$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft File: K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft (raw, json) Hash identifier: xyOndhZGSSMhIM3RFwvID+LUFkh9XAzCwTsG33jo6KM= Subject key identifier: 42:FA:B0:FB:F6:83:52:51:DC:D1:50:6D:78:C9:F3:B2:6C:52:8A:51 Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft Manifest number: 0130 Signing time: Sat 21 Mar 2026 04:31:31 +0000 Manifest this update: Sat 21 Mar 2026 04:31:30 +0000 Manifest next update: Sat 28 Mar 2026 04:31:30 +0000 Files and hashes: 1: K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl (hash: kTaAAdsEUsPfyeSLYm3kJmQws8nqLSYW2MNUfjK/Jgo=) 2: DC10E79AABF211F0AF7B0010C4F9AE02.roa (hash: zrqCL04jUGgsbKaYOZp7KQyNgp8nrR3Fm1zIFrxXnuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Mar 21 04:31:30 2026 GMT Not After : Mar 28 04:31:30 2026 GMT Subject: CN=69be1f23-6c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1f:39:19:cf:fc:a3:ce:12:53:e3:21:a8:88: 5b:61:9b:de:75:e2:8b:ce:1f:2a:9b:47:13:cc:08: d7:4d:61:4a:1d:64:8f:de:37:67:92:90:32:b0:44: b3:47:57:aa:26:e1:30:16:c0:84:a9:12:63:1f:16: 6c:e5:38:21:81:ae:6e:06:60:79:ea:bb:04:a0:b1: 72:b0:f2:c3:db:a4:80:30:eb:52:1c:dd:81:7e:2a: 17:91:c0:bd:17:52:42:9d:e0:1e:b4:c5:bc:cd:eb: f6:ab:3b:a6:f3:0e:dc:2c:17:25:0b:09:34:7f:a5: 51:a6:64:5f:01:6a:8b:19:23:64:fd:56:f5:f1:a7: b1:34:ae:54:bd:86:d7:34:35:bb:7b:79:1e:a9:2f: 85:31:de:46:92:a5:8b:ad:e3:db:ca:2b:f2:2a:1d: c5:25:c3:c4:67:12:c5:0b:34:df:40:85:33:cd:6c: 9e:b3:2b:7e:97:f4:51:d0:05:09:bf:bb:6d:78:4c: 94:27:2b:60:16:b1:31:72:f6:bf:3d:7a:20:e0:e5: e3:9f:85:30:aa:05:93:96:58:20:85:08:eb:b0:39: b9:af:00:f7:b8:95:2d:e0:63:77:a8:5b:0f:50:1c: 21:61:90:74:30:7e:6a:b5:3a:e0:7b:e9:ed:fd:1b: 4c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FA:B0:FB:F6:83:52:51:DC:D1:50:6D:78:C9:F3:B2:6C:52:8A:51 X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:b0:44:45:97:06:4d:bb:81:67:aa:44:fa:85:65:c7:d4:6a: 9e:71:ff:9b:a6:4f:2c:aa:41:b4:f8:f8:40:20:5e:75:9a:cc: 70:41:58:6d:bd:78:98:34:91:ce:bb:87:97:67:c9:92:ec:7f: ae:ea:3d:76:ab:9f:2d:0b:64:64:35:79:36:35:c1:4c:4e:99: 5e:9e:55:90:7c:cf:ea:2d:2b:4e:56:ad:08:37:92:a0:0d:1f: 47:38:26:a1:85:46:5e:d1:26:88:e1:6c:eb:a8:f3:d4:d2:88: 41:d8:75:5a:5c:9d:bf:1e:b5:22:46:1f:02:d1:59:1a:93:09: 07:ce:54:b5:08:ed:77:b6:0c:34:0b:60:23:e8:be:58:8a:e5: e8:89:10:20:85:96:95:5a:00:c8:23:e8:49:bb:fd:d3:b6:94: 30:f8:5c:3b:81:03:3d:c8:f5:eb:e6:50:72:4f:c3:b6:6c:25: 28:78:da:0b:18:f6:da:00:7d:8b:83:90:36:88:33:2b:9f:16: 31:5b:2b:2a:e9:b4:5e:97:c6:bf:c4:b3:69:42:3a:34:a2:91: bc:73:0b:ce:fc:da:4a:5e:45:0a:c2:75:14:2f:db:52:9e:be: 8a:40:55:11:35:19:c2:35:dd:07:d4:bb:e8:66:57:dc:e0:b0: d8:ff:d2:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjYwMzIxMDQzMTMwWhcNMjYwMzI4MDQzMTMwWjAYMRYwFAYD VQQDEw02OWJlMWYyMy02YzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqR85Gc/8o84SU+MhqIhbYZvedeKLzh8qm0cTzAjXTWFKHWSP3jdnkpAysESz R1eqJuEwFsCEqRJjHxZs5Tghga5uBmB56rsEoLFysPLD26SAMOtSHN2BfioXkcC9 F1JCneAetMW8zev2qzum8w7cLBclCwk0f6VRpmRfAWqLGSNk/Vb18aexNK5UvYbX NDW7e3keqS+FMd5GkqWLrePbyivyKh3FJcPEZxLFCzTfQIUzzWyesyt+l/RR0AUJ v7tteEyUJytgFrExcva/PXog4OXjn4UwqgWTllgghQjrsDm5rwD3uJUt4GN3qFsP UBwhYZB0MH5qtTrge+nt/RtMmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEL6sPv2 g1JR3NFQbXjJ87JsUopRMB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NERFQS8zQkY1RjJFMDVBRTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgw QlpEbGx4aERQWUdEXzVSbTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASbBERZcGTbuBZ6pE+oVlx9RqnnH/m6ZPLKpBtPj4QCBedZrMcEFYbb14mDSR zruHl2fJkux/ruo9dqufLQtkZDV5NjXBTE6ZXp5VkHzP6i0rTlatCDeSoA0fRzgm oYVGXtEmiOFs66jz1NKIQdh1Wlydvx61IkYfAtFZGpMJB85UtQjtd7YMNAtgI+i+ WIrl6IkQIIWWlVoAyCPoSbv907aUMPhcO4EDPcj16+ZQck/DtmwlKHjaCxj22gB9 i4OQNogzK58WMVsrKum0XpfGv8SzaUI6NKKRvHMLzvzaSl5FCsJ1FC/bUp6+ikBV ETUZwjXdB9S76GZX3OCw2P/SCg== -----END CERTIFICATE-----Generated at Sat Mar 21 23:44:20 2026 by rpki-client