$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: +z3cQPuRmtLYHFQes/nnq/uWSC6KxstR3x0dkBBYgEU= Subject key identifier: C0:10:0B:4D:DB:97:D2:45:88:80:69:58:3B:9F:41:90:90:10:E0:A7 Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 01B2 Signing time: Wed 25 Mar 2026 03:19:03 +0000 Manifest this update: Wed 25 Mar 2026 03:19:02 +0000 Manifest next update: Wed 01 Apr 2026 03:19:02 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: vU1dkY6hOIXxCfDnd5OiyTLK+kxVEaUp0D0Q3U+uLQo=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: Y7CBsuQt9HIpYcN19tybRAYJs+zswt16vqxj5J0HE2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Mar 25 03:19:02 2026 GMT Not After : Apr 1 03:19:02 2026 GMT Subject: CN=69c35426-9561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:31:48:af:fb:81:14:6c:d4:7c:1c:33:c9:6c: 15:6c:55:b6:6b:f1:76:75:a7:07:fb:c5:03:06:65: 68:47:84:08:b2:f3:fb:d1:65:81:f9:dd:88:21:34: 7b:7c:7e:44:c8:55:2b:90:c5:93:3c:ae:f0:14:89: c2:85:67:a9:2d:a4:8a:24:6f:cf:20:ca:ad:e1:66: 01:d5:82:3b:78:1d:23:41:cd:21:75:fd:05:e6:4b: e3:b3:1c:ec:0b:2d:d6:1c:4e:68:e3:25:24:42:11: c5:dc:05:eb:42:74:e4:c4:20:dd:20:85:67:02:fb: c2:ca:4b:80:37:3b:4e:cf:5b:07:80:79:70:52:3b: 2b:49:1c:8d:8d:86:b1:99:4b:d2:51:64:47:5c:fe: c3:55:e8:f6:1e:a4:de:ad:56:d2:72:a9:2b:e3:c3: 21:7c:09:53:a6:41:9c:91:19:38:04:cd:f9:ad:e3: 5c:8f:b1:86:7d:c8:ae:8c:41:a2:3e:2c:87:c9:47: 4a:a7:dd:56:b4:44:e2:65:db:67:23:a5:b7:94:a7: 99:93:fc:55:ea:1a:72:e0:b5:64:da:33:18:b9:98: 75:1d:27:41:49:38:29:e5:7e:9b:57:be:cc:e6:36: 1f:70:d1:03:65:c8:83:cd:e0:13:00:31:b0:32:8f: 90:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:10:0B:4D:DB:97:D2:45:88:80:69:58:3B:9F:41:90:90:10:E0:A7 X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:7e:d8:26:59:d0:5b:f2:31:6a:bb:d2:70:fd:24:bf:5f:f2: 20:19:93:8a:f6:0d:e9:6f:57:e6:1d:50:5f:9b:41:ec:10:6c: 7b:2b:df:82:e4:3f:24:b6:c2:6b:f3:36:74:65:f5:bb:05:ab: 6f:e9:70:98:ba:04:23:75:6c:0c:33:e9:39:22:7c:02:42:5e: 9f:97:73:8b:26:c6:fd:5b:51:fa:d6:96:77:8f:74:30:12:a4: 40:ad:d1:e3:dd:da:f6:37:74:54:01:c9:e5:e9:e4:26:50:9f: 60:84:5a:9c:a7:f4:69:60:b3:95:5f:10:bd:d3:2c:7f:c3:78: be:5e:81:ee:59:55:e3:0f:e5:d5:a5:9c:c3:e2:89:4f:7c:e8: a2:9d:45:25:88:1f:bd:d7:40:7e:f5:fc:86:c1:1a:03:f2:30: c5:79:b0:1a:de:39:00:63:fb:4f:ec:84:c8:07:a9:87:99:04: f8:81:09:b1:1e:a0:79:ab:82:93:fb:05:5a:28:7c:d9:3a:06: ae:ae:5f:ec:12:6e:0a:f0:5d:3b:aa:b2:41:ec:4c:42:9f:5d: 28:3d:71:f1:d2:0a:df:f6:b7:75:8d:25:1f:a2:d4:ea:15:7e: 17:00:8b:a4:06:74:4e:81:bb:97:5d:13:9e:5b:09:f9:2c:5a: 7a:f1:1c:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjYwMzI1MDMxOTAyWhcNMjYwNDAxMDMxOTAyWjAYMRYwFAYD VQQDEw02OWMzNTQyNi05NTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujFIr/uBFGzUfBwzyWwVbFW2a/F2dacH+8UDBmVoR4QIsvP70WWB+d2IITR7 fH5EyFUrkMWTPK7wFInChWepLaSKJG/PIMqt4WYB1YI7eB0jQc0hdf0F5kvjsxzs Cy3WHE5o4yUkQhHF3AXrQnTkxCDdIIVnAvvCykuANztOz1sHgHlwUjsrSRyNjYax mUvSUWRHXP7DVej2HqTerVbScqkr48MhfAlTpkGckRk4BM35reNcj7GGfciujEGi PiyHyUdKp91WtETiZdtnI6W3lKeZk/xV6hpy4LVk2jMYuZh1HSdBSTgp5X6bV77M 5jYfcNEDZciDzeATADGwMo+QWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMAQC03b l9JFiIBpWDufQZCQEOCnMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcX7YJlnQW/IxarvScP0kv1/yIBmTivYN6W9X5h1QX5tB7BBseyvfguQ/JLbC a/M2dGX1uwWrb+lwmLoEI3VsDDPpOSJ8AkJen5dziybG/VtR+taWd490MBKkQK3R 493a9jd0VAHJ5enkJlCfYIRanKf0aWCzlV8QvdMsf8N4vl6B7llV4w/l1aWcw+KJ T3zoop1FJYgfvddAfvX8hsEaA/IwxXmwGt45AGP7T+yEyAeph5kE+IEJsR6geauC k/sFWih82ToGrq5f7BJuCvBdO6qyQexMQp9dKD1x8dIK3/a3dY0lH6LU6hV+FwCL pAZ0ToG7l10TnlsJ+SxaevEcmw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:57:56 2026 by rpki-client