$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: gNzR8Vm1IHZ0bYEgNOik1Oh06+gZjYJqwwJ2SYE92m4= Subject key identifier: 8A:4B:43:6F:08:7D:0D:59:EF:62:FC:C0:A9:0E:EA:6F:5E:9B:6C:11 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 1269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 125B Signing time: Tue 24 Mar 2026 16:59:41 +0000 Manifest this update: Tue 24 Mar 2026 16:59:41 +0000 Manifest next update: Tue 31 Mar 2026 16:59:41 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: YGZ75rt/cOKgfdSK4pe8dDDC4Nt8mSMLf3xiOk546Ns=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: h+tzRhpe2AsXoHJ8CBPjL2tTeLXiRNNuDMYfrMmyPpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4713 (0x1269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Mar 24 16:59:41 2026 GMT Not After : Mar 31 16:59:41 2026 GMT Subject: CN=69c2c2fd-4170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:52:fe:af:e6:ef:ee:9a:3a:c6:3b:a0:5d: 71:01:44:07:13:49:86:1d:d2:5f:c6:97:54:eb:fc: 14:63:27:01:6d:cc:a8:f4:99:c8:10:d9:dd:90:45: 7d:bd:c4:60:c4:d9:21:02:2f:e2:ea:31:b1:57:d4: 6a:f9:2a:84:8d:99:bb:f7:68:1d:2a:65:0d:45:06: e7:46:f0:9e:a0:37:54:db:62:86:c4:4d:26:ec:1a: 86:44:57:fe:99:ff:2a:05:2f:f5:42:a2:19:5a:68: 80:31:9e:81:fb:cd:2a:c1:7e:5e:00:37:5c:34:91: 24:1d:65:29:96:9b:08:c0:28:41:5b:b7:64:74:e8: 64:c5:38:d6:78:3d:7f:f1:6d:c1:cd:61:81:d3:e7: e6:69:9d:6e:6a:a8:13:27:42:83:21:1e:e4:b4:a6: 5e:f9:68:96:78:6d:8c:af:db:f9:a6:b5:69:11:c2: e3:ad:2d:a2:11:ab:81:e1:51:22:c3:14:da:6e:a4: 01:85:85:d5:15:42:b7:c8:d4:74:40:78:be:da:d8: e3:bd:2a:0b:40:d3:79:00:3d:0d:ef:c2:43:20:fd: af:84:a5:29:8b:e6:4c:69:19:c4:32:97:b4:c5:cd: 60:d5:45:c3:72:95:e3:32:89:2b:55:47:c0:b0:2a: a5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4B:43:6F:08:7D:0D:59:EF:62:FC:C0:A9:0E:EA:6F:5E:9B:6C:11 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:46:03:76:54:dc:4d:c2:a1:0c:85:b8:59:ba:d0:5a:a0:13: 50:c4:9a:0b:63:9e:71:26:db:d6:3f:34:2f:98:61:c8:44:5a: 9c:e3:1e:b7:48:f7:df:c6:ff:e5:f2:75:eb:ac:e0:46:74:77: 5d:7c:28:1b:d2:a1:6b:f5:ca:60:68:ec:65:ac:65:eb:e6:94: 5a:4b:6c:b6:71:0f:fc:ce:a3:a2:41:21:4c:f9:b0:3c:59:db: af:7c:9e:1b:de:43:ac:7f:7c:d9:6a:36:3b:b5:9e:86:09:b2: 3e:ec:3f:73:cd:6e:13:cb:c8:6d:7f:91:f7:a0:e6:82:e1:ce: 8e:c2:e1:0e:3e:d6:55:b1:ef:79:5e:5a:85:0b:6b:c4:b6:fe: 6a:6e:65:68:f6:d9:53:7a:be:7e:05:91:39:5c:2e:54:ce:5f: 32:d3:e2:2b:9b:07:40:10:27:a2:90:a4:fc:89:09:d9:38:66: 73:a4:99:a8:50:55:4b:c8:1f:0e:55:ad:4d:32:eb:79:4c:f4: 6b:d8:19:b9:34:67:6c:0f:e5:66:bd:7a:ee:0f:a6:58:bc:8e: 1b:41:2f:14:e5:56:1e:cc:7c:0f:5a:51:71:49:4e:5f:6a:8c: cb:f8:41:cd:b1:aa:17:75:ef:02:78:94:9e:c4:e7:ac:ef:d3: ec:91:99:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjYwMzI0MTY1OTQxWhcNMjYwMzMxMTY1OTQxWjAYMRYwFAYD VQQDEw02OWMyYzJmZC00MTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/VS/q/m7+6aOsY7oF1xAUQHE0mGHdJfxpdU6/wUYycBbcyo9JnIENndkEV9 vcRgxNkhAi/i6jGxV9Rq+SqEjZm792gdKmUNRQbnRvCeoDdU22KGxE0m7BqGRFf+ mf8qBS/1QqIZWmiAMZ6B+80qwX5eADdcNJEkHWUplpsIwChBW7dkdOhkxTjWeD1/ 8W3BzWGB0+fmaZ1uaqgTJ0KDIR7ktKZe+WiWeG2Mr9v5prVpEcLjrS2iEauB4VEi wxTabqQBhYXVFUK3yNR0QHi+2tjjvSoLQNN5AD0N78JDIP2vhKUpi+ZMaRnEMpe0 xc1g1UXDcpXjMokrVUfAsCqlcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIpLQ28I fQ1Z72L8wKkO6m9em2wRMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAakYDdlTcTcKhDIW4WbrQWqATUMSaC2OecSbb1j80L5hhyERanOMet0j338b/ 5fJ166zgRnR3XXwoG9Kha/XKYGjsZaxl6+aUWktstnEP/M6jokEhTPmwPFnbr3ye G95DrH982Wo2O7WehgmyPuw/c81uE8vIbX+R96DmguHOjsLhDj7WVbHveV5ahQtr xLb+am5laPbZU3q+fgWROVwuVM5fMtPiK5sHQBAnopCk/IkJ2Thmc6SZqFBVS8gf DlWtTTLreUz0a9gZuTRnbA/lZr167g+mWLyOG0EvFOVWHsx8D1pRcUlOX2qMy/hB zbGqF3XvAniUnsTnrO/T7JGZqg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:10:45 2026 by rpki-client