$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: uwtT4qQz0BqjN0ex/7TdlRZMpgta4qqUOtpnqFsrIa4= Subject key identifier: 59:57:25:B7:AC:E9:E9:C0:BF:23:5E:A7:D5:78:31:43:44:1E:59:69 Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 06CE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 06C7 Signing time: Tue 24 Mar 2026 21:44:38 +0000 Manifest this update: Tue 24 Mar 2026 21:44:37 +0000 Manifest next update: Tue 31 Mar 2026 21:44:37 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: xIOWr9uV7HubyHl3wGSE1GjVPuyAGBM0gxTtYqNSE0M=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: l4uYU+uPf8JPateYFt5+JYWdyGHASfl72ELVvU8+Sso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Mar 24 21:44:37 2026 GMT Not After : Mar 31 21:44:37 2026 GMT Subject: CN=69c305c6-ae7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a3:ce:7f:b4:f2:d9:54:57:03:57:c6:bb:68: 7d:2f:31:a8:c9:5f:58:77:ae:b9:74:3d:fa:57:11: a3:36:f0:65:b3:ec:93:37:f9:ce:78:22:2c:e4:b1: 6b:ea:9b:e2:55:f4:1b:b5:66:8e:2a:21:08:7b:d7: 93:86:6e:37:96:27:76:54:b5:a6:e3:95:9b:bb:28: 21:06:83:55:e3:73:db:89:dd:ff:07:1b:5b:3e:78: c5:db:e5:af:f9:7a:7d:a5:bb:ba:0b:b4:06:ea:87: 1c:69:37:23:ac:e3:67:3d:29:98:06:97:06:c8:3d: 1c:cc:b6:ca:ac:71:a1:9f:c0:3d:6b:56:76:b5:d6: 31:41:05:25:24:79:9c:01:48:ec:90:c3:df:96:fa: ad:c2:75:f9:59:8a:71:30:a3:4b:dd:3d:da:07:d9: 95:d8:3d:cd:46:00:6c:c2:1c:e0:d9:b1:4f:75:4c: ba:04:4c:03:2b:71:e4:26:4e:e9:91:ef:69:41:9a: c5:f2:61:d8:78:ce:94:56:1f:b4:82:6f:49:66:8a: 4e:d7:78:c0:9e:e6:09:dd:91:f8:71:98:69:71:16: 97:42:ec:35:29:f0:28:ac:5f:03:6a:ab:15:25:d7: 57:78:69:96:b8:96:77:86:9d:17:8d:ac:c9:07:38: 54:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:57:25:B7:AC:E9:E9:C0:BF:23:5E:A7:D5:78:31:43:44:1E:59:69 X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a4:01:0f:7d:df:e7:5f:4d:d3:3f:e7:66:cf:ad:d0:26:f8: 9b:de:19:0f:58:ac:0d:50:00:00:5b:09:a9:58:b7:0c:f4:98: 17:ae:30:d8:6f:09:8a:d6:68:33:73:50:fe:48:d9:e8:4d:98: 18:c5:c0:e4:7d:43:95:93:b2:22:16:65:a3:ce:75:50:4b:5d: c5:c7:02:86:42:5b:b3:c3:6c:42:57:c1:ad:35:e6:b7:84:e3: 1c:4a:7b:db:5b:55:cd:c3:86:78:1d:20:a0:78:a0:d9:a0:05: 30:bf:b1:b7:42:d8:64:d2:a1:d7:9b:d6:9d:bf:fd:de:f9:88: a8:34:22:4d:f1:09:ad:64:c9:ab:29:5d:97:7d:bb:22:aa:4b: f7:2e:f1:19:32:75:ac:b1:e2:1b:09:cd:c6:ec:55:45:5f:14: 6c:97:77:8b:ac:2b:32:7c:70:ca:0b:22:5e:7d:2b:18:1b:86: df:c2:7b:12:48:83:65:14:a2:a7:c0:1c:74:f5:95:f9:87:f2: fc:3a:ec:83:45:ff:6f:23:8f:3d:7d:30:64:d8:86:53:21:35: f5:1b:bf:08:6b:55:c3:3f:10:30:89:67:9b:7f:02:0c:59:3e: 20:c3:b9:97:8e:a9:78:96:a5:60:1c:e4:9f:17:8a:ff:10:98: aa:64:53:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjYwMzI0MjE0NDM3WhcNMjYwMzMxMjE0NDM3WjAYMRYwFAYD VQQDEw02OWMzMDVjNi1hZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaPOf7Ty2VRXA1fGu2h9LzGoyV9Yd665dD36VxGjNvBls+yTN/nOeCIs5LFr 6pviVfQbtWaOKiEIe9eThm43lid2VLWm45WbuyghBoNV43Pbid3/BxtbPnjF2+Wv +Xp9pbu6C7QG6occaTcjrONnPSmYBpcGyD0czLbKrHGhn8A9a1Z2tdYxQQUlJHmc AUjskMPflvqtwnX5WYpxMKNL3T3aB9mV2D3NRgBswhzg2bFPdUy6BEwDK3HkJk7p ke9pQZrF8mHYeM6UVh+0gm9JZopO13jAnuYJ3ZH4cZhpcRaXQuw1KfAorF8DaqsV JddXeGmWuJZ3hp0XjazJBzhUawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFlXJbes 6enAvyNep9V4MUNEHllpMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfqQBD33f519N0z/nZs+t0Cb4m94ZD1isDVAAAFsJqVi3DPSYF64w2G8JitZo M3NQ/kjZ6E2YGMXA5H1DlZOyIhZlo851UEtdxccChkJbs8NsQlfBrTXmt4TjHEp7 21tVzcOGeB0goHig2aAFML+xt0LYZNKh15vWnb/93vmIqDQiTfEJrWTJqyldl327 IqpL9y7xGTJ1rLHiGwnNxuxVRV8UbJd3i6wrMnxwygsiXn0rGBuG38J7EkiDZRSi p8AcdPWV+Yfy/Drsg0X/byOPPX0wZNiGUyE19Ru/CGtVwz8QMIlnm38CDFk+IMO5 l46peJalYBzknxeK/xCYqmRTFw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:50:40 2026 by rpki-client