98:33:93:c6:19:c8:19:99:16: 27:c3:bf:fe:fb:3a:65:f0:ca:26:64:b5:31:63:69:fe:f8:25: e8:0c:87:f5:43:2e:10:a2:06:96:15:71:41:15:0f:b1:00:ae: a4:19:58:32:c2:43:e9:64:4e:52:c9:b6:04:8a:51:ab:97:bc: 93:96:48:eb:90:85:b2:e3:43:07:c0:38:91:61:b7:7b:e4:bc: 5b:a6:b8:b5:c7:41:b6:40:fa:5a:c5:66:5b:ea:a8:89:57:98: a0:1f:57:1f:9e:7a:2c:82:7c:41:d8:0f:9a:35:f1:1c:d8:6a: 0b:d7:fc:de:98:62:eb:24:d8:ec:2d:9b:54:a8:45:bf:0a:39: 58:05:c1:ed:3b:29:86:e6:01:8c:8d:e4:b7:f0:28:15:26:4f: d5:0a:8f:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjYwMzAxMDQxNTQ3WhcNMjYwMzA4MDQxNTQ3WjAYMRYwFAYD VQQDDA02OWEzYmQ3My0wY2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XadK2wSzkocaZ0n7A/rSWmFQsEweiNoHME2KSevrpT2TiMkWF463dm2aIfr v7KItZ/LHlYARhU6iyHIl6mycDJUsG9K1XsGurQFL2z47GlvfM/nvNwx7ft8mYMl IU946quKdMTkhi9gHi7nyQc5I5zTKpG0Hp6cXgemWpmdr3owmCCiKzp+qI0c3Rl7 J1TDiACvxYvHp11xUn1nCrdfkDOw9TmIIOed83SjWWavS825FoaBZaiwsT6kUDhv xbK2QS4ra+9gc4Hdl9dl4O++QZC5OekIDlnEocA6SGFfnpUnJkRG44j3MyejQCPv ltea2OmSzGti1l5nYvkLilqUSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPX04Wat /dRuX4nOUxWBuOVOsO92MB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFzpDz2rAkobDtj/aO6HBAX3mzuzqjdsMaT97JckErQD3xXOdV8zTc2jYDYCY fa2LHdvtOisRjLQoVpNcLRXu8xTukuP3fUG6LjEgLHUNdR8YQkQb9NrZ+Itn3V9v ivbtvmYtmDOTxhnIGZkWJ8O//vs6ZfDKJmS1MWNp/vgl6AyH9UMuEKIGlhVxQRUP sQCupBlYMsJD6WROUsm2BIpRq5e8k5ZI65CFsuNDB8A4kWG3e+S8W6a4tcdBtkD6 WsVmW+qoiVeYoB9XH556LIJ8QdgPmjXxHNhqC9f83phi6yTY7C2bVKhFvwo5WAXB 7TsphuYBjI3kt/AoFSZP1QqPpw== -----END CERTIFICATE-----Generated at Mon Mar 2 02:34:01 2026 by rpki-client