$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: OI9Qr3oo3ZZVbrlWBdkjh6Owo6INqAaqy/NNfhk1WRo= Subject key identifier: D1:F6:02:73:44:81:97:67:B0:F7:8B:A2:C1:6F:86:37:6E:04:76:33 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 0679 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 0667 Signing time: Tue 24 Mar 2026 22:21:21 +0000 Manifest this update: Tue 24 Mar 2026 22:21:21 +0000 Manifest next update: Tue 31 Mar 2026 22:21:21 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: M7cBNgXGDmkpzdLSKuOOBt33SGR92Pn/YAqCB+8gwLs=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: 8NcFmfcZYrRsP7z1vxHhvTJh2ryA3DW6xQ/HYbHt6tE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1657 (0x679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Mar 24 22:21:21 2026 GMT Not After : Mar 31 22:21:21 2026 GMT Subject: CN=69c30e61-02d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:54:30:e2:06:b6:f4:22:5b:ac:cd:a1:65:c7: 07:22:c4:4b:5d:c8:17:b4:4c:01:9d:fb:1c:32:9a: 44:19:b3:52:37:cc:9d:13:e7:ab:17:a2:8f:ad:2c: d8:d2:75:98:f6:13:e7:fa:36:40:d5:f3:43:7c:64: c1:27:f6:35:34:75:dd:e7:5c:15:25:ea:56:78:f7: 0b:02:a0:a4:b1:f1:b7:9f:81:e4:59:74:b5:a7:af: 1f:90:9e:24:84:35:7c:a1:38:f8:15:fa:1a:06:b4: 59:23:aa:7a:75:ab:19:34:f9:17:5b:84:72:5b:8d: 07:76:99:7e:79:6f:03:37:5d:b0:27:81:d5:73:95: df:69:3f:bb:f6:81:1f:bf:63:e8:6d:0b:19:6c:31: d7:04:35:18:8e:a7:33:7e:50:70:ac:d2:29:49:8a: 8c:df:3f:72:2c:ad:65:12:3e:f3:a5:de:4c:8a:47: 26:34:7d:3f:cb:11:08:51:14:e8:d7:f1:58:dd:0b: 27:30:57:b1:42:6e:89:6e:7c:68:78:e3:ce:af:64: 6e:66:e3:20:65:2c:3a:34:bd:3c:dc:fa:a2:c1:dd: b8:d8:18:93:38:3a:ae:91:cb:e5:60:50:20:27:4f: 1f:51:b6:fc:29:71:28:58:c8:71:6f:a8:e3:64:6f: 3a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F6:02:73:44:81:97:67:B0:F7:8B:A2:C1:6F:86:37:6E:04:76:33 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:48:2a:67:f1:ec:4f:99:0b:be:a5:f3:8e:db:15:71:a1:3e: 1e:cd:45:35:72:4f:79:f8:d0:1b:d9:47:4a:14:2b:61:0e:62: 34:88:82:74:45:ae:fd:59:4f:ac:a9:90:a6:6b:05:9b:ef:5a: 84:c8:2f:df:77:94:66:cc:ad:f4:9c:fa:74:6d:78:f7:ac:ec: 85:6d:d5:c6:d8:b0:d5:01:c1:fc:f6:d3:9e:b8:18:93:19:36: 3d:da:26:c5:79:9c:99:dc:1f:8a:f3:67:18:d7:30:50:aa:4c: 18:bb:7e:92:49:05:51:c3:8d:6f:6a:04:1f:d2:28:fd:54:b4: ca:68:1e:18:03:30:9d:37:ef:4c:8c:ad:74:7a:15:21:b4:4f: 85:dd:01:60:94:16:45:71:6b:ab:f7:e6:f4:21:8e:cf:e3:8e: ff:49:c6:46:cf:93:6e:6c:bd:44:f2:03:d6:43:22:d6:8b:19: 6c:38:1c:f5:5c:6a:a9:5a:2f:e1:76:ad:23:32:2c:75:cc:39: ae:21:02:64:8c:20:14:25:a2:b6:26:da:30:cd:2b:8a:5f:6c: b0:2f:37:a8:8b:5a:69:7a:f0:2b:f0:64:6b:0f:1e:ec:87:91: fe:f4:5c:21:1d:e9:c1:c7:ca:17:4b:15:41:45:d5:7a:f7:22: 8e:28:e1:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjYwMzI0MjIyMTIxWhcNMjYwMzMxMjIyMTIxWjAYMRYwFAYD VQQDEw02OWMzMGU2MS0wMmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1Qw4ga29CJbrM2hZccHIsRLXcgXtEwBnfscMppEGbNSN8ydE+erF6KPrSzY 0nWY9hPn+jZA1fNDfGTBJ/Y1NHXd51wVJepWePcLAqCksfG3n4HkWXS1p68fkJ4k hDV8oTj4FfoaBrRZI6p6dasZNPkXW4RyW40Hdpl+eW8DN12wJ4HVc5XfaT+79oEf v2PobQsZbDHXBDUYjqczflBwrNIpSYqM3z9yLK1lEj7zpd5MikcmNH0/yxEIURTo 1/FY3QsnMFexQm6JbnxoeOPOr2RuZuMgZSw6NL083Pqiwd242BiTODqukcvlYFAg J08fUbb8KXEoWMhxb6jjZG86MwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNH2AnNE gZdnsPeLosFvhjduBHYzMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeUgqZ/HsT5kLvqXzjtsVcaE+Hs1FNXJPefjQG9lHShQrYQ5iNIiCdEWu/VlP rKmQpmsFm+9ahMgv33eUZsyt9Jz6dG1496zshW3Vxtiw1QHB/PbTnrgYkxk2Pdom xXmcmdwfivNnGNcwUKpMGLt+kkkFUcONb2oEH9Io/VS0ymgeGAMwnTfvTIytdHoV IbRPhd0BYJQWRXFrq/fm9CGOz+OO/0nGRs+Tbmy9RPID1kMi1osZbDgc9VxqqVov 4XatIzIsdcw5riECZIwgFCWitibaMM0ril9ssC83qItaaXrwK/Bkaw8e7IeR/vRc IR3pwcfKF0sVQUXVevcijijhzg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:58:23 2026 by rpki-client