$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: aI0/d+c1U4/FdccRs+vXz/VoyE9VufQMCdnSl1fkku0= Subject key identifier: 89:26:09:00:36:6E:23:C6:D6:1B:79:62:E1:08:67:55:2E:4B:4B:91 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: 0105 Signing time: Tue 24 Mar 2026 23:02:24 +0000 Manifest this update: Tue 24 Mar 2026 23:02:24 +0000 Manifest next update: Tue 31 Mar 2026 23:02:24 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: AhTFr8UdtmwO9NnFZig0i16q9colhyRuGqDCGQqCYEI=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: YCpUxQ8dgkmMh3e5UHsZ7Ir2L2aOgpsDHkfqNgWqSFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Mar 24 23:02:24 2026 GMT Not After : Mar 31 23:02:24 2026 GMT Subject: CN=69c31800-2127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ae:74:ff:cd:67:2e:65:3f:ff:6e:c0:e6:3c: 5d:dc:d0:20:c8:94:7a:f5:4b:03:ab:e2:03:7a:64: b7:8d:59:04:2f:c8:92:68:08:e5:96:b6:2e:44:fa: d3:b0:4f:c3:61:a9:b5:c9:a5:db:1d:95:df:d5:55: 2d:e5:a5:ce:cf:84:6a:15:cf:7c:b8:a6:f5:7e:de: 6e:aa:42:f4:d8:9c:82:dc:e4:7c:d8:85:3b:56:bd: 3a:e4:1d:a7:a7:f3:7d:b2:66:6b:c7:6f:9e:c5:8e: 3a:db:d5:d0:61:ba:a9:f5:39:41:79:ce:95:7b:86: 7f:7b:81:93:76:d1:f0:f6:db:99:8c:79:23:2e:a7: be:b7:75:e6:ed:43:06:17:86:ea:7e:d7:b2:73:22: 8c:0f:65:4b:1e:a4:b0:10:b5:7f:da:30:b9:4c:ff: d4:73:43:10:28:00:99:ce:7a:95:db:70:f0:57:7e: 22:a5:0c:1b:9c:08:c9:8e:bd:48:4e:64:24:e7:0e: 95:66:70:26:72:87:54:0e:29:5d:eb:3e:62:e9:39: 8c:29:55:c4:04:5d:bb:33:2c:ce:90:f4:6f:fa:dc: a0:68:58:28:07:8c:db:14:5d:00:0c:1e:61:b6:a2: 3c:e5:56:e4:55:f0:75:12:1c:ac:b6:82:40:ed:ed: d5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:26:09:00:36:6E:23:C6:D6:1B:79:62:E1:08:67:55:2E:4B:4B:91 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:ec:92:b1:bd:17:d0:b7:37:ec:45:78:88:3e:cc:12:e2:c3: 4c:76:f4:c3:fb:d2:55:3b:88:84:a5:f1:db:61:ca:32:4f:25: 8a:70:84:37:20:ff:d0:76:be:14:33:9a:be:3f:53:d5:e7:1e: b9:ec:d6:b8:e4:03:b6:91:a1:a7:9b:d6:15:a5:a9:ec:ff:8e: f4:f0:5f:cf:ed:db:06:61:4d:7f:6b:20:f7:31:cc:34:f9:04: bb:18:d1:31:18:08:d6:15:01:fb:d2:86:42:da:36:9d:97:fa: 42:e3:16:1b:4b:9c:22:1f:fc:9f:a7:a8:ec:80:2b:d0:49:8f: 39:cc:13:f9:41:17:0b:12:de:82:d9:7f:80:90:7e:93:45:34: 61:b0:8f:af:d8:44:f9:1f:44:37:f7:65:85:5f:ea:45:8e:a2: 85:02:5f:ed:ff:e4:48:c8:b4:1c:1f:31:a3:9d:1a:50:62:7d: cf:de:26:7a:c7:41:73:96:31:cd:7f:76:a5:1f:21:16:5a:48: 52:24:a0:b4:ae:89:9c:87:b4:34:0a:f6:5c:8e:71:c1:6b:87: fb:75:6b:8e:d4:71:24:8b:d2:b6:a2:68:b0:5d:7f:08:8b:8c: a0:01:3d:af:06:57:e5:2b:44:bf:d1:96:ff:90:94:40:c0:38: c3:94:bf:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjYwMzI0MjMwMjI0WhcNMjYwMzMxMjMwMjI0WjAYMRYwFAYD VQQDEw02OWMzMTgwMC0yMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq50/81nLmU//27A5jxd3NAgyJR69UsDq+IDemS3jVkEL8iSaAjllrYuRPrT sE/DYam1yaXbHZXf1VUt5aXOz4RqFc98uKb1ft5uqkL02JyC3OR82IU7Vr065B2n p/N9smZrx2+exY4629XQYbqp9TlBec6Ve4Z/e4GTdtHw9tuZjHkjLqe+t3Xm7UMG F4bqfteycyKMD2VLHqSwELV/2jC5TP/Uc0MQKACZznqV23DwV34ipQwbnAjJjr1I TmQk5w6VZnAmcodUDild6z5i6TmMKVXEBF27MyzOkPRv+tygaFgoB4zbFF0ADB5h tqI85VbkVfB1EhystoJA7e3V6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIkmCQA2 biPG1ht5YuEIZ1UuS0uRMB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVeySsb0X0Lc37EV4iD7MEuLDTHb0w/vSVTuIhKXx22HKMk8linCENyD/0Ha+ FDOavj9T1eceuezWuOQDtpGhp5vWFaWp7P+O9PBfz+3bBmFNf2sg9zHMNPkEuxjR MRgI1hUB+9KGQto2nZf6QuMWG0ucIh/8n6eo7IAr0EmPOcwT+UEXCxLegtl/gJB+ k0U0YbCPr9hE+R9EN/dlhV/qRY6ihQJf7f/kSMi0HB8xo50aUGJ9z94mesdBc5Yx zX92pR8hFlpIUiSgtK6JnIe0NAr2XI5xwWuH+3VrjtRxJIvStqJosF1/CIuMoAE9 rwZX5StEv9GW/5CUQMA4w5S/0A== -----END CERTIFICATE-----Generated at Thu Mar 26 16:22:11 2026 by rpki-client