$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: U8C1WBI4qahSJhDSz5l+w+2gYJLcZFT/EWEQGBPxdNg= Subject key identifier: 49:47:FD:A6:3C:F0:F5:FF:4D:87:18:A6:7C:10:C5:A5:B0:83:D7:6B Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0C0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0C01 Signing time: Mon 02 Mar 2026 00:29:05 +0000 Manifest this update: Mon 02 Mar 2026 00:29:03 +0000 Manifest next update: Mon 09 Mar 2026 00:29:03 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: wSOGDd4iAJHa3rDRNHDHyMQUqjloUt6tnVKAJB3QBWo=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: FbKjiGyoYXtJ+Sip8tCWTgSCfHXUOeTdm95y0Shz3Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Mar 2 00:29:03 2026 GMT Not After : Mar 9 00:29:03 2026 GMT Subject: CN=69a4d9d0-a2f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bb:23:cb:44:65:af:50:13:64:7b:5f:4f:9f: ab:6c:32:3b:92:ef:ce:ba:63:19:b4:a9:e0:aa:bb: a5:de:35:39:bd:7e:e6:da:fe:4a:89:f2:b0:b2:2d: cf:28:46:9d:d5:c1:85:a4:c9:36:82:5b:ab:50:85: cb:c0:ac:42:75:d1:3d:00:9f:b9:5f:6d:b7:16:b5: 80:e7:c9:ed:b5:aa:4b:36:10:4a:fb:0e:ac:e4:fe: 59:ed:e8:47:c4:f4:bf:c2:e8:c3:40:ca:12:fc:92: 0a:8b:0d:a1:0e:42:a0:84:1a:b7:e2:40:bc:9d:c9: 78:4e:05:c3:e4:44:72:8e:87:d8:04:21:f4:ae:64: 27:5d:76:55:82:12:dd:62:6f:ca:79:40:95:7f:f1: 61:a0:48:90:ba:a7:e2:8d:fb:ad:0c:0a:9e:8a:0d: 65:d8:bb:8d:0f:3e:2e:51:ff:03:32:e0:5a:35:08: b3:17:c6:e8:87:9b:3f:41:39:61:2e:15:3a:30:b0: 15:14:cb:4a:c8:6e:5b:7d:67:98:7e:ad:5f:9a:89: 1f:49:30:3f:0b:b3:d6:c2:49:10:c1:5e:4c:89:42: f7:7f:e4:ea:57:39:d4:b7:13:f3:ea:cd:86:00:62: 59:8b:3b:73:c3:e8:14:87:5e:87:83:11:f5:f5:5a: bc:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:47:FD:A6:3C:F0:F5:FF:4D:87:18:A6:7C:10:C5:A5:B0:83:D7:6B X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:10:80:2e:23:84:a2:19:df:0a:a2:f0:a1:ae:49:2c:60:90: 85:8a:a3:75:10:f9:c3:2e:55:41:67:83:64:ed:00:44:9e:78: 5f:92:df:6f:8f:f8:b0:37:de:a6:ab:9a:b7:9f:a7:06:a3:2b: 63:b3:3c:e6:6c:5a:e8:d9:a0:7e:76:9c:6a:17:c6:3e:5e:81: 26:16:97:ba:52:eb:83:48:68:1f:e5:6c:18:c2:58:04:00:26: ab:1d:56:24:5e:c8:a0:83:3c:8b:dd:76:4e:ba:9e:a4:51:09: b9:24:3c:3a:3c:e9:eb:00:8e:6d:1e:4a:25:4c:38:b2:c7:11: 3e:7c:27:d3:50:f4:4f:d2:ce:96:56:a2:44:06:3c:87:7d:6e: 46:6f:11:20:35:b5:88:9e:f7:ea:25:8b:f7:a5:52:ff:39:9b: c0:18:29:1e:61:9b:9b:a3:48:0f:57:7d:b8:22:15:86:07:03: 9b:21:62:bd:94:c3:3f:dd:76:ba:6b:c2:b5:49:71:5e:f5:bf: 8b:4b:f1:6d:b1:74:83:fc:6e:2a:d1:69:a1:1f:45:12:6c:bc: 1f:b4:6d:05:d5:19:58:2f:ea:ac:c9:ad:0f:75:ac:cc:54:5f: f8:e2:3d:74:98:fc:a6:ec:a8:ab:4b:57:fd:db:c0:45:64:42: 9f:a7:b8:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjYwMzAyMDAyOTAzWhcNMjYwMzA5MDAyOTAzWjAYMRYwFAYD VQQDEw02OWE0ZDlkMC1hMmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybsjy0Rlr1ATZHtfT5+rbDI7ku/OumMZtKngqrul3jU5vX7m2v5KifKwsi3P KEad1cGFpMk2glurUIXLwKxCddE9AJ+5X223FrWA58nttapLNhBK+w6s5P5Z7ehH xPS/wujDQMoS/JIKiw2hDkKghBq34kC8ncl4TgXD5ERyjofYBCH0rmQnXXZVghLd Ym/KeUCVf/FhoEiQuqfijfutDAqeig1l2LuNDz4uUf8DMuBaNQizF8boh5s/QTlh LhU6MLAVFMtKyG5bfWeYfq1fmokfSTA/C7PWwkkQwV5MiUL3f+TqVznUtxPz6s2G AGJZiztzw+gUh16HgxH19Vq8vwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFElH/aY8 8PX/TYcYpnwQxaWwg9drMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAghCALiOEohnfCqLwoa5JLGCQhYqjdRD5wy5VQWeDZO0ARJ54X5Lfb4/4sDfe pquat5+nBqMrY7M85mxa6NmgfnacahfGPl6BJhaXulLrg0hoH+VsGMJYBAAmqx1W JF7IoIM8i912TrqepFEJuSQ8Ojzp6wCObR5KJUw4sscRPnwn01D0T9LOllaiRAY8 h31uRm8RIDW1iJ736iWL96VS/zmbwBgpHmGbm6NID1d9uCIVhgcDmyFivZTDP912 umvCtUlxXvW/i0vxbbF0g/xuKtFpoR9FEmy8H7RtBdUZWC/qrMmtD3WszFRf+OI9 dJj8puyoq0tX/dvARWRCn6e4/w== -----END CERTIFICATE-----Generated at Mon Mar 2 14:43:26 2026 by rpki-client