$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft File: kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft (raw, json) Hash identifier: n7fOhdhb8gE7cdIcKLA/Cjw1jkodZ0ahv/Emp/bQnNc= Subject key identifier: E9:1F:DE:D7:53:72:A5:2A:53:13:CE:5C:C7:14:60:DD:37:7D:22:01 Authority key identifier: 92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 Certificate issuer: /CN=A91C6A35/serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft Manifest number: D5 Signing time: Mon 02 Mar 2026 02:04:35 +0000 Manifest this update: Mon 02 Mar 2026 02:04:33 +0000 Manifest next update: Mon 09 Mar 2026 02:04:33 +0000 Files and hashes: 1: kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl (hash: smHHWAc1haGanvCRALJ8zfaiJwWUXMqgpb1kz6O0U0M=) 2: 06522672D49411EFA8DF5E69C4F9AE02.roa (hash: DcF/9W7qd4KHwYrkCY8+BJAoGipoWv1grZbxNhAAxOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Validity Not Before: Mar 2 02:04:33 2026 GMT Not After : Mar 9 02:04:33 2026 GMT Subject: CN=69a4f033-a95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c9:dd:3a:f5:86:0c:09:8c:c4:cb:44:d0:f1: 76:6e:81:84:1d:dd:d9:f4:fd:dd:74:3c:d1:04:d9: 21:e6:53:ff:21:94:09:b6:1a:81:bc:a3:ef:32:ef: b6:db:d2:11:99:82:61:b2:20:11:07:92:49:1c:dd: 7c:65:ae:96:a5:04:9b:c5:22:65:ee:20:82:0a:66: 5d:88:0c:69:a5:f6:17:52:46:35:19:ad:f7:b3:fa: c7:30:85:5b:4b:cb:ef:7d:59:35:e8:af:40:42:39: b9:e1:de:bb:8f:16:0f:52:42:92:43:76:ef:23:0c: fc:75:e0:d7:65:ee:55:76:e3:58:35:28:e2:59:68: 65:11:2d:74:74:f7:52:a3:c0:07:af:da:4a:96:e0: cf:4c:f8:af:10:5e:58:bc:73:d2:2b:ff:25:e8:86: 81:cb:c9:f7:15:da:c0:0e:c3:d9:55:03:db:41:4f: 8b:05:8d:53:2c:3a:ea:56:f3:3e:17:9a:78:e5:38: 61:05:7a:b6:08:a5:dd:10:27:2e:02:e4:97:ec:bd: f3:e3:f4:db:f1:bb:f4:66:46:a5:10:27:04:1d:e5: d9:aa:5b:30:5b:9d:62:c9:12:54:4e:a3:07:80:48: f8:b7:4f:ec:a4:28:4e:be:f3:5a:97:4f:d2:05:92: 51:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:1F:DE:D7:53:72:A5:2A:53:13:CE:5C:C7:14:60:DD:37:7D:22:01 X509v3 Authority Key Identifier: keyid:92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:92:24:d7:76:7c:1d:39:de:03:0e:04:ec:3f:1a:97:f4:e5: d4:9b:20:d8:3e:ec:49:6a:e4:c3:57:6e:9d:99:9f:d8:b9:e3: 15:29:d9:67:d0:c3:2f:01:98:d1:a9:ab:c3:7f:9f:5c:35:09: 88:1f:70:38:26:a1:2b:9a:17:4c:e2:c2:94:6e:af:f1:49:46: 93:e0:86:69:30:99:1e:f7:5f:29:7e:f0:bf:51:58:aa:84:f9: e7:74:d3:0b:39:d1:83:48:8d:85:ff:e1:52:1a:36:49:f5:1e: 19:ef:c5:92:1a:45:f1:84:ef:6d:5c:ea:51:4b:5a:81:e0:83: 0a:ff:55:97:36:5b:a5:d1:5e:fa:d3:dd:ef:2d:8c:67:9c:70: 01:ed:4b:33:a1:0b:8f:62:ad:f8:c6:dc:64:c6:e7:46:8b:3f: a2:92:0f:1e:4c:c6:d4:d3:66:3b:8b:f9:2d:f9:65:d0:79:d1: 29:bf:70:f9:7a:5a:cd:77:c7:8b:85:89:5d:1e:23:cc:d8:83: 84:77:78:95:f8:ad:68:d4:ff:13:28:ff:f5:c3:98:9f:6f:de: f2:75:b9:4c:59:7c:04:7f:1d:e9:cf:89:e7:cb:40:57:f2:65: b8:14:ea:66:87:2c:3c:e3:60:62:80:e5:58:66:6a:19:62:54: 3a:49:b4:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzUxMTAvBgNVBAUTKDkyNDg2NkI0MEMzMDQ0MkQ2OTZGMjQ3NzAxNTQ3NUM1 RjA3MDJBQzgwHhcNMjYwMzAyMDIwNDMzWhcNMjYwMzA5MDIwNDMzWjAYMRYwFAYD VQQDEw02OWE0ZjAzMy1hOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMndOvWGDAmMxMtE0PF2boGEHd3Z9P3ddDzRBNkh5lP/IZQJthqBvKPvMu+2 29IRmYJhsiARB5JJHN18Za6WpQSbxSJl7iCCCmZdiAxppfYXUkY1Ga33s/rHMIVb S8vvfVk16K9AQjm54d67jxYPUkKSQ3bvIwz8deDXZe5VduNYNSjiWWhlES10dPdS o8AHr9pKluDPTPivEF5YvHPSK/8l6IaBy8n3FdrADsPZVQPbQU+LBY1TLDrqVvM+ F5p45ThhBXq2CKXdECcuAuSX7L3z4/Tb8bv0ZkalECcEHeXZqlswW51iyRJUTqMH gEj4t0/spChOvvNal0/SBZJRuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOkf3tdT cqUqUxPOXMcUYN03fSIBMB8GA1UdIwQYMBaAFJJIZrQMMEQtaW8kdwFUdcXwcCrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzNS85OTI3Nzg0NkQ0 OTIxMUVGQjU2NERFNjJDNEY5QUUwMi9ra2htdEF3d1JDMXBieVIzQVZSMXhmQndL c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2traG10QXd3UkMxcGJ5UjNBVlIxeGZCd0tzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzNS85OTI3Nzg0NkQ0OTIxMUVGQjU2NERFNjJDNEY5QUUwMi9ra2htdEF3d1JD MXBieVIzQVZSMXhmQndLc2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG5Ik13Z8HTneAw4E7D8al/Tl1Jsg2D7sSWrkw1dunZmf2LnjFSnZZ9DDLwGY 0amrw3+fXDUJiB9wOCahK5oXTOLClG6v8UlGk+CGaTCZHvdfKX7wv1FYqoT553TT CznRg0iNhf/hUho2SfUeGe/FkhpF8YTvbVzqUUtageCDCv9VlzZbpdFe+tPd7y2M Z5xwAe1LM6ELj2Kt+MbcZMbnRos/opIPHkzG1NNmO4v5Lfll0HnRKb9w+XpazXfH i4WJXR4jzNiDhHd4lfitaNT/Eyj/9cOYn2/e8nW5TFl8BH8d6c+J58tAV/JluBTq ZocsPONgYoDlWGZqGWJUOkm0Kw== -----END CERTIFICATE-----Generated at Mon Mar 2 12:26:47 2026 by rpki-client