$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: B3IN7nRjJHxvPMTlcLTeZBdZMEXgwGM46rPY6v9RfZc= Subject key identifier: F5:94:CD:15:BB:D5:DE:E7:1E:B4:C4:0A:19:74:7E:F0:5C:CD:D6:01 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 0709 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 06E2 Signing time: Tue 24 Mar 2026 21:57:49 +0000 Manifest this update: Tue 24 Mar 2026 21:57:48 +0000 Manifest next update: Tue 31 Mar 2026 21:57:48 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: fO91Uq+S3TG8l1LgCybRTvoAz0YZ6w71HQ8nZTDlseY=) 2: C51F34AAC46711F09831793EC4F9AE02.roa (hash: 5Dfo+86REWSOOvSHSQa6ahUnKj3THgLtEtsMrC5m7/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1801 (0x709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0, serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Mar 24 21:57:48 2026 GMT Not After : Mar 31 21:57:48 2026 GMT Subject: CN=69c308dd-be69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d7:2a:1b:58:07:be:7f:c3:19:c6:bb:9f:ce: 85:9c:c7:81:1e:3f:07:80:f0:8f:f4:c6:56:8f:7d: 7f:43:59:03:a5:0a:d9:53:b7:33:c2:52:c5:6f:23: 18:e4:0f:df:66:96:8f:ae:02:16:55:9b:f1:7d:f4: ab:59:e8:de:0a:e4:f2:58:bd:e0:6a:e1:93:17:68: 8d:48:1e:d0:d0:1d:47:22:0b:bc:c0:ac:77:fb:44: 5c:ed:1a:19:28:aa:64:62:6f:ec:5e:76:95:12:4c: d9:27:f5:8e:17:fe:57:b1:51:51:6e:ae:62:d3:8a: 82:2e:9b:2c:7f:fa:19:80:3e:e8:50:7b:ed:43:3b: 63:22:6f:35:51:7b:9c:33:32:36:f4:aa:69:75:7c: a0:07:bb:62:02:c0:c5:4d:bb:90:30:d7:c8:bf:96: 25:e8:b4:ec:02:bd:59:65:8c:72:51:5d:d0:19:70: 77:3c:58:df:39:8f:e3:c5:ea:a2:9c:67:54:e0:2e: 9c:23:33:4a:0d:b6:75:92:17:b5:cb:7c:a7:7b:ce: 03:94:eb:e5:15:d6:de:bb:c2:1f:e7:f2:38:c9:78: b6:93:7e:19:88:90:a0:c5:0f:9b:e0:9d:73:d0:61: 63:3a:12:35:19:d0:1b:43:f7:8b:8c:65:6b:72:5a: 90:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:94:CD:15:BB:D5:DE:E7:1E:B4:C4:0A:19:74:7E:F0:5C:CD:D6:01 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:6d:8c:8b:26:b4:90:66:4f:ed:ec:ac:14:65:9b:06:85:06: c0:8f:8d:d2:56:b4:03:3f:d4:79:86:05:b3:c5:a1:fd:66:f9: 8f:0b:7a:7b:ab:51:44:fa:94:60:fc:03:64:92:fd:17:c5:57: 4a:67:78:53:25:a0:e2:53:b6:62:9a:f5:ac:31:5c:28:1c:8d: 53:de:85:55:c6:ee:ff:6f:9f:8a:8d:06:8a:43:0d:83:42:4d: ed:93:b2:30:40:d9:57:3d:c4:1e:75:9d:83:a0:32:5a:37:02: 33:25:cb:52:c6:c3:3b:54:67:07:e6:bc:4f:49:91:ef:40:e6: 8f:45:35:e7:62:49:01:80:6f:20:14:a0:1d:02:74:0e:10:df: a7:37:0c:40:5e:dd:44:88:4d:a4:6e:db:5d:89:9b:3e:57:63: 32:25:8b:50:62:ea:47:7f:d9:89:91:22:6c:f5:3d:d4:82:da: b1:97:45:53:71:14:80:0c:89:5d:1a:1b:d6:10:d7:43:77:82: 8a:e4:8a:5a:05:38:4f:d2:22:d5:76:46:58:14:37:91:e6:64: bb:f6:4d:c5:19:2f:4b:6c:7a:95:b7:d5:cd:20:e5:72:1c:71: 36:1f:04:ad:c0:91:80:20:ba:c5:db:a0:2e:a6:d2:76:0c:f5: b2:a4:06:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjYwMzI0MjE1NzQ4WhcNMjYwMzMxMjE1NzQ4WjAYMRYwFAYD VQQDEw02OWMzMDhkZC1iZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9cqG1gHvn/DGca7n86FnMeBHj8HgPCP9MZWj31/Q1kDpQrZU7czwlLFbyMY 5A/fZpaPrgIWVZvxffSrWejeCuTyWL3gauGTF2iNSB7Q0B1HIgu8wKx3+0Rc7RoZ KKpkYm/sXnaVEkzZJ/WOF/5XsVFRbq5i04qCLpssf/oZgD7oUHvtQztjIm81UXuc MzI29KppdXygB7tiAsDFTbuQMNfIv5Yl6LTsAr1ZZYxyUV3QGXB3PFjfOY/jxeqi nGdU4C6cIzNKDbZ1khe1y3yne84DlOvlFdbeu8If5/I4yXi2k34ZiJCgxQ+b4J1z 0GFjOhI1GdAbQ/eLjGVrclqQHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPWUzRW7 1d7nHrTEChl0fvBczdYBMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGm2Miya0kGZP7eysFGWbBoUGwI+N0la0Az/UeYYFs8Wh/Wb5jwt6e6tRRPqU YPwDZJL9F8VXSmd4UyWg4lO2Ypr1rDFcKByNU96FVcbu/2+fio0GikMNg0JN7ZOy MEDZVz3EHnWdg6AyWjcCMyXLUsbDO1RnB+a8T0mR70Dmj0U152JJAYBvIBSgHQJ0 DhDfpzcMQF7dRIhNpG7bXYmbPldjMiWLUGLqR3/ZiZEibPU91ILasZdFU3EUgAyJ XRob1hDXQ3eCiuSKWgU4T9Ii1XZGWBQ3keZku/ZNxRkvS2x6lbfVzSDlchxxNh8E rcCRgCC6xdugLqbSdgz1sqQGKA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:36:12 2026 by rpki-client