$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: 6Gi4Wkq40L83Xftq0Flg9Cqw0wXEtlpwdS4pMZficEE= Subject key identifier: CF:DF:46:CA:96:F0:09:FA:C0:CB:6D:DB:75:13:BC:4F:61:43:86:A5 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 10A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 108E Signing time: Tue 24 Mar 2026 17:14:40 +0000 Manifest this update: Tue 24 Mar 2026 17:14:39 +0000 Manifest next update: Tue 31 Mar 2026 17:14:39 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: Ra5LkJQ69MtiV7TXZXFlGBQqRAmJajLQEekmhQNGeZ0=) 2: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: MehorDfAem2c8kGRpcFlQvj3z/46UcpS7ZeXEH42RWY=) 3: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: 06ODQyNlYCmtzAyw+klVtSCj9+JmnufpFyKDsAjgKpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:14:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4257 (0x10a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Mar 24 17:14:39 2026 GMT Not After : Mar 31 17:14:39 2026 GMT Subject: CN=69c2c680-0d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ed:88:fe:ac:15:7c:b7:1d:fc:b3:dd:f6:de: 06:5b:c7:df:a0:69:d6:cd:58:10:1e:89:6f:0e:80: 4a:4d:ce:7b:35:36:d0:c2:ea:fb:8a:9e:c7:c1:35: f2:19:32:ed:05:fb:fa:9a:02:2a:f3:b4:b3:59:c1: 49:e4:f8:ec:5f:51:c3:58:ca:5b:84:06:c9:2b:99: 66:d0:ce:e8:bc:2b:33:af:fa:f9:7d:e9:5c:b0:b5: 3a:09:61:ce:be:ab:a1:43:17:bf:33:87:d2:91:41: da:e1:24:9e:0d:01:e9:43:75:65:0f:6a:82:b2:02: ac:f5:a2:da:dc:17:1b:16:ee:46:3c:b7:54:14:2d: 3a:18:81:77:08:04:64:2d:9b:ec:f2:d0:b3:16:17: 17:fc:5b:fc:64:a9:52:ca:30:16:ea:24:70:49:c0: d5:33:43:bf:49:1c:8e:e5:73:ad:3d:04:e2:39:39: 10:57:c7:83:9f:19:6e:ca:1a:77:8b:36:7f:c5:5c: f0:6e:32:eb:02:79:42:49:06:a9:5e:57:89:93:8a: d9:3e:83:c2:c1:a2:80:d0:f6:51:7c:fe:a1:16:be: 69:5d:bc:d8:93:e9:87:f2:dd:21:dc:6c:7f:80:02: ef:d2:df:16:6b:12:e5:60:56:83:cc:d7:9b:75:da: cd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:DF:46:CA:96:F0:09:FA:C0:CB:6D:DB:75:13:BC:4F:61:43:86:A5 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f4:65:c4:19:b0:60:9b:92:59:5a:0c:36:fb:65:d2:0c:84: a7:8a:ba:ae:75:7b:9b:07:7d:94:93:9e:b2:37:e2:21:9c:ed: ab:1a:d1:33:0e:13:6a:04:35:04:28:93:72:b3:7a:7e:a2:ec: 4e:75:10:24:8b:04:1f:7a:a1:6d:56:b4:65:3d:2d:aa:9f:2c: 96:04:1e:0b:ff:44:0d:76:95:f5:15:7e:29:a8:e9:52:2e:da: 16:bb:5b:df:80:7d:91:48:bc:f9:aa:fd:03:16:38:cd:55:09: 46:1f:e2:ef:00:b8:3a:28:49:3f:f4:ab:73:92:c4:12:dc:f2: ae:3f:f2:88:60:c5:0c:6d:0d:6e:44:80:ff:1e:8b:68:cf:18: 10:f9:7c:73:fd:54:46:ea:0c:87:64:d0:79:0c:79:70:b8:ba: 73:a5:81:62:02:8b:bc:cc:48:57:17:c5:25:fb:69:53:fd:70: 06:4e:b8:59:ab:b3:ec:82:31:35:2e:b3:58:e3:bb:d6:66:78: 0f:3c:2f:11:ec:17:f3:f2:17:a3:b1:3c:dd:4c:a6:5d:56:28: ed:41:33:49:7b:49:99:5a:c9:4f:4f:73:52:70:c6:25:a0:6c: ec:8b:94:16:f5:00:aa:8d:8a:0a:f6:2b:da:cb:30:43:33:60: 39:ac:e4:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjYwMzI0MTcxNDM5WhcNMjYwMzMxMTcxNDM5WjAYMRYwFAYD VQQDEw02OWMyYzY4MC0wZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAou2I/qwVfLcd/LPd9t4GW8ffoGnWzVgQHolvDoBKTc57NTbQwur7ip7HwTXy GTLtBfv6mgIq87SzWcFJ5PjsX1HDWMpbhAbJK5lm0M7ovCszr/r5felcsLU6CWHO vquhQxe/M4fSkUHa4SSeDQHpQ3VlD2qCsgKs9aLa3BcbFu5GPLdUFC06GIF3CARk LZvs8tCzFhcX/Fv8ZKlSyjAW6iRwScDVM0O/SRyO5XOtPQTiOTkQV8eDnxluyhp3 izZ/xVzwbjLrAnlCSQapXleJk4rZPoPCwaKA0PZRfP6hFr5pXbzYk+mH8t0h3Gx/ gALv0t8WaxLlYFaDzNebddrNrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM/fRsqW 8An6wMtt23UTvE9hQ4alMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdvRlxBmwYJuSWVoMNvtl0gyEp4q6rnV7mwd9lJOesjfiIZztqxrRMw4TagQ1 BCiTcrN6fqLsTnUQJIsEH3qhbVa0ZT0tqp8slgQeC/9EDXaV9RV+KajpUi7aFrtb 34B9kUi8+ar9AxY4zVUJRh/i7wC4OihJP/Src5LEEtzyrj/yiGDFDG0NbkSA/x6L aM8YEPl8c/1URuoMh2TQeQx5cLi6c6WBYgKLvMxIVxfFJftpU/1wBk64Wauz7IIx NS6zWOO71mZ4DzwvEewX8/IXo7E83UymXVYo7UEzSXtJmVrJT09zUnDGJaBs7IuU FvUAqo2KCvYr2sswQzNgOazkxQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:43:06 2026 by rpki-client