$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json) Hash identifier: fgVHpLTlCD/FRGPmCdz9z7eC9wcOxH4n5ArdSUdtQgA= Subject key identifier: AF:E5:5F:A1:A2:D9:BA:0C:37:60:20:91:55:B6:DF:D5:9C:9F:7F:63 Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Certificate serial: 05E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft Manifest number: 05CE Signing time: Tue 24 Mar 2026 22:46:11 +0000 Manifest this update: Tue 24 Mar 2026 22:46:10 +0000 Manifest next update: Tue 31 Mar 2026 22:46:10 +0000 Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: LDSKWkYW49IQ5GtCb0GNfmagC9r0s5KCMvqh5MU2yWo=) 2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: 41+ujfJ1RW9rys2ZY4ePjd/lCrRu8nYhlaOK5xxYhSY=) 3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: v67a0OsiTe06J9eTFSqaQT8oZYZbT0ddwuIUu5oh/Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1506 (0x5e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Validity Not Before: Mar 24 22:46:10 2026 GMT Not After : Mar 31 22:46:10 2026 GMT Subject: CN=69c31433-9644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:e1:58:92:a6:ce:fa:7a:f9:60:6b:aa:dc:60: 72:d1:42:d7:aa:79:71:3e:40:51:e0:04:d8:84:27: 2b:88:d3:c5:a5:4e:44:20:35:7d:49:79:20:0d:30: 55:15:cf:8d:93:6d:6c:88:e5:a3:18:13:d0:22:c8: 39:68:1a:06:ad:15:5c:40:09:d9:8c:54:81:c2:46: 82:44:15:d2:c8:98:ac:d9:0b:c5:ba:96:d9:73:32: 6c:fc:ad:3d:3c:21:3a:10:c1:6f:82:cc:3c:ea:73: 1a:27:40:e5:78:28:9e:ae:25:bf:7d:75:0f:64:db: 91:86:df:9f:54:35:b9:c5:81:b7:a4:84:bb:7c:a9: a8:47:d5:56:1d:bb:2c:a3:19:31:01:32:74:5d:4d: 9d:07:37:44:e0:2e:0c:a2:fb:36:8c:0e:b7:13:73: 41:57:13:e8:33:22:58:78:f1:fc:83:09:b0:2f:fc: fe:fb:d2:72:fa:d3:cd:97:fc:aa:b2:62:d3:bc:a1: a0:f7:71:12:c3:57:75:88:40:8c:36:d3:d1:14:32: f4:91:75:3e:dd:97:a4:d9:d9:25:2a:4e:1a:68:54: cd:59:05:cf:4d:33:84:bc:1d:19:80:f9:01:3a:30: 6d:cd:ce:be:68:91:1d:6f:2e:25:88:07:0d:2c:e6: 92:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E5:5F:A1:A2:D9:BA:0C:37:60:20:91:55:B6:DF:D5:9C:9F:7F:63 X509v3 Authority Key Identifier: keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:35:33:0a:c8:e6:83:e8:f4:0a:2a:1e:e0:94:b2:bd:33:f5: af:7c:19:35:19:41:0f:9f:4b:64:d6:8e:0e:73:87:13:a4:f5: d2:9a:c8:40:c1:19:20:5f:af:d5:f4:4f:d3:94:c8:0b:81:f0: c2:e3:11:f3:a9:6c:aa:79:ec:c1:4f:2f:93:23:c1:84:ca:ec: a6:1d:41:19:3f:12:f3:f3:a3:ba:89:ba:73:7f:d8:97:1d:5b: b1:eb:0c:22:8f:e6:3a:8d:86:b3:23:d8:0a:c0:41:eb:38:6c: e5:43:63:63:e4:e1:7a:3f:12:70:18:27:85:52:38:6b:fa:ad: 54:24:6d:f4:ed:47:83:37:4e:c7:ff:53:42:39:16:72:85:ea: b5:a1:31:83:07:46:7f:b8:49:8c:d6:d1:bd:de:84:60:c1:62: 4e:35:e7:af:6f:3e:df:96:35:52:13:4d:a3:03:18:1a:2c:73: cc:a7:31:58:a1:46:cc:6a:a8:6d:90:42:91:c4:13:6b:c9:65: 83:ed:13:2c:4f:37:64:98:d6:c8:96:91:ed:6c:1e:5b:6f:b0: 27:31:b9:a7:61:34:8c:f9:b5:0c:65:ea:b9:36:8f:22:90:83: da:e8:42:7d:09:21:55:0e:1c:3b:a8:a9:5c:bd:e4:78:7f:e9: be:1c:f1:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1 NDI2QTFBMDMwHhcNMjYwMzI0MjI0NjEwWhcNMjYwMzMxMjI0NjEwWjAYMRYwFAYD VQQDEw02OWMzMTQzMy05NjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgeFYkqbO+nr5YGuq3GBy0ULXqnlxPkBR4ATYhCcriNPFpU5EIDV9SXkgDTBV Fc+Nk21siOWjGBPQIsg5aBoGrRVcQAnZjFSBwkaCRBXSyJis2QvFupbZczJs/K09 PCE6EMFvgsw86nMaJ0DleCieriW/fXUPZNuRht+fVDW5xYG3pIS7fKmoR9VWHbss oxkxATJ0XU2dBzdE4C4Movs2jA63E3NBVxPoMyJYePH8gwmwL/z++9Jy+tPNl/yq smLTvKGg93ESw1d1iECMNtPRFDL0kXU+3Zek2dklKk4aaFTNWQXPTTOEvB0ZgPkB OjBtzc6+aJEdby4liAcNLOaSRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK/lX6Gi 2boMN2AgkVW239Wcn39jMB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA2TUzCsjmg+j0Cioe4JSyvTP1r3wZNRlBD59LZNaODnOHE6T10prIQMEZIF+v 1fRP05TIC4HwwuMR86lsqnnswU8vkyPBhMrsph1BGT8S8/Ojuom6c3/Ylx1bsesM Io/mOo2GsyPYCsBB6zhs5UNjY+Thej8ScBgnhVI4a/qtVCRt9O1HgzdOx/9TQjkW coXqtaExgwdGf7hJjNbRvd6EYMFiTjXnr28+35Y1UhNNowMYGixzzKcxWKFGzGqo bZBCkcQTa8llg+0TLE83ZJjWyJaR7WweW2+wJzG5p2E0jPm1DGXquTaPIpCD2uhC fQkhVQ4cO6ipXL3keH/pvhzx2Q== -----END CERTIFICATE-----Generated at Thu Mar 26 12:37:48 2026 by rpki-client