$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: gCL/PkX419gUxPufp8hC+eX4eETEFjp0kPDhqlfmjhI= Subject key identifier: A8:2A:43:E0:00:47:A2:4C:71:9B:72:39:89:28:76:24:8D:7B:80:35 Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: 0144 Signing time: Wed 25 Mar 2026 04:31:13 +0000 Manifest this update: Wed 25 Mar 2026 04:31:13 +0000 Manifest next update: Wed 01 Apr 2026 04:31:13 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: v5gnVsOjnto3yBxsyW18nSjJxA8sm+EYKw0x5JP2rjA=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: AmuO5Mz7Oe3J6VbUWmMhACa7zZVIB8sI5+X4h7QzjH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Mar 25 04:31:13 2026 GMT Not After : Apr 1 04:31:13 2026 GMT Subject: CN=69c36511-31d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:af:97:43:2b:03:10:8e:cf:dc:81:5d:f3:94: b4:ca:e5:67:a2:3c:a8:d8:0b:8e:12:30:3d:04:c0: d7:a3:c2:7a:82:25:e1:27:90:36:fb:84:eb:ab:7a: 65:3f:29:27:bc:e6:18:2d:e4:de:af:df:12:1c:f6: 97:4f:31:f5:d1:0e:85:5d:e0:58:00:4e:d7:bf:0c: 08:51:f7:e9:ad:db:a1:9a:c8:b6:d6:94:97:8f:1c: f9:3b:e5:96:c9:f5:71:f5:61:91:2b:a3:7f:4c:a8: 23:bf:c6:81:ac:1e:84:ab:39:07:7a:19:43:5a:18: ff:88:59:77:e2:29:50:3f:b9:fb:7f:be:fa:91:28: 3c:23:91:2a:71:16:42:58:16:b2:3d:9a:1e:60:9b: 08:8b:8f:67:1e:65:70:17:ad:cd:8a:2e:58:f5:55: 9b:f4:69:ac:ed:88:f8:d3:51:3c:88:1a:13:b8:6c: a5:b9:66:6b:dc:c1:1f:da:ff:af:c3:82:91:b5:fb: 63:9d:b5:60:5e:25:36:bf:a5:94:c6:60:ed:96:17: a6:a8:70:cb:41:25:91:a8:7c:ac:78:55:7e:3d:a5: 0f:9f:72:b5:ad:8f:ef:e9:96:1c:05:59:b1:99:8e: e2:0a:b6:1b:10:4b:56:2b:4d:75:5d:d1:f7:77:1a: 42:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:2A:43:E0:00:47:A2:4C:71:9B:72:39:89:28:76:24:8D:7B:80:35 X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:6c:5c:cf:51:54:99:36:a9:2c:c4:2b:5f:a1:0d:ac:7e:88: f6:71:d6:e4:09:86:48:93:c2:5a:39:00:3e:79:38:4e:fe:f9: 1b:c6:b7:c0:54:c1:2e:51:51:f5:7d:9e:af:ab:17:8a:02:a4: bc:62:ad:92:68:76:a1:6f:2b:e1:44:6b:2c:03:28:5b:e3:1e: 7f:a8:17:59:45:f2:5e:14:5b:f2:b5:2b:ae:64:b4:5c:84:5f: 18:b6:1a:79:63:bf:d1:05:d9:83:5d:8f:bd:ad:4f:16:40:80: 90:fb:84:c7:52:ad:b7:ab:95:03:00:83:8b:67:88:95:9b:b4: de:b7:0c:c4:ba:19:c9:9d:48:76:71:b0:29:09:4b:dc:3e:3b: 06:0e:b7:b4:a7:43:c4:2c:91:6d:93:a1:31:7b:9a:7c:0b:8b: 9c:a2:95:6a:d8:51:93:00:f8:7d:c1:c0:6b:d7:f3:d9:ff:17: 07:fb:0b:c8:ae:d5:6e:59:26:ab:0e:9b:19:b7:50:8e:c6:2c: f8:9d:da:72:2b:c9:70:64:c5:7b:9c:43:58:0c:4b:50:83:c8: 00:23:2c:34:e2:d3:2d:bf:34:0f:5a:5d:36:0f:04:65:ab:e4: e6:ba:d4:81:b5:20:fa:d6:d3:8d:42:48:ee:19:84:65:94:ee: a2:73:a1:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjYwMzI1MDQzMTEzWhcNMjYwNDAxMDQzMTEzWjAYMRYwFAYD VQQDEw02OWMzNjUxMS0zMWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAma+XQysDEI7P3IFd85S0yuVnojyo2AuOEjA9BMDXo8J6giXhJ5A2+4Trq3pl PyknvOYYLeTer98SHPaXTzH10Q6FXeBYAE7XvwwIUffprduhmsi21pSXjxz5O+WW yfVx9WGRK6N/TKgjv8aBrB6EqzkHehlDWhj/iFl34ilQP7n7f776kSg8I5EqcRZC WBayPZoeYJsIi49nHmVwF63Nii5Y9VWb9Gms7Yj401E8iBoTuGyluWZr3MEf2v+v w4KRtftjnbVgXiU2v6WUxmDtlhemqHDLQSWRqHyseFV+PaUPn3K1rY/v6ZYcBVmx mY7iCrYbEEtWK011XdH3dxpCiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKgqQ+AA R6JMcZtyOYkodiSNe4A1MB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsmxcz1FUmTapLMQrX6ENrH6I9nHW5AmGSJPCWjkAPnk4Tv75G8a3wFTBLlFR 9X2er6sXigKkvGKtkmh2oW8r4URrLAMoW+Mef6gXWUXyXhRb8rUrrmS0XIRfGLYa eWO/0QXZg12Pva1PFkCAkPuEx1Ktt6uVAwCDi2eIlZu03rcMxLoZyZ1IdnGwKQlL 3D47Bg63tKdDxCyRbZOhMXuafAuLnKKVathRkwD4fcHAa9fz2f8XB/sLyK7Vblkm qw6bGbdQjsYs+J3acivJcGTFe5xDWAxLUIPIACMsNOLTLb80D1pdNg8EZavk5rrU gbUg+tbTjUJI7hmEZZTuonOh+Q== -----END CERTIFICATE-----Generated at Thu Mar 26 14:13:32 2026 by rpki-client