$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: OJLEQGz75+zwOOLL8FnnjKbnjggkNgSkm43+i80MH9g= Subject key identifier: 4F:E6:41:EE:1D:5E:53:E1:36:3B:8C:49:1A:96:FA:68:44:BF:98:72 Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 13C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 13BB Signing time: Thu 26 Mar 2026 16:55:02 +0000 Manifest this update: Thu 26 Mar 2026 16:55:02 +0000 Manifest next update: Thu 02 Apr 2026 16:55:02 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: 4YxqrgtZbzjbcGhgv5UzMlHtwnzh9m5EuE7NfnUezRs=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: RPjXeL3Zl8P6QkaRaUeCd76+wyQHC30Y9Dr1jaF8lPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5062 (0x13c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Mar 26 16:55:02 2026 GMT Not After : Apr 2 16:55:02 2026 GMT Subject: CN=69c564e6-6c6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d7:d8:b5:4a:77:64:7c:f0:49:cb:66:c6:15: b1:94:79:1a:e6:26:04:c4:cd:ad:18:51:8d:eb:05: f2:a8:b7:40:02:3b:84:36:b3:72:55:23:74:91:1d: ac:6d:2a:bd:e2:ca:e6:56:7d:82:83:d7:61:35:08: 06:0b:16:d7:21:bb:9a:4e:54:f3:1a:84:fd:85:86: 48:f1:1d:89:dc:4c:27:03:7d:a3:ed:50:e7:a3:4c: 34:bc:b5:4d:d5:d8:ba:b9:b0:e5:ee:95:d8:c0:d1: e9:9d:33:e5:5e:1a:94:62:36:5c:2a:4e:46:f9:ad: 70:29:62:28:44:d9:cd:5f:1b:ec:64:9d:ad:33:d2: 49:01:8b:cd:d6:22:5d:d1:67:26:1b:34:d6:7b:f4: 65:c8:3a:6e:44:35:8b:01:78:fc:b6:e3:f0:43:2a: 0a:6c:05:26:0a:90:13:a8:0f:2c:8c:48:f8:8a:c8: b3:53:c2:83:ca:32:b3:07:60:2e:11:14:a5:59:55: e1:5d:31:28:64:7a:bc:d6:ef:ca:86:21:73:9d:6b: cb:ec:7f:7e:90:91:8c:c4:78:17:2b:12:bb:37:44: 1f:35:a3:72:39:12:99:90:a0:ff:f3:2a:d1:a4:3e: 9f:3e:e2:19:a5:4c:0c:01:ea:71:95:e4:5c:77:da: 0d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E6:41:EE:1D:5E:53:E1:36:3B:8C:49:1A:96:FA:68:44:BF:98:72 X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:7b:38:f4:2e:85:3a:28:ec:d1:37:f3:b8:30:2e:41:f0:03: f1:99:d7:80:c1:a2:03:94:f1:2d:7b:09:0e:90:18:bf:a0:05: ea:08:82:d7:7d:ee:8f:13:c7:c1:ce:e2:bd:e3:48:b9:c4:a9: 43:9a:c8:63:ec:6a:ad:53:8d:e9:6d:09:de:f6:1b:b1:57:79: 10:a1:05:ff:aa:79:3c:42:70:74:6f:b8:33:bd:bf:69:99:59: 2a:ab:98:b6:87:9a:eb:e1:d1:2c:56:e8:d4:de:21:17:ef:76: 52:ed:a9:1f:fe:52:d8:d9:f8:10:64:20:36:af:27:58:21:97: e3:35:c9:2a:80:65:0d:5a:7e:7a:4e:fa:58:40:21:25:15:6e: ce:6d:68:c6:fe:ac:6f:c8:4c:a3:8c:07:a8:1b:96:51:94:6c: 5e:ef:bd:07:7e:f6:a7:40:9a:c3:ac:20:d0:91:7e:09:28:39: 1f:80:2c:49:90:d1:7e:02:ca:1c:0b:65:79:df:0f:df:49:0b: cb:dd:6d:d9:b5:d2:9f:01:b8:b3:ec:53:97:9f:09:46:15:16: 52:25:0a:d4:99:a3:70:2e:59:93:41:24:a2:29:4f:f5:f9:ff: ac:41:f4:f3:1b:79:59:07:42:ea:b1:81:f4:f2:d2:8f:3c:7a: 4c:24:26:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjYwMzI2MTY1NTAyWhcNMjYwNDAyMTY1NTAyWjAYMRYwFAYD VQQDEw02OWM1NjRlNi02YzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NfYtUp3ZHzwSctmxhWxlHka5iYExM2tGFGN6wXyqLdAAjuENrNyVSN0kR2s bSq94srmVn2Cg9dhNQgGCxbXIbuaTlTzGoT9hYZI8R2J3EwnA32j7VDno0w0vLVN 1di6ubDl7pXYwNHpnTPlXhqUYjZcKk5G+a1wKWIoRNnNXxvsZJ2tM9JJAYvN1iJd 0WcmGzTWe/RlyDpuRDWLAXj8tuPwQyoKbAUmCpATqA8sjEj4isizU8KDyjKzB2Au ERSlWVXhXTEoZHq81u/KhiFznWvL7H9+kJGMxHgXKxK7N0QfNaNyORKZkKD/8yrR pD6fPuIZpUwMAepxleRcd9oNxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE/mQe4d XlPhNjuMSRqW+mhEv5hyMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkns49C6FOijs0TfzuDAuQfAD8ZnXgMGiA5TxLXsJDpAYv6AF6giC133ujxPH wc7iveNIucSpQ5rIY+xqrVON6W0J3vYbsVd5EKEF/6p5PEJwdG+4M72/aZlZKquY toea6+HRLFbo1N4hF+92Uu2pH/5S2Nn4EGQgNq8nWCGX4zXJKoBlDVp+ek76WEAh JRVuzm1oxv6sb8hMo4wHqBuWUZRsXu+9B372p0Caw6wg0JF+CSg5H4AsSZDRfgLK HAtled8P30kLy91t2bXSnwG4s+xTl58JRhUWUiUK1JmjcC5Zk0EkoilP9fn/rEH0 8xt5WQdC6rGB9PLSjzx6TCQmgw== -----END CERTIFICATE-----Generated at Thu Mar 26 20:14:11 2026 by rpki-client