$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: t3HZZ/vvRkXujLJluO6QdEMSGNhVYrhCVSxToQO6rio= Subject key identifier: 9E:E9:98:C5:56:04:39:8D:DF:B0:52:3E:F4:27:BB:7A:5A:9F:0A:C8 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 0A3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 0A35 Signing time: Sat 28 Feb 2026 19:59:40 +0000 Manifest this update: Sat 28 Feb 2026 19:59:40 +0000 Manifest next update: Sat 07 Mar 2026 19:59:40 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: Dm42+eGc7jj8suHotkGlf8mj2cIPIwjjnoW0VNP2lpg=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: ykeUKUAb7KeoMHjYU08yaccmah2g11dChzFIvlUzIRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2621 (0xa3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Feb 28 19:59:40 2026 GMT Not After : Mar 7 19:59:40 2026 GMT Subject: CN=69a3492c-9fd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7d:0c:1b:dc:4f:ff:93:ee:3e:3d:8c:4c:60: 3f:2e:87:67:fa:7b:97:a8:63:0d:7b:a7:f2:50:2c: 08:11:08:d1:30:2e:40:56:c8:9b:56:d4:8c:a7:01: e2:23:40:ad:46:7f:ee:47:05:d5:c8:50:df:53:d4: af:b9:f9:1a:19:b1:80:a4:93:78:59:09:9a:29:a4: 2e:01:54:2d:6c:55:89:72:fc:27:fd:90:c4:08:64: ba:58:de:c9:76:f6:af:40:a1:d0:6c:36:20:20:6e: 45:6e:90:64:5c:84:d5:1c:09:4e:51:15:ce:77:a7: 9c:d7:b4:44:e8:f9:c9:dc:8e:cd:b9:ad:b7:6f:39: 7c:c1:ba:a6:40:5a:20:42:3d:d4:ae:8f:69:a0:5b: 25:b1:35:8e:fd:92:26:c0:7d:64:6b:19:50:21:9f: b3:3e:0f:ed:6a:2c:93:b2:c7:d3:e2:b3:c6:d5:95: cc:3b:00:df:c8:cf:af:16:1f:10:b9:f4:38:c6:9f: 8b:8b:1a:89:48:4c:9f:c1:10:d2:a6:cc:7a:9b:65: 4c:c7:13:2e:39:e2:43:c4:de:07:a8:5d:72:b6:d2: 34:ce:df:a8:79:8d:2f:30:3e:c0:41:7d:0a:f2:f5: ed:41:63:cb:df:b0:27:46:28:c3:81:f2:37:e9:0b: dc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E9:98:C5:56:04:39:8D:DF:B0:52:3E:F4:27:BB:7A:5A:9F:0A:C8 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:eb:8e:f6:54:03:cf:75:55:24:bf:e1:ae:40:70:3f:0d:cc: 39:82:39:bc:26:12:de:18:4d:f4:23:2a:8d:2e:d8:a7:23:c1: 8e:64:f9:b8:b7:4b:2c:d0:07:6b:62:ee:0f:89:9c:ba:f7:7e: 56:5f:e2:6f:05:ca:c8:28:93:1a:03:3a:32:d7:a5:84:a6:04: 38:e4:c3:61:1c:70:41:45:55:9a:6b:16:f5:81:0f:0c:a2:3e: eb:c3:c7:7f:8f:f8:f2:a5:46:0d:3d:89:a7:e9:38:ad:36:2e: 9a:08:9e:63:4e:1e:e7:0b:e6:85:1d:d9:0b:33:ad:b2:a9:c1: b5:16:55:e8:ab:e1:3d:df:c6:bf:e0:cc:dc:cc:fe:dd:7e:74: 37:2d:97:ab:b2:02:bd:2a:5c:db:2e:c6:03:26:ca:9b:ba:3d: e6:23:7d:a9:ab:36:7e:33:a2:d0:1f:5c:41:0f:01:21:fc:34: 52:ab:77:3b:ca:3e:e4:19:08:72:44:2c:dd:91:c5:84:0e:29: e0:77:0c:55:94:28:ba:72:eb:27:eb:89:ed:a7:f6:4a:89:ee: e0:9c:3f:3c:43:58:19:8f:15:49:41:5b:f3:9a:e1:05:d7:c8: 86:85:7b:3d:36:cc:e7:43:73:07:36:6f:7c:9b:19:dd:ad:94: 57:d8:45:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjYwMjI4MTk1OTQwWhcNMjYwMzA3MTk1OTQwWjAYMRYwFAYD VQQDDA02OWEzNDkyYy05ZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqn0MG9xP/5PuPj2MTGA/Lodn+nuXqGMNe6fyUCwIEQjRMC5AVsibVtSMpwHi I0CtRn/uRwXVyFDfU9SvufkaGbGApJN4WQmaKaQuAVQtbFWJcvwn/ZDECGS6WN7J dvavQKHQbDYgIG5FbpBkXITVHAlOURXOd6ec17RE6PnJ3I7Nua23bzl8wbqmQFog Qj3Uro9poFslsTWO/ZImwH1kaxlQIZ+zPg/taiyTssfT4rPG1ZXMOwDfyM+vFh8Q ufQ4xp+LixqJSEyfwRDSpsx6m2VMxxMuOeJDxN4HqF1yttI0zt+oeY0vMD7AQX0K 8vXtQWPL37AnRijDgfI36QvcYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ7pmMVW BDmN37BSPvQnu3panwrIMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATOuO9lQDz3VVJL/hrkBwPw3MOYI5vCYS3hhN9CMqjS7YpyPBjmT5uLdLLNAH a2LuD4mcuvd+Vl/ibwXKyCiTGgM6MtelhKYEOOTDYRxwQUVVmmsW9YEPDKI+68PH f4/48qVGDT2Jp+k4rTYumgieY04e5wvmhR3ZCzOtsqnBtRZV6KvhPd/Gv+DM3Mz+ 3X50Ny2Xq7ICvSpc2y7GAybKm7o95iN9qas2fjOi0B9cQQ8BIfw0Uqt3O8o+5BkI ckQs3ZHFhA4p4HcMVZQounLrJ+uJ7af2Sonu4Jw/PENYGY8VSUFb85rhBdfIhoV7 PTbM50NzBzZvfJsZ3a2UV9hFug== -----END CERTIFICATE-----Generated at Sun Mar 1 21:08:49 2026 by rpki-client