$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: u4UE3xf4WXXgPSgwKeq+tsHuvQttoH8jCIGd3B+KXRk= Subject key identifier: ED:9F:BE:32:D5:87:8D:C1:ED:56:1A:5D:F7:24:0A:A9:F8:25:50:C7 Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: D7 Signing time: Sat 07 Mar 2026 05:12:40 +0000 Manifest this update: Sat 07 Mar 2026 05:12:40 +0000 Manifest next update: Sat 14 Mar 2026 05:12:40 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: n1H2JqUiRXyq9UqdkbcH81wNh4/iZO8SemNuA+9ffhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: Mar 7 05:12:40 2026 GMT Not After : Mar 14 05:12:40 2026 GMT Subject: CN=69abb3c8-bbe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:b2:b4:12:97:01:e2:36:d8:10:cd:d3:1d: 47:9d:aa:d0:af:ed:9d:d1:fc:f0:3f:3b:b0:bd:13: d4:84:c8:03:cf:d5:69:ba:8e:a7:8f:e2:7e:38:9b: c9:25:98:4c:b0:34:ea:f2:e3:7c:0a:2a:99:fe:be: a7:7f:cc:7c:f6:fe:6c:3a:37:be:2c:66:2f:b2:5c: e8:47:23:3e:ff:21:d7:a4:df:37:62:67:85:f8:cc: c1:ba:a7:4e:9d:c0:12:0d:f3:f3:14:aa:c8:bc:35: 78:37:95:b6:ad:76:84:3a:56:97:93:80:64:96:c9: 88:9c:bf:df:b6:aa:a4:8d:3c:cf:f9:7b:82:da:bc: 1b:fd:3a:11:d2:1e:5e:85:fc:7c:57:77:78:5d:3e: cc:8c:87:4e:d0:94:bc:83:0a:2b:24:df:1f:75:6d: 04:18:65:b6:8a:25:4f:34:c8:c7:2f:6a:99:4e:a7: 34:57:d7:de:86:1f:16:97:18:0b:bd:99:7c:cd:eb: de:d1:76:56:4b:dc:f0:ed:9e:de:5a:f3:88:a8:24: ab:1b:ce:7a:d0:ad:8c:53:02:c2:e4:cc:27:83:7e: 1f:c2:4f:7f:23:7d:9d:8e:44:5d:63:0b:99:a0:7e: c1:42:2b:3f:d4:3f:8d:77:ee:41:7e:d6:c8:c3:02: 27:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9F:BE:32:D5:87:8D:C1:ED:56:1A:5D:F7:24:0A:A9:F8:25:50:C7 X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:97:84:bc:3c:dd:44:a5:6b:3d:1a:9b:69:fa:9e:80:b7:0d: 2b:a6:73:2f:ec:d2:18:19:5c:aa:58:d2:c2:40:49:f9:04:d1: 79:3d:42:ca:5b:46:31:d0:34:7a:06:62:84:1d:5f:69:c6:92: 6a:d8:df:51:02:f4:39:b0:dd:fe:6b:08:75:35:22:4a:10:66: 03:fd:f6:f2:b8:10:21:e1:25:2e:a2:70:78:92:72:03:24:93: 64:7b:65:86:01:a0:5e:14:be:07:f9:4a:80:7c:80:81:36:e9: fd:f4:8c:94:b9:ea:3b:f0:1e:bc:5a:87:57:56:e9:5c:e4:1f: 5d:ad:b8:65:33:46:7b:ff:84:e3:c1:71:12:4a:02:37:08:26: 93:cb:4b:01:17:5e:a2:ff:8e:8b:88:c3:d8:2d:01:9e:d4:81: 5c:72:0d:3a:61:01:3d:92:81:f4:dc:b3:8e:15:47:ed:5e:c1: fd:b1:cc:b4:fd:6b:6b:1b:d5:6d:f5:fc:5c:31:8a:13:60:1f: bf:0e:4b:27:ba:3d:45:9c:89:49:b3:34:e6:01:a5:00:46:ff: db:c6:ac:15:12:cc:90:e2:f8:a7:f8:4d:a1:6c:a2:f2:3b:97: d8:5d:30:ae:d4:b7:aa:31:0a:74:7e:97:97:f7:e3:23:1f:87: 2d:46:e0:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFMUUxMTAvBgNVBAUTKDI4RURBN0I5NUQ1RThENDU2MkE3NTk3NEM2REQ3REE2 NEMyQTJBODYwHhcNMjYwMzA3MDUxMjQwWhcNMjYwMzE0MDUxMjQwWjAYMRYwFAYD VQQDEw02OWFiYjNjOC1iYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUKytBKXAeI22BDN0x1HnarQr+2d0fzwPzuwvRPUhMgDz9Vpuo6nj+J+OJvJ JZhMsDTq8uN8CiqZ/r6nf8x89v5sOje+LGYvslzoRyM+/yHXpN83YmeF+MzBuqdO ncASDfPzFKrIvDV4N5W2rXaEOlaXk4BklsmInL/ftqqkjTzP+XuC2rwb/ToR0h5e hfx8V3d4XT7MjIdO0JS8gworJN8fdW0EGGW2iiVPNMjHL2qZTqc0V9fehh8WlxgL vZl8zeve0XZWS9zw7Z7eWvOIqCSrG8560K2MUwLC5Mwng34fwk9/I32djkRdYwuZ oH7BQis/1D+Nd+5BftbIwwIn8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO2fvjLV h43B7VYaXfckCqn4JVDHMB8GA1UdIwQYMBaAFCjtp7ldXo1FYqdZdMbdfaZMKiqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkUxRS9ENDA5RjgyQUQx NjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpVVmlwMWwweHQxOXBrd3FL b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS9ENDA5RjgyQUQxNjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpV VmlwMWwweHQxOXBrd3FLb1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcpeEvDzdRKVrPRqbafqegLcNK6ZzL+zSGBlcqljSwkBJ+QTReT1CyltGMdA0 egZihB1facaSatjfUQL0ObDd/msIdTUiShBmA/328rgQIeElLqJweJJyAySTZHtl hgGgXhS+B/lKgHyAgTbp/fSMlLnqO/AevFqHV1bpXOQfXa24ZTNGe/+E48FxEkoC Nwgmk8tLARdeov+Oi4jD2C0BntSBXHINOmEBPZKB9NyzjhVH7V7B/bHMtP1raxvV bfX8XDGKE2Afvw5LJ7o9RZyJSbM05gGlAEb/28asFRLMkOL4p/hNoWyi8juX2F0w rtS3qjEKdH6Xl/fjIx+HLUbgfA== -----END CERTIFICATE-----Generated at Sat Mar 7 14:37:39 2026 by rpki-client