$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft File: kTeon0YQ2uLIjGlNyVLOWDVScHk.mft (raw, json) Hash identifier: J6ok6m24JBPCSb5eKPx/3AUPM2Hepr/8HhgBlS+xtCc= Subject key identifier: 68:13:9E:4A:0D:99:5E:88:07:8E:A1:97:30:B1:D0:1D:06:D3:3E:19 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 1086 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft Manifest number: 1077 Signing time: Tue 24 Mar 2026 17:16:12 +0000 Manifest this update: Tue 24 Mar 2026 17:16:11 +0000 Manifest next update: Tue 31 Mar 2026 17:16:11 +0000 Files and hashes: 1: kTeon0YQ2uLIjGlNyVLOWDVScHk.crl (hash: gUyHuLOy4IN6xVAm6NOAMOQEJ89tdVJ+azyXR+aXRQg=) 2: E9056E5A520611E9ABE43055C4F9AE02.roa (hash: i/vSA/o2tzhJc2uouR6N+I4uW3yyRdlQDMOU2dIkqu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4230 (0x1086) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Mar 24 17:16:11 2026 GMT Not After : Mar 31 17:16:11 2026 GMT Subject: CN=69c2c6dc-929d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b9:d7:17:54:60:80:05:ec:89:e2:38:fc:e1: 69:ac:af:c6:3e:b5:8b:00:ff:fc:81:ed:10:11:98: a4:d0:d1:1f:0d:49:bf:5c:b9:b7:99:ec:d3:77:f4: 4e:56:0f:df:6a:f0:d5:ba:c2:16:45:9f:5d:22:49: 08:5d:51:b2:0d:76:26:9a:5c:f8:98:3c:20:5a:29: 3e:d7:b7:ae:a5:1a:d4:fe:ce:34:14:84:8c:de:ce: bc:b8:fd:ac:72:a7:ce:e8:41:8d:2f:32:d2:b5:0c: a9:71:71:ea:ef:43:00:a2:45:3a:4b:cf:f9:41:68: e1:f4:4a:41:2d:4f:91:3f:5d:dd:3d:55:b0:54:e5: 29:58:43:62:12:67:77:83:f0:aa:9d:59:38:71:12: 6c:17:ab:c9:8c:54:0f:5d:27:03:0d:f1:e9:c3:b2: f5:d1:61:1f:7f:45:41:27:5c:a0:6d:90:b3:05:d6: 22:d4:d1:5d:13:fe:20:37:39:fc:90:ee:38:d5:3b: f6:ec:7b:92:4a:99:ed:c2:98:ba:67:5e:93:30:b8: c9:fb:a3:d2:4f:16:0c:d8:48:22:9f:33:7e:bc:f5: 38:06:d8:5b:34:ab:0e:1d:8c:0b:94:68:41:d7:52: 9f:12:a0:50:9b:c5:84:2f:32:2e:fe:bd:83:0a:c8: 71:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:13:9E:4A:0D:99:5E:88:07:8E:A1:97:30:B1:D0:1D:06:D3:3E:19 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c4:fd:9e:76:e2:cc:47:eb:7d:f8:a2:95:24:f2:2a:43:84: 80:51:39:32:df:9c:8f:cb:a7:6d:ea:71:e6:a8:b1:17:df:7d: 8e:b1:64:9f:4c:43:8d:b0:86:3d:26:92:1b:f7:2f:03:80:a1: da:90:48:9c:fe:26:fe:2b:c2:bd:ff:78:19:83:65:a0:ba:79: 9c:3a:1f:e0:ce:c2:70:89:b0:22:32:76:3e:e8:7a:9a:1c:5a: e4:56:a2:cf:c0:0b:63:c8:82:ea:81:0f:79:f9:2d:d0:21:4f: 73:66:2d:a4:c1:4a:cb:6d:73:38:83:8a:bb:c0:d3:39:2c:9c: fb:0f:a2:93:8d:37:9a:f9:5a:06:66:32:e4:6f:85:9f:36:e0: 3b:ee:6e:a9:5f:1f:33:de:20:d6:3c:09:d2:13:fe:a2:83:5c: 93:99:db:69:16:f3:d9:d4:61:ea:9b:f8:b6:2f:d2:e7:dc:ee: db:fe:6b:48:d1:91:64:aa:9b:f3:24:60:fe:5b:a1:e6:ba:ce: 77:b2:75:36:30:3e:9a:ab:ed:72:64:f0:a7:6f:82:e0:9d:3d: d8:4a:ce:82:65:75:cf:06:2b:48:b5:d1:a2:d6:58:3e:24:64: e7:4c:f6:27:42:52:b8:d0:b1:48:80:13:2f:9e:05:3f:bd:3b: 7e:ad:00:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjYwMzI0MTcxNjExWhcNMjYwMzMxMTcxNjExWjAYMRYwFAYD VQQDEw02OWMyYzZkYy05MjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbnXF1RggAXsieI4/OFprK/GPrWLAP/8ge0QEZik0NEfDUm/XLm3mezTd/RO Vg/favDVusIWRZ9dIkkIXVGyDXYmmlz4mDwgWik+17eupRrU/s40FISM3s68uP2s cqfO6EGNLzLStQypcXHq70MAokU6S8/5QWjh9EpBLU+RP13dPVWwVOUpWENiEmd3 g/CqnVk4cRJsF6vJjFQPXScDDfHpw7L10WEff0VBJ1ygbZCzBdYi1NFdE/4gNzn8 kO441Tv27HuSSpntwpi6Z16TMLjJ+6PSTxYM2EginzN+vPU4BthbNKsOHYwLlGhB 11KfEqBQm8WELzIu/r2DCshxbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGgTnkoN mV6IB46hlzCx0B0G0z4ZMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCQy80RTEzRjQwQzUyMDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1 TElqR2xOeVZMT1dEVlNjSGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP8T9nnbizEfrffiilSTyKkOEgFE5Mt+cj8unbepx5qixF999jrFkn0xDjbCG PSaSG/cvA4Ch2pBInP4m/ivCvf94GYNloLp5nDof4M7CcImwIjJ2Puh6mhxa5Fai z8ALY8iC6oEPefkt0CFPc2YtpMFKy21zOIOKu8DTOSyc+w+ik403mvlaBmYy5G+F nzbgO+5uqV8fM94g1jwJ0hP+ooNck5nbaRbz2dRh6pv4ti/S59zu2/5rSNGRZKqb 8yRg/luh5rrOd7J1NjA+mqvtcmTwp2+C4J092ErOgmV1zwYrSLXRotZYPiRk50z2 J0JSuNCxSIATL54FP707fq0ALA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:52:37 2026 by rpki-client