$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: iBTGL5w/vRYZVXXi4ti8XltF5hpbeR2mbLqrtWsDNu8= Subject key identifier: 66:22:83:3C:89:32:6D:5F:B5:59:A6:A5:BD:4A:49:E4:EE:77:78:5C Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 031B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 0313 Signing time: Fri 27 Mar 2026 00:57:09 +0000 Manifest this update: Fri 27 Mar 2026 00:57:08 +0000 Manifest next update: Fri 03 Apr 2026 00:57:08 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: izPVP4iQHOoKMFkfIkIbW3wZkYtW1ZVrIN6rqe4uYL0=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: QM3TZDb9n+aQx7/1/HX5pDRtbQ+ME0yE/NNbiA3qbqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 795 (0x31b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: Mar 27 00:57:08 2026 GMT Not After : Apr 3 00:57:08 2026 GMT Subject: CN=69c5d5e5-34ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:78:0d:bb:10:d7:af:eb:ff:9e:f2:d6:49:8e: d5:d0:c4:93:09:ff:83:ec:9a:a6:75:7a:01:d7:b8: f9:8b:45:0e:7a:aa:11:6a:8a:d3:9b:70:51:cc:cf: aa:59:33:6a:a5:7b:2f:72:a6:76:eb:38:7f:ac:a0: 1a:5a:2a:67:78:95:5e:e5:d1:e5:31:e7:60:0e:12: f6:cf:90:95:1c:e4:93:62:cb:0e:d0:14:1f:bd:da: 65:f1:fd:64:fe:cc:fa:8b:07:f7:0a:54:15:84:70: a9:82:de:fb:7b:d2:6c:41:f3:7b:d4:33:22:d3:ce: 58:7d:cb:c3:d7:f0:62:45:46:26:29:65:7f:ba:38: 47:87:bb:d2:47:4a:bf:5f:aa:3a:43:f2:1b:86:bd: 2b:85:07:0e:11:a2:b8:2e:43:1c:53:96:52:e8:5b: f7:3b:31:57:c5:13:2d:73:73:c0:f9:11:31:76:c0: b7:3d:4c:15:60:be:67:3b:0d:b2:d2:e4:78:c4:5d: cf:5f:f6:6c:34:dc:1a:5c:f5:b9:24:e9:15:5f:3e: 62:65:d9:30:bc:1c:22:7b:81:aa:be:c7:a0:03:f9: 6a:fe:90:72:de:40:12:ca:8a:6f:af:c9:70:34:26: bc:c7:6a:22:19:a8:c8:ff:b6:68:4c:1c:4a:40:92: c6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:22:83:3C:89:32:6D:5F:B5:59:A6:A5:BD:4A:49:E4:EE:77:78:5C X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:65:67:f9:2c:23:c1:f7:c3:4c:d7:00:03:38:46:0e:3e:ae: ea:dd:5f:21:7e:5c:6e:6c:c8:bc:fc:e2:54:d7:f2:31:ff:78: e5:95:00:42:4d:fe:9e:fa:4d:5e:54:bd:c9:d8:ac:b9:45:33: 96:37:07:3b:cf:4c:80:0f:69:57:14:26:20:e7:58:f1:56:97: fd:b7:da:b3:0a:00:b1:2d:cd:1a:98:76:e3:99:60:47:e5:37: a3:34:f9:95:91:2a:85:e5:d6:31:f8:e0:b5:28:08:aa:0b:8a: 00:fe:db:1f:cf:05:fd:03:74:ce:14:71:db:c5:c9:8f:67:ee: 30:66:69:02:0c:76:8a:17:a3:95:79:cb:37:c0:e6:7f:a2:5b: 2b:66:ef:a5:1c:26:a8:5a:cb:9f:2d:ed:cf:e4:5c:3c:cc:8e: 41:70:0b:f0:1f:04:61:eb:30:7d:8c:9d:37:27:e8:fe:90:ec: 9f:38:58:07:fa:50:d9:09:8e:30:c8:de:ae:63:32:91:3d:02: a4:00:83:a2:8e:1a:b5:71:77:e8:3e:4c:77:e3:0c:cb:5e:12: b5:9f:94:b9:4c:f7:3e:e5:c5:b0:9b:5c:6b:d7:63:3c:1e:8e: f1:16:de:d1:af:37:2b:b5:8a:76:63:19:45:e1:50:84:5f:e4: f1:9f:63:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjYwMzI3MDA1NzA4WhcNMjYwNDAzMDA1NzA4WjAYMRYwFAYD VQQDEw02OWM1ZDVlNS0zNGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxngNuxDXr+v/nvLWSY7V0MSTCf+D7JqmdXoB17j5i0UOeqoRaorTm3BRzM+q WTNqpXsvcqZ26zh/rKAaWipneJVe5dHlMedgDhL2z5CVHOSTYssO0BQfvdpl8f1k /sz6iwf3ClQVhHCpgt77e9JsQfN71DMi085YfcvD1/BiRUYmKWV/ujhHh7vSR0q/ X6o6Q/Ibhr0rhQcOEaK4LkMcU5ZS6Fv3OzFXxRMtc3PA+RExdsC3PUwVYL5nOw2y 0uR4xF3PX/ZsNNwaXPW5JOkVXz5iZdkwvBwie4GqvsegA/lq/pBy3kASyopvr8lw NCa8x2oiGajI/7ZoTBxKQJLGpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGYigzyJ Mm1ftVmmpb1KSeTud3hcMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFGVn+SwjwffDTNcAAzhGDj6u6t1fIX5cbmzIvPziVNfyMf945ZUAQk3+nvpN XlS9ydisuUUzljcHO89MgA9pVxQmIOdY8VaX/bfaswoAsS3NGph245lgR+U3ozT5 lZEqheXWMfjgtSgIqguKAP7bH88F/QN0zhRx28XJj2fuMGZpAgx2ihejlXnLN8Dm f6JbK2bvpRwmqFrLny3tz+RcPMyOQXAL8B8EYeswfYydNyfo/pDsnzhYB/pQ2QmO MMjermMykT0CpACDoo4atXF36D5Md+MMy14StZ+UuUz3PuXFsJtca9djPB6O8Rbe 0a83K7WKdmMZReFQhF/k8Z9jNg== -----END CERTIFICATE-----Generated at Sat Mar 28 12:16:09 2026 by rpki-client