$ rpki-client -vvf rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft File: kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft (raw, json) Hash identifier: uiEou6Hob8sNWXviol5p/sEbBr5Jr+OT98EJwmAgrok= Subject key identifier: F4:59:C2:65:27:BB:52:D2:55:31:D0:28:5D:01:6A:7F:37:5B:38:65 Authority key identifier: 90:BD:1D:F1:3A:99:1C:31:F1:18:4D:51:1A:F3:03:16:FC:00:21:02 Certificate issuer: /CN=A91A014A/serialNumber=90BD1DF13A991C31F1184D511AF30316FC002102 Certificate serial: 0275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft Manifest number: 026E Signing time: Wed 25 Mar 2026 01:29:06 +0000 Manifest this update: Wed 25 Mar 2026 01:29:06 +0000 Manifest next update: Wed 01 Apr 2026 01:29:06 +0000 Files and hashes: 1: kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl (hash: Qx/ZW9Bc9RdPznfKLSSeSxFSwOHGlmveLswcXZcnDuI=) 2: 203FA37E750611ED95126872C4F9AE02.roa (hash: 1UhMMEwrSvxSK5SenyWo1EuSLvOXjxy88H+VRidBB7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A014A, serialNumber=90BD1DF13A991C31F1184D511AF30316FC002102 Validity Not Before: Mar 25 01:29:06 2026 GMT Not After : Apr 1 01:29:06 2026 GMT Subject: CN=69c33a62-a21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ec:03:8e:d2:51:65:64:b4:5f:14:7f:45:78: f5:1e:a6:37:48:7f:e6:5e:5c:c7:b5:aa:ae:3e:45: 44:eb:f3:a4:85:04:2a:b7:d0:7b:96:1a:4a:6a:5d: fa:f0:9d:eb:60:e3:68:b3:f9:a8:34:17:b1:26:a3: 64:ef:c5:16:f4:0c:9a:ff:9f:cd:13:82:ab:4d:75: 83:70:1b:91:ea:d0:ac:aa:fb:b5:63:e4:7e:d3:0f: 4d:c9:30:b7:5e:e1:e2:f2:71:c3:d3:7e:ca:8b:ce: 63:d7:a6:a7:08:86:cf:80:13:4b:ec:e5:7f:f0:99: 5c:d3:00:24:a2:61:d7:4c:95:21:00:ac:28:2a:69: bf:93:ac:e9:00:e0:40:29:43:8b:7e:79:f3:04:f8: cd:43:2f:54:46:00:03:67:08:1e:a5:a2:b9:dd:9e: 76:c2:e3:9b:0d:3b:4d:c9:54:4e:84:e1:77:55:e7: 8c:35:ae:19:eb:32:6a:dd:b0:d4:ba:bd:6f:a2:64: 49:3d:d9:ad:69:4c:0b:bc:7e:5c:50:d7:aa:8e:bc: c4:15:73:3d:c7:ba:ae:cc:87:2a:8c:d1:20:4d:f9: 0a:b9:31:89:75:21:e0:c3:7f:05:0d:2d:c5:a6:56: 8e:6e:9d:c8:c2:52:a4:6c:b2:20:62:ee:36:e2:f3: 8b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:59:C2:65:27:BB:52:D2:55:31:D0:28:5D:01:6A:7F:37:5B:38:65 X509v3 Authority Key Identifier: keyid:90:BD:1D:F1:3A:99:1C:31:F1:18:4D:51:1A:F3:03:16:FC:00:21:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a5:4c:64:f8:04:17:05:07:53:2e:05:7b:26:37:66:6e:6f: