$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft File: KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft (raw, json) Hash identifier: jbz+mfBPruZKZ73q3FC1z2C6feR9Fz5bugxyYQcqBy8= Subject key identifier: AA:ED:C0:C8:2D:9C:85:2D:08:BA:C1:85:C7:B0:B9:31:D2:AA:2F:F7 Authority key identifier: 2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B Certificate issuer: /CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Certificate serial: 0302 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft Manifest number: 02F3 Signing time: Wed 25 Mar 2026 00:57:48 +0000 Manifest this update: Wed 25 Mar 2026 00:57:47 +0000 Manifest next update: Wed 01 Apr 2026 00:57:47 +0000 Files and hashes: 1: KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl (hash: Rhp9Nl7sGnyqWYhj/FCdZ+44o0jBAJZub3OfqVWNs9Y=) 2: 6C83604E1E2711EDAA33DF76C4F9AE02.roa (hash: WyMfvYsLQHMgLVM8XPqCRpkFzoUhxbdKs79AF+461J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 770 (0x302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7897, serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Validity Not Before: Mar 25 00:57:47 2026 GMT Not After : Apr 1 00:57:47 2026 GMT Subject: CN=69c3330c-8d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:92:f8:3e:2f:cc:bc:e6:f8:ce:cb:3a:82:f6: 7c:ec:74:9c:1d:f2:7b:67:8e:b1:15:00:f7:1c:1c: 4d:4c:35:a1:3c:2c:51:a2:3e:38:22:a4:c9:15:9c: 71:e5:53:a0:56:15:43:2f:00:29:7b:aa:9a:85:f5: 3f:54:c6:6e:2a:77:00:2e:6a:c7:b0:58:c5:ba:5c: 50:fb:d8:8e:d7:95:9c:3d:3d:2f:9b:45:f2:e3:fd: a9:04:62:b3:10:c2:4a:73:2b:5f:e5:d2:8f:85:59: 16:b7:2e:b4:ae:ff:20:a1:db:0c:4f:e2:0b:82:06: 72:f0:aa:c0:22:20:99:36:ff:70:e1:e1:ef:fb:c0: 60:d3:c6:4a:45:a3:8d:35:1e:00:f8:b8:af:47:85: 6f:69:bb:70:d2:76:06:73:88:9e:69:28:61:8a:ef: 79:69:1f:9f:b3:83:74:56:23:65:de:9a:e4:ba:59: 79:93:c0:03:0a:0a:51:11:ad:d1:a7:28:18:e5:a2: 30:70:a3:d3:bd:bd:26:05:db:3b:11:e1:ab:1d:92: 84:8f:e3:f1:ca:e1:c0:1a:e1:6b:26:95:df:70:d7: 8d:b4:2c:40:bc:4b:56:15:83:2d:f3:12:53:f5:f9: a5:36:93:ba:30:8f:4f:bf:87:ee:04:01:21:47:17: b0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:ED:C0:C8:2D:9C:85:2D:08:BA:C1:85:C7:B0:B9:31:D2:AA:2F:F7 X509v3 Authority Key Identifier: keyid:2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e2:e5:8d:a1:ea:b9:9d:d7:f3:b1:49:80:28:0a:82:60:13: 17:39:6c:d3:48:47:dc:f4:23:16:5b:78:50:90:9a:3c:ad:0f: ba:10:91:c0:71:41:dc:f6:03:98:1d:74:ae:cc:5b:0e:f3:4a: 8b:31:7a:d9:89:72:b1:14:b6:0f:79:b3:9f:73:a4:99:d1:62: 94:a8:81:5c:dd:64:54:04:0d:33:15:4f:84:b8:11:5f:86:f5: 0b:8f:d9:db:a6:b9:59:23:ad:74:cf:2c:47:b9:52:b3:96:33: 8d:e0:62:bc:be:04:53:48:86:27:24:fa:21:a0:77:2a:12:27: 41:b1:eb:61:3c:c7:99:39:2f:42:7a:18:3c:04:76:08:79:7f: 9f:32:92:a8:59:da:1e:d2:a3:09:8c:25:14:07:92:61:a6:c1: f4:10:f5:15:4a:62:ac:a0:ea:4d:19:e0:4a:9d:92:e3:6c:7c: 05:ad:cc:e3:8e:f2:86:cb:4b:80:b8:80:b4:56:5c:9e:dd:bf: d8:4c:77:7f:d0:b7:e8:ca:4f:4c:6f:0d:61:1e:b7:b4:02:10: 1c:fc:f6:a1:a7:f8:eb:fd:26:ca:29:78:25:34:8f:22:65:3f: 8a:73:a8:b5:ef:5e:a2:5c:22:47:52:b6:58:b4:e7:6a:73:92: 29:96:a1:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc4OTcxMTAvBgNVBAUTKDJBQTI3ODk0NEI0MTBGQTJDODNCN0MyQUYzMkM2NkFG QTIwQzEyN0IwHhcNMjYwMzI1MDA1NzQ3WhcNMjYwNDAxMDA1NzQ3WjAYMRYwFAYD VQQDEw02OWMzMzMwYy04ZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZL4Pi/MvOb4zss6gvZ87HScHfJ7Z46xFQD3HBxNTDWhPCxRoj44IqTJFZxx 5VOgVhVDLwApe6qahfU/VMZuKncALmrHsFjFulxQ+9iO15WcPT0vm0Xy4/2pBGKz EMJKcytf5dKPhVkWty60rv8godsMT+ILggZy8KrAIiCZNv9w4eHv+8Bg08ZKRaON NR4A+LivR4Vvabtw0nYGc4ieaShhiu95aR+fs4N0ViNl3prkull5k8ADCgpREa3R pygY5aIwcKPTvb0mBds7EeGrHZKEj+PxyuHAGuFrJpXfcNeNtCxAvEtWFYMt8xJT 9fmlNpO6MI9Pv4fuBAEhRxew/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKrtwMgt nIUtCLrBhcewuTHSqi/3MB8GA1UdIwQYMBaAFCqieJRLQQ+iyDt8KvMsZq+iDBJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzg5Ny9CNkM1OTQxQzFE MzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2TElPM3dxOHl4bXI2SU1F bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0txSjRsRXRCRDZMSU8zd3E4eXhtcjZJTUVucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzg5Ny9CNkM1OTQxQzFEMzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2 TElPM3dxOHl4bXI2SU1FbnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACuLljaHquZ3X87FJgCgKgmATFzls00hH3PQjFlt4UJCaPK0PuhCRwHFB3PYD mB10rsxbDvNKizF62YlysRS2D3mzn3OkmdFilKiBXN1kVAQNMxVPhLgRX4b1C4/Z 26a5WSOtdM8sR7lSs5YzjeBivL4EU0iGJyT6IaB3KhInQbHrYTzHmTkvQnoYPAR2 CHl/nzKSqFnaHtKjCYwlFAeSYabB9BD1FUpirKDqTRngSp2S42x8Ba3M447yhstL gLiAtFZcnt2/2Ex3f9C36MpPTG8NYR63tAIQHPz2oaf46/0myil4JTSPImU/inOo te9eolwiR1K2WLTnanOSKZahOQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:23 2026 by rpki-client