$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: wTRNEsnycdKppL+74mvLL8kHtls4sDfHHNxPuCOsuSM= Subject key identifier: B3:08:25:C0:34:FF:BA:B7:35:B6:AF:18:07:98:4F:55:A9:4B:32:3B Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0789 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 077D Signing time: Tue 24 Mar 2026 21:18:35 +0000 Manifest this update: Tue 24 Mar 2026 21:18:34 +0000 Manifest next update: Tue 31 Mar 2026 21:18:34 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: WNdJUBIYb/n9FvwxRfGximUCq+pew7FksLd3EnbPJCI=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: aBoUkT3XfOno4ZFpM1LCowGFp8BTgYEHGaCNCAbFWpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Mar 24 21:18:34 2026 GMT Not After : Mar 31 21:18:34 2026 GMT Subject: CN=69c2ffab-cd51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:8d:3c:88:ac:e9:2d:8e:62:3b:d6:a6:a4:ae: 50:2f:fd:1d:3d:fa:9f:0f:3b:c7:fa:5b:f8:b7:4d: 53:2d:3a:ac:f0:95:e0:a3:5a:dc:38:94:2f:82:b3: 7f:d8:ef:37:ad:8c:05:70:2f:ef:80:58:f6:81:6e: f4:af:7e:0a:9d:d6:f5:d7:e7:5d:1b:02:65:49:ab: 51:b8:da:09:d5:f0:12:34:77:35:6b:83:ac:d9:11: 58:94:33:58:1d:65:b6:9e:7b:78:1d:2d:34:4b:87: 2c:38:4a:02:cc:6c:f6:6b:71:41:8a:c5:52:5f:58: 75:f2:aa:c7:6c:12:7f:43:94:b0:54:cd:e5:90:79: 87:80:29:79:a8:40:f7:ce:fe:2b:97:14:fb:fd:4e: 38:87:ba:91:e5:86:1c:c2:7b:12:78:5f:54:7f:38: b1:96:e0:f0:fb:6f:30:a6:46:b4:a2:57:ff:a3:78: 30:e8:b3:13:08:e4:90:80:16:ab:ae:a2:0d:8c:92: 99:c3:78:43:f4:43:60:0e:a1:43:c5:17:82:a2:ca: 31:48:1f:2a:2c:b6:06:06:64:01:fa:da:dd:19:d3: 5f:29:25:05:7b:97:90:36:bc:32:ca:7a:23:fd:b6: b6:5e:b7:26:76:1b:e6:55:04:42:e8:c9:1c:ee:b3: 6e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:08:25:C0:34:FF:BA:B7:35:B6:AF:18:07:98:4F:55:A9:4B:32:3B X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:73:73:a4:8f:67:8d:22:b9:3d:ad:17:9c:5b:83:13:16:16: 7d:fe:f5:f7:8b:53:57:c9:e5:f6:e8:6d:2e:19:60:27:4a:2b: 07:90:0a:fb:77:0c:8d:9f:31:a4:28:3c:ea:c0:4e:0d:2e:36: 6a:03:52:8e:22:7d:b4:d5:e6:93:c9:6a:d5:09:f8:cf:06:82: 8f:cc:76:92:db:a2:74:82:2b:b1:3d:cc:57:fd:9a:14:af:67: f7:ea:8d:3c:a8:29:92:25:e4:14:10:8b:a1:e5:24:fa:bd:a5: 46:30:2e:9f:6f:66:0b:b7:d5:88:1c:5f:a5:a9:8a:3b:3b:c8: 15:3a:ba:e7:4a:a0:93:60:f5:22:53:ed:fa:13:84:d8:ce:05: 51:88:79:5f:1b:7d:56:14:a3:5e:96:81:a2:80:4d:a0:73:e1: 1e:00:ed:59:e3:47:3e:e3:51:41:6d:ac:21:13:be:5c:b7:3a: 6e:23:b0:62:76:35:22:ba:70:51:0a:80:7b:b5:90:f6:2a:96: be:33:fa:f7:5d:13:32:42:62:83:1d:90:49:43:8f:a1:52:ff: a5:c1:50:5d:e8:d3:7a:a5:37:52:6d:38:07:8b:8a:1a:20:81: 86:7e:95:89:96:7a:f2:cb:2a:de:cd:4e:fc:54:ad:82:63:d4: 2d:a7:8e:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjYwMzI0MjExODM0WhcNMjYwMzMxMjExODM0WjAYMRYwFAYD VQQDEw02OWMyZmZhYi1jZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgo08iKzpLY5iO9ampK5QL/0dPfqfDzvH+lv4t01TLTqs8JXgo1rcOJQvgrN/ 2O83rYwFcC/vgFj2gW70r34Kndb11+ddGwJlSatRuNoJ1fASNHc1a4Os2RFYlDNY HWW2nnt4HS00S4csOEoCzGz2a3FBisVSX1h18qrHbBJ/Q5SwVM3lkHmHgCl5qED3 zv4rlxT7/U44h7qR5YYcwnsSeF9UfzixluDw+28wpka0olf/o3gw6LMTCOSQgBar rqINjJKZw3hD9ENgDqFDxReCosoxSB8qLLYGBmQB+trdGdNfKSUFe5eQNrwyynoj /ba2XrcmdhvmVQRC6Mkc7rNujQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMIJcA0 /7q3NbavGAeYT1WpSzI7MB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaXNzpI9njSK5Pa0XnFuDExYWff7194tTV8nl9uhtLhlgJ0orB5AK+3cMjZ8x pCg86sBODS42agNSjiJ9tNXmk8lq1Qn4zwaCj8x2ktuidIIrsT3MV/2aFK9n9+qN PKgpkiXkFBCLoeUk+r2lRjAun29mC7fViBxfpamKOzvIFTq650qgk2D1IlPt+hOE 2M4FUYh5Xxt9VhSjXpaBooBNoHPhHgDtWeNHPuNRQW2sIRO+XLc6biOwYnY1Irpw UQqAe7WQ9iqWvjP6910TMkJigx2QSUOPoVL/pcFQXejTeqU3Um04B4uKGiCBhn6V iZZ68ssq3s1O/FStgmPULaeO6Q== -----END CERTIFICATE-----Generated at Thu Mar 26 09:52:42 2026 by rpki-client