$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft File: kw3fQQEGkDvrmRnJm94BY4cGVa4.mft (raw, json) Hash identifier: BsRX0+Bi/vRMHeEfK5Kmq2j1qoPhHrS6su7NiR7i4IQ= Subject key identifier: A7:ED:2E:91:93:78:D1:C6:0F:09:F4:8F:00:BB:20:9F:25:A1:38:3D Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft Manifest number: EC Signing time: Wed 01 Apr 2026 06:26:20 +0000 Manifest this update: Wed 01 Apr 2026 06:26:20 +0000 Manifest next update: Wed 08 Apr 2026 06:26:20 +0000 Files and hashes: 1: kw3fQQEGkDvrmRnJm94BY4cGVa4.crl (hash: DZ0dCi0UJN9G7TQ5XbYrdxG6G383d/s8jw3mdzNZtpA=) 2: B56BC994E18A11EF94F99968C4F9AE02.roa (hash: gMKROOsdZBai7uwNPJMhA7wmGBXyz5SGNbYDb5CcdnA=) 3: 854C34B410A611F1B36A7FF1393D8C67.roa (hash: T+es4R7Kz78aarIocXiX4PtIykpBJj/m83J7r+F3puc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553, serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Validity Not Before: Apr 1 06:26:20 2026 GMT Not After : Apr 8 06:26:20 2026 GMT Subject: CN=69ccba8c-5023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:90:fd:7c:12:17:12:5a:3b:5f:63:23:26:b7: 01:69:07:5a:b5:0e:61:62:c0:e1:7f:43:da:de:ca: 11:60:ce:93:67:fb:f7:9d:60:df:15:a6:18:fa:ef: 9d:df:8b:15:7b:20:83:bf:37:70:c2:24:80:44:79: 02:53:78:e7:42:c2:67:58:22:80:b9:48:70:86:55: 85:e9:ec:92:d0:25:45:30:24:52:52:e9:60:07:87: 44:eb:fc:38:6c:04:0e:cc:ed:0f:2f:68:74:15:94: f8:17:ec:5d:9d:1e:d2:39:dc:62:5a:9f:24:53:da: 99:54:9c:f9:ca:29:44:09:b2:01:34:cd:a6:04:f9: 32:62:9d:38:7d:a2:43:2f:5f:2c:20:4c:e9:46:62: 4d:03:29:67:ed:11:c2:db:f4:96:1f:16:d1:bf:f3: 33:5f:e2:67:37:8f:2e:a0:44:dd:6d:ef:08:32:85: 45:46:b9:ad:c6:d1:3b:7f:17:6e:40:2a:16:ae:e7: b5:38:e6:64:c6:a2:b1:fc:31:ea:2a:06:03:2e:d7: b6:4e:3e:93:29:e5:f8:14:74:78:e7:73:39:80:f7: 1c:9f:c9:a6:36:24:0a:63:7b:f0:d8:db:bb:39:51: 90:c7:0f:34:69:e3:31:df:c1:1a:67:2d:55:e8:b7: 49:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:ED:2E:91:93:78:D1:C6:0F:09:F4:8F:00:BB:20:9F:25:A1:38:3D X509v3 Authority Key Identifier: keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:22:f1:31:7f:88:b6:4b:d4:75:bd:00:15:71:8e:24:25:86: f4:00:5d:16:ab:9d:cd:35:2c:8c:36:f3:89:e7:9c:41:5f:5d: b5:53:e8:27:a8:b0:cd:c4:41:61:ac:52:3a:28:2e:b8:ea:f9: 8d:6e:1c:08:7e:09:d8:dd:04:48:fc:26:a3:b4:79:ff:7d:c8: e0:7b:c1:ba:02:20:4f:b1:b6:81:a4:ce:21:b9:73:b9:be:82: 68:f0:38:e5:1f:81:27:e9:0c:3f:4b:5f:a4:ac:8b:56:26:21: 29:82:8c:02:65:76:01:7a:92:61:f0:ab:73:3a:3c:f0:7e:a9: 91:5c:cf:dd:49:e9:fe:33:06:ac:60:86:7b:e2:d0:9b:51:fa: 27:f7:59:46:af:d5:4d:8c:85:62:a5:ac:60:07:44:f8:e6:15: 44:f7:d0:1f:b8:da:23:ec:52:32:b3:64:46:4a:59:2b:8e:5c: 22:63:4c:3b:d4:f2:c4:3f:50:8c:ae:95:4c:3b:17:a0:3f:5c: 82:4b:3d:ea:d2:8b:8b:ad:71:93:5a:0f:99:d2:06:d9:d5:42: 6c:76:1b:91:97:5a:94:be:d4:56:9a:5b:8b:2d:a1:57:a2:82: 51:cd:59:0d:2c:5b:6f:1a:cd:76:1c:2d:68:38:57:c7:ef:ff: aa:b2:22:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg1NTMxMTAvBgNVBAUTKDkzMERERjQxMDEwNjkwM0JFQjk5MTlDOTlCREUwMTYz ODcwNjU1QUUwHhcNMjYwNDAxMDYyNjIwWhcNMjYwNDA4MDYyNjIwWjAYMRYwFAYD VQQDEw02OWNjYmE4Yy01MDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopD9fBIXElo7X2MjJrcBaQdatQ5hYsDhf0Pa3soRYM6TZ/v3nWDfFaYY+u+d 34sVeyCDvzdwwiSARHkCU3jnQsJnWCKAuUhwhlWF6eyS0CVFMCRSUulgB4dE6/w4 bAQOzO0PL2h0FZT4F+xdnR7SOdxiWp8kU9qZVJz5yilECbIBNM2mBPkyYp04faJD L18sIEzpRmJNAyln7RHC2/SWHxbRv/MzX+JnN48uoETdbe8IMoVFRrmtxtE7fxdu QCoWrue1OOZkxqKx/DHqKgYDLte2Tj6TKeX4FHR453M5gPccn8mmNiQKY3vw2Nu7 OVGQxw80aeMx38EaZy1V6LdJBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKftLpGT eNHGDwn0jwC7IJ8loTg9MB8GA1UdIwQYMBaAFJMN30EBBpA765kZyZveAWOHBlWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODU1My9BNTlCRkZFNEQy RUQxMUVGOERFRTUxMjBDNEY5QUUwMi9rdzNmUVFFR2tEdnJtUm5KbTk0Qlk0Y0dW YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t3M2ZRUUVHa0R2cm1SbkptOTRCWTRjR1ZhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODU1My9BNTlCRkZFNEQyRUQxMUVGOERFRTUxMjBDNEY5QUUwMi9rdzNmUVFFR2tE dnJtUm5KbTk0Qlk0Y0dWYTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADSLxMX+ItkvUdb0AFXGOJCWG9ABdFqudzTUsjDbzieecQV9dtVPoJ6iwzcRB YaxSOiguuOr5jW4cCH4J2N0ESPwmo7R5/33I4HvBugIgT7G2gaTOIblzub6CaPA4 5R+BJ+kMP0tfpKyLViYhKYKMAmV2AXqSYfCrczo88H6pkVzP3Unp/jMGrGCGe+LQ m1H6J/dZRq/VTYyFYqWsYAdE+OYVRPfQH7jaI+xSMrNkRkpZK45cImNMO9TyxD9Q jK6VTDsXoD9cgks96tKLi61xk1oPmdIG2dVCbHYbkZdalL7UVppbiy2hV6KCUc1Z DSxbbxrNdhwtaDhXx+//qrIizg== -----END CERTIFICATE-----Generated at Wed Apr 1 14:04:35 2026 by rpki-client