b3:c1:26:98:a2:4f:04:6b:49:45:e0:fd:c6:f7:72:d6:cb:c1: 4f:e2:d9:7f:1f:a8:3e:5b:f1:b6:d8:ba:8f:e2:56:9d:02:57: 13:e4:55:48:f6:49:5c:d0:36:90:56:af:c4:f1:aa:74:6d:74: b1:eb:e7:67:7e:b6:0d:f2:7c:8b:32:db:a2:26:b4:0e:df:9b: 80:ef:c1:b6:b1:7e:0d:c5:0c:a3:38:7f:4d:eb:f8:1d:35:6e: 01:0e:0b:d7:b9:11:cb:c7:b3:b4:aa:9e:ea:f2:33:f9:d1:cd: 6e:53:52:1a:f1:49:03:ed:3d:f4:c3:9d:10:01:b6:28:b4:6e: b7:98:e0:28:f3:d1:ee:0a:91:21:1b:4a:eb:02:f3:33:57:ee: 85:28:fe:d9:99:4b:38:13:33:b5:50:d6:b9:ac:7e:49:68:f1: 25:45:02:6b:78:70:46:e0:1d:e9:87:68:88:7b:d0:f8:23:e2: 6f:d0:d9:95:e7:89:53:ab:ef:3e:1e:cb:23:b2:c9:71:c8:b8: 2f:38:31:19:e0:7e:05:7b:40:07:d8:14:2b:be:54:17:34:c4: cb:8f:9f:73:e2:37:08:8b:30:05:f1:72:55:72:95:26:5d:3b: 38:ad:12:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAxNEExMTAvBgNVBAUTKDkwQkQxREYxM0E5OTFDMzFGMTE4NEQ1MTFBRjMwMzE2 RkMwMDIxMDIwHhcNMjYwMzI1MDEyOTA2WhcNMjYwNDAxMDEyOTA2WjAYMRYwFAYD VQQDEw02OWMzM2E2Mi1hMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+wDjtJRZWS0XxR/RXj1HqY3SH/mXlzHtaquPkVE6/OkhQQqt9B7lhpKal36 8J3rYONos/moNBexJqNk78UW9Aya/5/NE4KrTXWDcBuR6tCsqvu1Y+R+0w9NyTC3 XuHi8nHD037Ki85j16anCIbPgBNL7OV/8Jlc0wAkomHXTJUhAKwoKmm/k6zpAOBA KUOLfnnzBPjNQy9URgADZwgepaK53Z52wuObDTtNyVROhOF3VeeMNa4Z6zJq3bDU ur1vomRJPdmtaUwLvH5cUNeqjrzEFXM9x7quzIcqjNEgTfkKuTGJdSHgw38FDS3F plaObp3IwlKkbLIgYu424vOLOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPRZwmUn u1LSVTHQKF0Ban83WzhlMB8GA1UdIwQYMBaAFJC9HfE6mRwx8RhNURrzAxb8ACEC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDE0QS9DQzA3REFCNjc0 RkYxMUVEQUI5QzkwNzVDNEY5QUUwMi9rTDBkOFRxWkhESHhHRTFSR3ZNREZ2d0FJ UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tMMGQ4VHFaSERIeEdFMVJHdk1ERnZ3QUlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDE0QS9DQzA3REFCNjc0RkYxMUVEQUI5QzkwNzVDNEY5QUUwMi9rTDBkOFRxWkhE SHhHRTFSR3ZNREZ2d0FJUUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG6VMZPgEFwUHUy4FeyY3Zm5vs8EmmKJPBGtJReD9xvdy1svBT+LZfx+oPlvx tti6j+JWnQJXE+RVSPZJXNA2kFavxPGqdG10sevnZ362DfJ8izLboia0Dt+bgO/B trF+DcUMozh/Tev4HTVuAQ4L17kRy8eztKqe6vIz+dHNblNSGvFJA+099MOdEAG2 KLRut5jgKPPR7gqRIRtK6wLzM1fuhSj+2ZlLOBMztVDWuax+SWjxJUUCa3hwRuAd 6YdoiHvQ+CPib9DZleeJU6vvPh7LI7LJcci4LzgxGeB+BXtAB9gUK75UFzTEy4+f c+I3CIswBfFyVXKVJl07OK0Sig== -----END CERTIFICATE-----Generated at Thu Mar 26 02:19:41 2026 by rpki-client