$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: EwRdPT0ellqvcJJ3QdY5QdjTRUI8AyctXaCQL8+ymz4= Subject key identifier: EE:08:92:BA:69:90:24:23:7A:F2:D0:47:1B:99:EE:83:57:59:23:85 Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: 0129 Signing time: Wed 25 Mar 2026 04:52:25 +0000 Manifest this update: Wed 25 Mar 2026 04:52:25 +0000 Manifest next update: Wed 01 Apr 2026 04:52:25 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: QKfv3+ccipDFokdVCbn9T0/RnOOPtE5lcSHM1peUKLY=) 2: C37A8D80DC9411F0B18EF655406F56BC.roa (hash: cfpfLP3P460O3vJpqOubD8b9GsT8m4fCe7QE8ihtbGc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA, serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Mar 25 04:52:25 2026 GMT Not After : Apr 1 04:52:25 2026 GMT Subject: CN=69c36a09-51eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0a:fd:86:9c:f8:79:3e:2a:4e:92:83:8f:a0: 84:a2:90:02:05:1f:c3:24:39:69:4e:d9:2a:e7:a8: 08:5d:38:e2:da:68:22:0f:b2:a8:96:d6:63:05:bb: 72:a1:ea:12:c8:4e:77:9f:bd:0e:18:e5:c1:d3:b3: ce:9c:bc:c7:28:13:7f:89:3e:43:10:a8:08:95:fd: 4e:f4:d5:72:93:fc:d6:da:4c:8f:f8:7c:00:46:09: 18:19:5f:f1:c8:4a:c1:c1:b6:07:11:6a:94:57:03: 8c:63:47:aa:aa:93:29:e3:21:7e:a8:eb:7a:ae:77: 2e:ed:61:24:3f:6e:9c:8b:a4:4a:45:36:8f:2d:9d: f5:c1:a3:9c:9d:ac:f2:69:0b:c4:5e:70:1a:e2:fa: ed:41:8b:b8:17:d7:6a:cc:ce:a8:16:20:81:b7:25: 32:5b:93:04:4d:fa:a8:2d:31:0b:a2:97:3e:64:7d: 76:4e:22:58:e5:1b:be:83:d7:3a:5b:0c:ba:fe:f2: 7b:88:81:e9:fa:6d:d4:d2:d4:4d:5b:b3:f7:29:50: f8:c0:7f:ad:bb:66:32:a0:bb:3f:23:a4:ff:e5:a8: 32:66:7f:a7:13:f8:e5:0c:67:97:88:6f:3c:6f:8c: ec:76:bf:c6:45:24:17:cb:d3:71:9c:c0:a4:9e:77: 62:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:08:92:BA:69:90:24:23:7A:F2:D0:47:1B:99:EE:83:57:59:23:85 X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:ae:75:f9:1e:2e:56:6e:9f:7b:58:f0:5e:eb:5d:ad:90:d1: 29:c2:0d:8d:ad:b6:20:2e:37:67:f4:06:57:ec:bd:a6:4d:17: 19:7d:55:56:28:80:54:f2:d5:b8:8f:39:cf:83:80:8c:78:3d: 1c:c4:bb:39:ee:87:82:b3:1d:27:a7:4d:8f:bc:8b:a0:fb:fd: 2a:8f:e9:52:29:99:c1:4b:64:f8:94:22:4f:70:90:a4:e4:c4: 06:12:5b:73:17:61:38:30:59:73:7b:61:c7:52:36:71:eb:4f: f7:43:c5:48:f5:ff:61:81:66:be:3b:c9:f6:cf:4f:0a:d3:06: 68:3a:44:b9:fc:17:4c:0b:ec:c3:fb:42:e3:7c:72:3a:f3:73: ff:d9:54:3e:d3:0d:63:a4:32:2e:5e:d1:c7:45:d3:d9:29:35: 75:30:e8:56:10:51:c7:14:5f:6a:d7:77:c0:d6:64:cd:8a:4b: c2:5f:fa:a8:16:be:c4:13:2f:9b:67:13:c2:c9:55:c2:ce:fe: 1c:d1:ef:2d:ff:ec:a5:65:3e:98:ab:b0:7c:f1:7c:f2:d0:dc: bf:f4:e1:16:ec:75:eb:d8:57:a7:d1:5c:d2:4e:ba:be:b9:53: 81:98:f7:cf:42:5b:e2:60:35:f8:c1:9c:9b:fe:7e:72:69:bb: de:0d:a8:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkExMTAvBgNVBAUTKEFFQ0ZBNDgyNTJEQ0I1NUM1RjFFQjM4MTI4OENFREMz RTZGODYyNzQwHhcNMjYwMzI1MDQ1MjI1WhcNMjYwNDAxMDQ1MjI1WjAYMRYwFAYD VQQDEw02OWMzNmEwOS01MWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwr9hpz4eT4qTpKDj6CEopACBR/DJDlpTtkq56gIXTji2mgiD7KoltZjBbty oeoSyE53n70OGOXB07POnLzHKBN/iT5DEKgIlf1O9NVyk/zW2kyP+HwARgkYGV/x yErBwbYHEWqUVwOMY0eqqpMp4yF+qOt6rncu7WEkP26ci6RKRTaPLZ31waOcnazy aQvEXnAa4vrtQYu4F9dqzM6oFiCBtyUyW5METfqoLTELopc+ZH12TiJY5Ru+g9c6 Wwy6/vJ7iIHp+m3U0tRNW7P3KVD4wH+tu2YyoLs/I6T/5agyZn+nE/jlDGeXiG88 b4zsdr/GRSQXy9NxnMCknndiaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO4Ikrpp kCQjevLQRxuZ7oNXWSOFMB8GA1UdIwQYMBaAFK7PpIJS3LVcXx6zgSiM7cPm+GJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQS8yNjQ1MjFEMjY5 MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RWeGZIck9CS0l6dHctYjRZ blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFluUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQS8yNjQ1MjFEMjY5MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RW eGZIck9CS0l6dHctYjRZblEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANq51+R4uVm6fe1jwXutdrZDRKcINja22IC43Z/QGV+y9pk0XGX1VViiAVPLV uI85z4OAjHg9HMS7Oe6HgrMdJ6dNj7yLoPv9Ko/pUimZwUtk+JQiT3CQpOTEBhJb cxdhODBZc3thx1I2cetP90PFSPX/YYFmvjvJ9s9PCtMGaDpEufwXTAvsw/tC43xy OvNz/9lUPtMNY6QyLl7Rx0XT2Sk1dTDoVhBRxxRfatd3wNZkzYpLwl/6qBa+xBMv m2cTwslVws7+HNHvLf/spWU+mKuwfPF88tDcv/ThFux169hXp9Fc0k66vrlTgZj3 z0Jb4mA1+MGcm/5+cmm73g2o4A== -----END CERTIFICATE-----Generated at Thu Mar 26 22:08:02 2026 by rpki-client