$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: wPLq0ga72Rk1IggDfOi7M4NKebYaIgPRCra03h4d2tc= Subject key identifier: 5E:28:F3:BB:9F:05:22:AD:B5:69:1B:AA:8C:EC:22:6C:D7:EB:A1:B8 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 0134 Signing time: Wed 25 Mar 2026 04:39:27 +0000 Manifest this update: Wed 25 Mar 2026 04:39:27 +0000 Manifest next update: Wed 01 Apr 2026 04:39:27 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: DiayDjvsBpx2uD/CpSaCcEq4kNzA5aN0jn54Fuj5lyY=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: /ju6tAC2YvQK9Mt9Ug1vYucEJYF6/PAoDqUqSoXsrZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Mar 25 04:39:27 2026 GMT Not After : Apr 1 04:39:27 2026 GMT Subject: CN=69c366ff-8146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:78:7a:c9:3f:34:f8:b4:25:35:2b:e8:d5:23: 1a:0e:43:4b:e2:08:e7:37:08:c4:7a:db:80:c6:8d: 89:bb:32:bc:39:13:ce:40:e9:bd:f0:d4:f3:f4:32: f2:3f:ad:4a:33:d6:a4:90:f8:14:82:40:91:4a:09: b1:07:92:23:7f:0c:67:20:c1:c1:2f:45:18:9c:55: 0f:b0:07:e8:78:34:97:28:0b:29:22:a0:52:9f:2f: b5:5f:79:d8:3e:88:3e:7a:dd:ba:0d:ae:f2:5d:76: e8:9e:2f:ce:51:c4:bd:ad:65:62:2b:4c:d2:45:55: 8b:42:cc:ae:e5:b2:db:3f:0b:58:ed:69:f3:68:bb: cd:ce:56:91:b2:85:9e:77:28:83:98:e4:0c:7b:d0: c8:75:06:f1:61:fb:44:6c:e9:99:6d:6a:4f:3e:0e: f9:8a:e6:a4:14:f4:a3:48:0a:3f:60:d6:31:be:56: c1:48:bb:19:1f:d8:89:d1:25:41:c8:2b:b8:c9:ec: 83:e8:ad:6d:30:c6:47:2f:7d:3f:58:c0:b1:f2:a6: 9d:7c:2a:6a:b5:72:8f:b6:0e:6a:29:73:fa:14:e6: ed:19:01:4e:7b:8f:f8:fb:35:c0:ba:b9:11:eb:28: c4:33:64:7c:41:28:95:12:94:3c:38:84:22:82:f3: f6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:28:F3:BB:9F:05:22:AD:B5:69:1B:AA:8C:EC:22:6C:D7:EB:A1:B8 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:09:79:c8:c5:98:43:c8:f8:df:e4:e9:c3:47:24:58:05:f5: e8:2a:36:44:94:bd:eb:2b:3d:92:20:53:13:7d:3e:b5:db:09: df:1c:93:21:9f:bd:27:d9:05:0b:84:ec:87:b9:a8:43:7c:bb: 01:a1:56:b1:47:77:0b:03:0a:87:cc:de:ab:27:62:22:fa:b8: 15:b1:ee:d7:32:c5:f6:f1:31:b6:92:ae:02:09:03:f9:32:9d: f1:ff:02:47:aa:e6:71:f8:ed:37:65:96:41:3a:33:e0:06:73: a7:e2:ac:c0:c0:cc:25:03:89:a0:19:51:36:42:86:5b:c3:ce: 7d:f1:5a:d5:37:33:da:c8:58:00:4f:5e:11:f2:ee:6d:1e:68: e0:70:85:f1:b2:61:da:c8:33:29:ca:b7:bb:0a:50:e8:96:54: b2:05:f2:d6:f4:f0:dd:0d:48:69:d8:d2:10:d7:e6:99:93:7d: dd:47:f9:1d:68:46:2f:93:a5:6f:f8:5c:17:d0:ba:a6:6e:35: 4b:3d:cb:a2:37:ab:cb:2c:c0:57:ef:c8:e8:4a:d9:fb:96:07: df:62:15:71:ba:63:1c:5c:40:20:38:10:88:de:18:46:5a:9e: 86:17:f1:66:47:56:c5:ff:d9:d3:87:ec:81:e2:b4:a8:4f:9d: f8:83:b4:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjYwMzI1MDQzOTI3WhcNMjYwNDAxMDQzOTI3WjAYMRYwFAYD VQQDEw02OWMzNjZmZi04MTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Xh6yT80+LQlNSvo1SMaDkNL4gjnNwjEetuAxo2JuzK8ORPOQOm98NTz9DLy P61KM9akkPgUgkCRSgmxB5IjfwxnIMHBL0UYnFUPsAfoeDSXKAspIqBSny+1X3nY Pog+et26Da7yXXboni/OUcS9rWViK0zSRVWLQsyu5bLbPwtY7WnzaLvNzlaRsoWe dyiDmOQMe9DIdQbxYftEbOmZbWpPPg75iuakFPSjSAo/YNYxvlbBSLsZH9iJ0SVB yCu4yeyD6K1tMMZHL30/WMCx8qadfCpqtXKPtg5qKXP6FObtGQFOe4/4+zXAurkR 6yjEM2R8QSiVEpQ8OIQigvP21wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF4o87uf BSKttWkbqozsImzX66G4MB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlQl5yMWYQ8j43+Tpw0ckWAX16Co2RJS96ys9kiBTE30+tdsJ3xyTIZ+9J9kF C4Tsh7moQ3y7AaFWsUd3CwMKh8zeqydiIvq4FbHu1zLF9vExtpKuAgkD+TKd8f8C R6rmcfjtN2WWQToz4AZzp+KswMDMJQOJoBlRNkKGW8POffFa1Tcz2shYAE9eEfLu bR5o4HCF8bJh2sgzKcq3uwpQ6JZUsgXy1vTw3Q1IadjSENfmmZN93Uf5HWhGL5Ol b/hcF9C6pm41Sz3LojeryyzAV+/I6ErZ+5YH32IVcbpjHFxAIDgQiN4YRlqehhfx ZkdWxf/Z04fsgeK0qE+d+IO0Nw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:12:29 2026 by rpki-client