$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft File: Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft (raw, json) Hash identifier: PSy+knaLvnNXPx33Oonq9iWAvap1SYuHLw9sgRpKf4w= Subject key identifier: 7F:58:98:92:41:03:EC:E1:F8:D8:A1:46:4F:EC:9D:D5:08:5E:44:AE Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft Manifest number: 017A Signing time: Wed 25 Mar 2026 04:07:56 +0000 Manifest this update: Wed 25 Mar 2026 04:07:56 +0000 Manifest next update: Wed 01 Apr 2026 04:07:56 +0000 Files and hashes: 1: Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl (hash: M1JgLyQa1I+z6IZlGKZHYqFk6XiocUHl8OxmIJrXs1A=) 2: 1DF1E5F8173A11F1A94BC0C1113D8C67.roa (hash: mTNYBWei7Yb19mWs93Y+owXIoG93MTxCeJaydHBQQxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Mar 25 04:07:56 2026 GMT Not After : Apr 1 04:07:56 2026 GMT Subject: CN=69c35f9c-72b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fe:6e:60:c4:e9:98:2a:22:72:ec:59:4c:d0: 74:f1:05:c7:84:3e:46:3c:92:dd:93:ff:dc:cf:95: 22:ab:15:30:4b:fd:bc:37:31:22:f9:7b:9b:bc:84: 8b:0e:b8:6b:62:14:8f:19:c6:0e:0c:76:5b:4c:62: e9:9b:db:cb:aa:68:60:60:80:9f:cd:65:7a:ae:7a: b1:37:9e:aa:fe:96:d7:84:3f:c6:af:3c:54:ca:6a: d2:a3:10:9f:04:a7:3b:13:b0:69:5d:2a:32:d1:ae: 16:96:0e:d5:15:6c:e3:d9:f6:40:bb:89:92:e4:68: 8d:a5:a1:c4:57:38:df:89:80:c3:08:6c:56:20:78: fb:c5:be:7d:6f:ff:28:a2:4f:a9:08:44:8c:1d:97: 35:70:c4:28:51:7b:83:b2:65:ae:8e:2b:27:d2:af: 22:35:e3:e3:04:66:91:75:84:fd:c0:f0:07:a9:0f: f4:c1:8b:e1:c9:17:8d:66:5d:62:d6:b3:a3:20:c4: 95:d2:93:91:c3:2d:ff:26:44:d6:d6:b4:9c:19:4f: e3:f2:73:25:9f:e5:48:ac:1e:eb:38:82:43:90:4d: b0:6f:cd:ff:88:af:96:87:f2:dd:d1:07:15:b6:57: 96:47:86:ab:55:9f:1b:85:f8:1f:74:e5:14:8d:25: cf:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:58:98:92:41:03:EC:E1:F8:D8:A1:46:4F:EC:9D:D5:08:5E:44:AE X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:72:d0:60:e0:aa:d7:fb:1c:14:32:61:ae:6c:7f:a5:9b:b7: 8b:3a:23:69:c2:47:84:a2:29:fa:c1:be:d5:9f:bb:03:72:38: 3c:9b:88:f6:09:c3:ac:52:08:aa:14:16:ae:61:67:21:3f:ff: c0:df:d9:66:50:9a:83:fc:15:86:bd:b9:9b:be:f8:f7:b7:8b: 2d:02:bb:18:d9:c7:26:2d:fb:eb:9e:4c:8a:3c:fe:bf:b0:57: f0:8f:a2:38:d0:5e:70:46:c0:1c:45:78:99:97:d3:a3:80:0a: 90:ae:f4:17:e6:f9:98:9f:8c:59:15:19:e2:dc:80:e4:44:b0: d9:a0:ed:29:c4:46:25:c0:b5:be:39:90:46:62:7d:8b:b1:10: 69:f7:31:68:9d:a2:03:a1:94:c2:4f:d3:74:8a:cd:20:44:36: 72:3c:d9:44:52:1e:e7:4b:99:fa:8c:a0:83:55:27:7c:39:bd: fd:f4:6a:cb:76:85:f7:a4:3a:e9:bf:b9:ca:e3:5b:65:f4:78: b2:b4:bd:39:0e:35:d1:b9:e6:a8:1e:8b:35:a5:b3:bc:60:73: 03:32:78:d6:1e:ba:4a:f9:bd:e6:0e:d9:45:45:f6:63:49:ec: bd:50:90:57:35:bd:b7:e8:c3:5c:fc:5c:1c:11:72:8a:e7:cf: 7d:0b:cc:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjYwMzI1MDQwNzU2WhcNMjYwNDAxMDQwNzU2WjAYMRYwFAYD VQQDEw02OWMzNWY5Yy03MmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwv5uYMTpmCoicuxZTNB08QXHhD5GPJLdk//cz5UiqxUwS/28NzEi+XubvISL DrhrYhSPGcYODHZbTGLpm9vLqmhgYICfzWV6rnqxN56q/pbXhD/GrzxUymrSoxCf BKc7E7BpXSoy0a4Wlg7VFWzj2fZAu4mS5GiNpaHEVzjfiYDDCGxWIHj7xb59b/8o ok+pCESMHZc1cMQoUXuDsmWujisn0q8iNePjBGaRdYT9wPAHqQ/0wYvhyReNZl1i 1rOjIMSV0pORwy3/JkTW1rScGU/j8nMln+VIrB7rOIJDkE2wb83/iK+Wh/Ld0QcV tleWR4arVZ8bhfgfdOUUjSXPPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH9YmJJB A+zh+NihRk/sndUIXkSuMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xG Z2NYVDJSdWphNHFkam8zcTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIHLQYOCq1/scFDJhrmx/pZu3izojacJHhKIp+sG+1Z+7A3I4PJuI9gnDrFII qhQWrmFnIT//wN/ZZlCag/wVhr25m77497eLLQK7GNnHJi37655Mijz+v7BX8I+i ONBecEbAHEV4mZfTo4AKkK70F+b5mJ+MWRUZ4tyA5ESw2aDtKcRGJcC1vjmQRmJ9 i7EQafcxaJ2iA6GUwk/TdIrNIEQ2cjzZRFIe50uZ+oygg1UnfDm9/fRqy3aF96Q6 6b+5yuNbZfR4srS9OQ410bnmqB6LNaWzvGBzAzJ41h66Svm95g7ZRUX2Y0nsvVCQ VzW9t+jDXPxcHBFyiufPfQvMsw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:18:49 2026 by rpki-client