$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: iHXNKv8NSpe7NPOijwHM0VVhDoj8MYZ3CvFckQqF+rQ= Subject key identifier: 6C:55:73:99:D2:DA:10:D2:42:2C:DB:AF:8F:1F:28:31:9E:D5:16:FB Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 0207 Signing time: Wed 25 Mar 2026 02:23:18 +0000 Manifest this update: Wed 25 Mar 2026 02:23:18 +0000 Manifest next update: Wed 01 Apr 2026 02:23:18 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: z/2L2MWIWeexoer6YoXkEQBOykF88eOfoTl341GIqjo=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: fhl3fJcB+h4weCxugxGGdq61t1fYoSdltlSekuAK37k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Mar 25 02:23:18 2026 GMT Not After : Apr 1 02:23:18 2026 GMT Subject: CN=69c34716-1aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7a:65:cc:b7:36:41:ae:d0:85:48:76:23:ff: cf:8e:81:63:27:eb:f9:43:29:a2:01:1c:74:8a:cf: ef:58:8d:fa:dc:fb:85:9e:96:e1:93:3b:22:07:a5: ef:7b:f1:83:88:5d:9f:8e:12:c0:b8:f4:c7:1e:6a: 3c:c9:0b:59:da:af:bc:8b:fe:ca:9d:81:66:92:9b: 3c:22:36:53:97:7c:7e:57:69:bf:f3:7e:f3:57:03: cf:23:1a:33:16:24:af:51:2f:84:85:a1:a2:32:84: a5:c8:41:52:ce:a1:d5:5d:fd:54:a6:21:cc:1f:b5: 9c:ca:a9:dd:db:91:59:4f:0f:82:7e:26:3e:7c:3f: c7:58:c9:e4:0c:64:93:18:06:0e:8a:f0:87:8c:cb: a1:50:40:8c:68:7e:ba:f1:cf:1e:42:72:82:c7:d0: f3:77:69:da:75:14:42:0b:21:63:41:a6:c1:7f:3a: d7:9d:64:6f:c9:08:f4:90:e1:b1:2f:bc:bf:42:f1: 83:2e:63:b8:cc:48:c6:7f:11:92:06:74:be:32:26: 22:f1:06:8b:a1:32:a3:26:29:ee:2a:28:18:8d:49: ea:b2:4d:ab:78:c1:5e:71:01:ab:02:53:c4:21:c8: 47:1b:b5:a2:c5:55:6d:a3:2f:68:28:db:48:57:52: 4f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:55:73:99:D2:DA:10:D2:42:2C:DB:AF:8F:1F:28:31:9E:D5:16:FB X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:6a:6d:5f:2d:a0:c0:33:ad:56:05:74:a4:fd:27:70:9f:03: 8e:50:73:ec:ae:3c:96:e4:85:f1:6f:0f:54:74:76:b9:2a:4a: 3c:aa:38:aa:10:32:c9:e1:63:9e:b2:a9:91:54:82:ad:a5:7c: eb:49:e4:64:e7:33:c3:ec:ee:51:30:0c:36:54:d3:47:35:88: e2:0c:92:5d:d9:9e:86:2f:88:7e:03:05:14:ec:fb:08:e2:9e: b2:55:6b:ee:e5:4b:9f:ec:58:2b:0a:2c:bb:83:e7:1e:fb:6f: 7c:93:03:30:fb:d3:c2:5c:47:b3:10:6c:9e:70:ee:d9:ab:82: c9:65:9c:4b:02:26:96:39:bb:8a:b6:42:5f:50:af:7b:c1:3d: 2f:e3:70:fb:78:10:01:c6:ea:6f:fd:b8:29:fd:fb:0c:2c:e2: 6a:f5:b1:e7:6f:44:32:bc:f7:21:80:65:f9:45:af:04:ce:b1: 12:ea:29:a5:d3:7a:d7:89:05:83:d9:f7:52:ce:78:66:ba:a3: f0:86:f3:7e:b0:a5:9c:ec:50:7f:d2:35:b0:8b:30:10:cd:65: bb:ce:41:ca:83:47:12:e5:0d:dc:5f:93:d4:ca:17:db:2b:96: 6b:f9:d8:45:78:83:d7:33:1a:4c:6b:d1:70:3d:a5:ed:25:94: bb:a7:a0:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjYwMzI1MDIyMzE4WhcNMjYwNDAxMDIyMzE4WjAYMRYwFAYD VQQDEw02OWMzNDcxNi0xYWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXplzLc2Qa7QhUh2I//PjoFjJ+v5QymiARx0is/vWI363PuFnpbhkzsiB6Xv e/GDiF2fjhLAuPTHHmo8yQtZ2q+8i/7KnYFmkps8IjZTl3x+V2m/837zVwPPIxoz FiSvUS+EhaGiMoSlyEFSzqHVXf1UpiHMH7Wcyqnd25FZTw+CfiY+fD/HWMnkDGST GAYOivCHjMuhUECMaH668c8eQnKCx9Dzd2nadRRCCyFjQabBfzrXnWRvyQj0kOGx L7y/QvGDLmO4zEjGfxGSBnS+MiYi8QaLoTKjJinuKigYjUnqsk2reMFecQGrAlPE IchHG7WixVVtoy9oKNtIV1JPFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGxVc5nS 2hDSQizbr48fKDGe1Rb7MB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApmptXy2gwDOtVgV0pP0ncJ8DjlBz7K48luSF8W8PVHR2uSpKPKo4qhAyyeFj nrKpkVSCraV860nkZOczw+zuUTAMNlTTRzWI4gySXdmehi+IfgMFFOz7COKeslVr 7uVLn+xYKwosu4PnHvtvfJMDMPvTwlxHsxBsnnDu2auCyWWcSwImljm7irZCX1Cv e8E9L+Nw+3gQAcbqb/24Kf37DCziavWx529EMrz3IYBl+UWvBM6xEuoppdN614kF g9n3Us54Zrqj8IbzfrClnOxQf9I1sIswEM1lu85ByoNHEuUN3F+T1MoX2yuWa/nY RXiD1zMaTGvRcD2l7SWUu6egcg== -----END CERTIFICATE-----Generated at Thu Mar 26 08:54:19 2026 by rpki-client