$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: Y+8WI+7XLaVW+NLPSCfWm3dk1pNaphzi1YwsQImpkFE= Subject key identifier: 02:8C:72:4F:94:B4:E4:07:F6:D6:0E:35:C7:8D:6F:22:67:B4:D1:A9 Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0BB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0BA8 Signing time: Tue 24 Mar 2026 18:50:03 +0000 Manifest this update: Tue 24 Mar 2026 18:50:02 +0000 Manifest next update: Tue 31 Mar 2026 18:50:02 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: HjPnYvI77v1FkKlv6qsg375UGh7NbDva+IevG9GsxS4=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: owbB/QFVhS3E4rWN71OSFx1s7RgWi4YjBcaDXgNNaiI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:50:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2997 (0xbb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Mar 24 18:50:02 2026 GMT Not After : Mar 31 18:50:02 2026 GMT Subject: CN=69c2dcda-b999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7c:49:ff:05:b1:8c:bb:52:f7:bc:b0:99:ff: aa:cb:69:26:61:d8:f5:81:23:1a:47:f7:d1:e5:ba: 0f:8c:3b:c9:1b:6e:7f:f0:02:5d:b0:23:41:2e:60: 3f:83:88:ca:d8:40:56:0c:5f:57:cb:92:34:fb:1c: 2c:a3:21:4b:ce:51:d8:d6:7c:4c:f8:2c:98:d9:26: 7c:a4:13:4f:41:a3:3d:5b:10:f1:6a:84:dd:7d:00: ff:c3:da:dc:ee:1f:a2:bd:65:cf:45:32:57:fb:56: bb:4e:c5:82:55:07:5d:a6:bf:bb:23:eb:12:ab:b5: d8:7b:ff:8a:a1:75:8f:1f:fd:03:5c:af:4d:18:a8: 96:f7:23:a9:62:a2:d5:a5:8e:da:ed:ba:54:f3:dc: 43:78:57:df:99:9f:a0:63:a8:32:e4:73:49:2c:9a: 53:92:2b:06:39:a4:e2:c7:d5:84:27:f0:32:22:98: c7:5d:de:0a:24:86:7a:88:2c:98:20:13:29:5a:fb: cf:be:27:ea:22:11:c7:c5:c4:52:0c:ef:94:b1:21: 88:1a:51:6e:3d:30:f0:85:ff:a9:54:d3:d6:17:4a: e8:ca:82:fb:ac:62:bc:2e:e8:06:00:21:4b:e7:af: 51:35:fc:4f:c7:8e:51:ac:d3:4f:df:a2:34:39:7f: 39:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8C:72:4F:94:B4:E4:07:F6:D6:0E:35:C7:8D:6F:22:67:B4:D1:A9 X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b8:07:d0:eb:c6:e7:64:a9:7d:0c:20:06:c7:b3:c7:cc:d9: 0e:63:8e:30:99:a9:d1:cd:b7:6a:99:86:6c:ba:ed:c4:17:f3: c2:bb:37:60:9a:7a:41:6d:21:1f:6c:53:95:17:91:72:18:4f: 8e:8e:1d:47:d5:f5:f5:ec:a4:9f:b0:f9:a5:1c:1d:b2:28:a1: 57:2e:d4:e6:71:3f:8f:09:17:60:ce:2b:c1:9c:96:1d:4e:23: 79:36:b9:52:c2:35:ba:ce:82:00:01:c3:56:8b:04:ea:6b:38: d1:ba:a8:19:cb:8c:b4:6d:c5:ed:0b:b5:ad:ae:02:4c:86:b7: 7e:46:1a:45:21:61:f0:32:f3:4e:c7:d6:88:39:3a:80:ca:b6: 5b:93:67:2d:a1:9f:49:cf:97:d0:ef:33:14:0a:d1:be:84:50: 6f:31:ed:5e:e4:73:9b:3c:c9:97:af:10:90:fd:0d:1d:60:4c: 68:46:13:db:64:24:3d:60:b4:fa:6b:60:bd:a4:b1:3e:cb:87: 58:e5:95:08:8b:74:b5:9e:30:07:49:b1:c8:70:ee:01:7c:59: 27:42:0c:cc:0c:71:06:49:23:de:4e:3f:69:52:ab:b2:19:5b: c6:ad:f1:ae:68:71:8e:83:a9:ed:c6:16:2d:9d:cb:1b:ea:34: 01:d2:48:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjYwMzI0MTg1MDAyWhcNMjYwMzMxMTg1MDAyWjAYMRYwFAYD VQQDEw02OWMyZGNkYS1iOTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3xJ/wWxjLtS97ywmf+qy2kmYdj1gSMaR/fR5boPjDvJG25/8AJdsCNBLmA/ g4jK2EBWDF9Xy5I0+xwsoyFLzlHY1nxM+CyY2SZ8pBNPQaM9WxDxaoTdfQD/w9rc 7h+ivWXPRTJX+1a7TsWCVQddpr+7I+sSq7XYe/+KoXWPH/0DXK9NGKiW9yOpYqLV pY7a7bpU89xDeFffmZ+gY6gy5HNJLJpTkisGOaTix9WEJ/AyIpjHXd4KJIZ6iCyY IBMpWvvPvifqIhHHxcRSDO+UsSGIGlFuPTDwhf+pVNPWF0royoL7rGK8LugGACFL 569RNfxPx45RrNNP36I0OX85QQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAKMck+U tOQH9tYONceNbyJntNGpMB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWrgH0OvG52SpfQwgBsezx8zZDmOOMJmp0c23apmGbLrtxBfzwrs3YJp6QW0h H2xTlReRchhPjo4dR9X19eykn7D5pRwdsiihVy7U5nE/jwkXYM4rwZyWHU4jeTa5 UsI1us6CAAHDVosE6ms40bqoGcuMtG3F7Qu1ra4CTIa3fkYaRSFh8DLzTsfWiDk6 gMq2W5NnLaGfSc+X0O8zFArRvoRQbzHtXuRzmzzJl68QkP0NHWBMaEYT22QkPWC0 +mtgvaSxPsuHWOWVCIt0tZ4wB0mxyHDuAXxZJ0IMzAxxBkkj3k4/aVKrshlbxq3x rmhxjoOp7cYWLZ3LG+o0AdJIAw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:17 2026 by rpki-client