$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: W0epKYN7Ya29K9PsKdn56/KewUv8yjFeoED0/BjiJow= Subject key identifier: 4C:38:01:DA:87:18:D9:0C:DD:2B:93:D1:CC:2E:48:FE:D9:F2:68:4B Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 042D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 0425 Signing time: Wed 25 Mar 2026 00:02:36 +0000 Manifest this update: Wed 25 Mar 2026 00:02:35 +0000 Manifest next update: Wed 01 Apr 2026 00:02:35 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: 33C5zbjWzV9ucWD9aidYmpsiU0UwMc7GW1H7hJNls9A=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 0n2WFP3OGMlXX26nzPcGgu1jYPaSSjw1YClglsZ8Waw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1069 (0x42d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Mar 25 00:02:35 2026 GMT Not After : Apr 1 00:02:35 2026 GMT Subject: CN=69c3261c-5fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fc:84:c8:d7:30:4d:4d:da:59:5e:87:ce:3d: 5f:92:6e:ff:c7:78:d5:d4:d4:17:1a:5d:13:8c:f3: c8:5b:60:55:b2:93:e4:3a:fb:f8:b0:20:78:24:c0: d0:d9:77:f8:89:22:53:3a:d3:a0:c9:73:f3:17:92: be:d1:ca:22:38:4b:56:99:38:2e:c3:de:1e:7f:61: fb:ea:2a:a4:87:49:1e:7b:e1:2c:4b:6d:0b:50:4a: a9:2a:6f:e7:28:d3:04:a5:5c:a1:2c:24:69:c3:9b: ca:d8:e8:25:b9:5f:e3:cd:6b:51:b7:96:a6:d9:31: 44:9d:5c:73:b3:60:fb:da:f5:3c:6f:6b:50:b8:1f: 98:57:dc:5e:d2:fb:ea:5e:79:00:85:01:a3:99:9c: b6:66:02:24:ef:8f:14:2c:87:ad:a3:7d:dd:af:bf: 7c:90:6d:46:63:2d:65:41:52:b0:83:9e:b6:3e:bf: c9:78:dc:51:fa:5a:17:0e:45:e4:83:d1:0a:43:fb: 03:3d:bd:90:8d:7d:09:f2:2d:b0:4c:a0:6c:10:1b: 9a:e8:17:31:22:68:c7:64:13:e8:58:22:dd:99:3f: c6:28:ec:f3:45:24:90:2b:5e:25:24:62:35:76:fa: 66:af:10:9a:76:d4:de:90:31:02:7e:0b:06:11:e1: bf:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:38:01:DA:87:18:D9:0C:DD:2B:93:D1:CC:2E:48:FE:D9:F2:68:4B X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ba:4a:d4:59:14:ec:cf:61:f3:c3:8f:7a:55:ba:c3:ec:38: 58:f2:4f:3f:e3:f6:bf:8b:5a:60:ed:c8:57:c7:ed:b8:8c:cb: 3f:1a:f9:ac:e5:61:b3:88:c6:fe:d8:9a:c8:2e:1b:9c:5c:ba: b3:b6:76:83:58:94:21:84:21:72:3e:5e:fc:3d:77:87:63:8a: aa:a8:7a:f3:7b:37:16:0d:dd:84:66:b7:ac:7c:8d:05:23:f1: 69:e9:24:aa:57:dd:b4:65:ad:7b:45:4c:d3:69:61:3d:8f:ab: 38:9f:d3:49:03:6a:45:8a:4b:92:e2:0f:b9:ab:5a:be:ca:85: 55:c8:7e:00:97:d6:f5:67:f3:f8:03:66:83:48:81:cb:ae:33: b7:39:7a:9b:0b:66:84:94:56:cf:6b:22:86:4b:1e:6f:11:b2: d5:93:60:25:03:33:15:f9:97:e0:7c:5a:d2:6c:3d:e3:c6:e5: a7:c0:04:4e:25:05:74:9c:aa:54:81:b5:56:72:1a:a4:13:4e: e1:85:9a:5f:79:84:35:d1:54:60:81:0b:aa:31:14:31:8b:f8: 34:ab:ee:50:aa:a4:06:ac:32:1a:e2:0d:82:7c:e0:15:d3:74: 61:62:01:43:36:e1:7a:bb:d1:7e:ea:d3:f8:1b:f8:a5:e4:3e: 72:4e:97:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjYwMzI1MDAwMjM1WhcNMjYwNDAxMDAwMjM1WjAYMRYwFAYD VQQDEw02OWMzMjYxYy01ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PyEyNcwTU3aWV6Hzj1fkm7/x3jV1NQXGl0TjPPIW2BVspPkOvv4sCB4JMDQ 2Xf4iSJTOtOgyXPzF5K+0coiOEtWmTguw94ef2H76iqkh0kee+EsS20LUEqpKm/n KNMEpVyhLCRpw5vK2OgluV/jzWtRt5am2TFEnVxzs2D72vU8b2tQuB+YV9xe0vvq XnkAhQGjmZy2ZgIk748ULIeto33dr798kG1GYy1lQVKwg562Pr/JeNxR+loXDkXk g9EKQ/sDPb2QjX0J8i2wTKBsEBua6BcxImjHZBPoWCLdmT/GKOzzRSSQK14lJGI1 dvpmrxCadtTekDECfgsGEeG/LwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEw4AdqH GNkM3SuT0cwuSP7Z8mhLMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa7pK1FkU7M9h88OPelW6w+w4WPJPP+P2v4taYO3IV8ftuIzLPxr5rOVhs4jG /tiayC4bnFy6s7Z2g1iUIYQhcj5e/D13h2OKqqh683s3Fg3dhGa3rHyNBSPxaekk qlfdtGWte0VM02lhPY+rOJ/TSQNqRYpLkuIPuatavsqFVch+AJfW9Wfz+ANmg0iB y64ztzl6mwtmhJRWz2sihksebxGy1ZNgJQMzFfmX4Hxa0mw948blp8AETiUFdJyq VIG1VnIapBNO4YWaX3mENdFUYIELqjEUMYv4NKvuUKqkBqwyGuINgnzgFdN0YWIB QzbhervRfurT+Bv4peQ+ck6Xgw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:29:58 2026 by rpki-client