$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: yEkxk8pjQR+hnWrdm043atLSzCktSmanbw/o4kBGwyk= Subject key identifier: AF:82:03:7D:E5:6B:6B:54:D5:4C:91:6F:D2:A1:D7:56:E3:24:A4:5F Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: 019F Signing time: Wed 25 Mar 2026 03:27:34 +0000 Manifest this update: Wed 25 Mar 2026 03:27:33 +0000 Manifest next update: Wed 01 Apr 2026 03:27:33 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: 9q87OoSJIIuiWw/WY6Ea1pujJWVuHHc3v18KPkp/Z6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: Mar 25 03:27:33 2026 GMT Not After : Apr 1 03:27:33 2026 GMT Subject: CN=69c35625-a99d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ce:ca:45:22:af:87:62:47:0b:8c:95:92:9a: 1f:32:a8:d0:6c:60:d7:72:90:d7:b0:8e:c1:1e:96: 32:a5:23:af:36:2d:dc:bf:d0:b1:12:35:6e:a6:9d: 24:d2:4b:a5:88:87:5e:f0:eb:fe:a7:13:e8:ce:78: 32:f2:ce:35:56:4f:9c:b4:1e:22:11:24:6d:95:c1: 85:12:15:f4:df:30:51:a4:0e:8d:fa:fa:d0:ff:0e: dd:9b:2a:dd:18:c6:77:29:f1:e0:b8:2e:0d:10:85: 39:01:ee:44:26:e8:0b:a1:57:c3:60:08:72:a7:7a: 77:82:b2:b8:3a:d8:1b:ed:61:51:52:9f:bc:58:5d: 1b:7f:8b:11:fa:8a:a6:6e:9a:d7:12:66:bb:72:14: dd:10:57:bd:3e:37:71:12:e8:85:e7:fd:9f:f5:96: 4c:e0:aa:24:7a:65:0f:14:87:ae:98:22:a7:d8:83: fa:74:20:86:f2:b8:db:46:ed:82:47:5c:8b:1e:31: 53:de:ca:cb:0c:2a:45:23:f0:cb:1b:66:86:45:db: e7:b8:7b:29:4f:67:44:a9:71:0a:a0:18:e3:c0:05: 53:f4:2b:e6:d0:81:2e:4e:b4:eb:09:32:a7:e9:ea: c6:c6:b7:7e:3a:b6:e1:df:e7:a5:e6:41:81:de:98: ac:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:82:03:7D:E5:6B:6B:54:D5:4C:91:6F:D2:A1:D7:56:E3:24:A4:5F X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e2:4d:7f:59:2d:5f:3e:e4:79:e4:74:82:7d:5a:d2:83:9a: ad:88:4d:0a:3f:aa:d2:4b:ff:0c:20:a0:6f:3c:d3:82:d8:18: 8a:43:35:82:d3:aa:46:3b:f5:7a:78:6d:ff:45:e0:0d:2b:39: 85:20:ed:64:06:d3:58:87:ad:92:2c:eb:d7:f9:47:eb:fd:1d: 19:14:6b:b6:be:0b:69:e5:30:3d:56:dc:25:40:d0:9f:6a:69: 70:f5:11:fe:ef:01:0a:42:21:63:ee:f5:d1:f8:2b:12:0e:b9: 9b:0c:3d:b9:50:55:b1:88:29:ab:ca:93:ef:bb:b3:b7:ec:be: ee:41:66:67:6b:a3:d6:0f:63:51:34:5b:fd:a6:1d:e2:9e:29: 80:eb:9d:c6:93:8f:52:20:73:0e:8e:e3:17:63:f2:f5:1f:5d: 1c:9a:d6:a4:be:68:11:c0:ee:d4:c1:67:c1:47:23:0c:2f:b2: ee:30:0b:f5:df:11:32:51:c3:de:ed:fd:94:00:92:58:3b:ae: ad:a8:ac:ab:fd:00:b0:bb:07:ba:20:9b:0d:25:3b:a5:73:6a: fe:02:09:b8:74:49:3f:9b:8b:aa:dd:ca:c9:be:ea:ec:29:db: d1:e0:7c:20:4d:ac:1d:65:10:e1:fb:cc:38:5e:c0:5c:b3:89: e8:b7:48:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjYwMzI1MDMyNzMzWhcNMjYwNDAxMDMyNzMzWjAYMRYwFAYD VQQDEw02OWMzNTYyNS1hOTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8c7KRSKvh2JHC4yVkpofMqjQbGDXcpDXsI7BHpYypSOvNi3cv9CxEjVupp0k 0kuliIde8Ov+pxPozngy8s41Vk+ctB4iESRtlcGFEhX03zBRpA6N+vrQ/w7dmyrd GMZ3KfHguC4NEIU5Ae5EJugLoVfDYAhyp3p3grK4Otgb7WFRUp+8WF0bf4sR+oqm bprXEma7chTdEFe9PjdxEuiF5/2f9ZZM4KokemUPFIeumCKn2IP6dCCG8rjbRu2C R1yLHjFT3srLDCpFI/DLG2aGRdvnuHspT2dEqXEKoBjjwAVT9Cvm0IEuTrTrCTKn 6erGxrd+Orbh3+el5kGB3pisHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK+CA33l a2tU1UyRb9Kh11bjJKRfMB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGeJNf1ktXz7keeR0gn1a0oOarYhNCj+q0kv/DCCgbzzTgtgYikM1gtOqRjv1 enht/0XgDSs5hSDtZAbTWIetkizr1/lH6/0dGRRrtr4LaeUwPVbcJUDQn2ppcPUR /u8BCkIhY+710fgrEg65mww9uVBVsYgpq8qT77uzt+y+7kFmZ2uj1g9jUTRb/aYd 4p4pgOudxpOPUiBzDo7jF2Py9R9dHJrWpL5oEcDu1MFnwUcjDC+y7jAL9d8RMlHD 3u39lACSWDuuraisq/0AsLsHuiCbDSU7pXNq/gIJuHRJP5uLqt3Kyb7q7Cnb0eB8 IE2sHWUQ4fvMOF7AXLOJ6LdIGA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:23:02 2026 by rpki-client