$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: ZbGdipjeiOEPHOUl4MBHqoVRoCRmNMdTEaSf+55bW1M= Subject key identifier: 8C:24:39:26:B3:B4:5A:41:E8:AA:F1:D8:71:71:5E:02:3A:85:D6:9F Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 040B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 03F5 Signing time: Wed 25 Mar 2026 00:08:39 +0000 Manifest this update: Wed 25 Mar 2026 00:08:38 +0000 Manifest next update: Wed 01 Apr 2026 00:08:38 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: fIFw/b7epng6wVVN6K0FF81lluBI0dNYH7oDDQB25IU=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: 9Mz8rV54HoMelrPRHK31KXuQst4w6EzFVX+5Qn5V6r8=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: tR+5MDUW4TOJVjv12UKHch7zSjULR/5+u2MVA1fbHas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Mar 25 00:08:38 2026 GMT Not After : Apr 1 00:08:38 2026 GMT Subject: CN=69c32787-63be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a0:ae:b1:18:84:d0:a1:5b:98:6f:bd:4a:b4: 13:d4:2b:b7:8c:52:9c:ea:02:9d:d9:e8:5e:04:3a: 8b:08:6a:44:6d:d2:7a:e3:3f:69:73:cc:94:ac:97: a5:6c:e0:5d:e9:20:0e:ab:b0:6e:9f:2d:a0:b6:a8: a9:2d:5d:38:3d:4a:b2:bc:d7:13:6c:23:a9:74:1c: 9b:d6:8e:99:6f:67:e1:9c:2d:8d:87:a5:4d:c7:3a: d5:07:cf:11:f8:7b:27:7c:34:de:53:6e:66:75:ec: 92:77:9a:b0:79:fb:2d:80:29:4c:3d:48:2d:a0:ca: db:c6:e7:93:ef:e3:bc:0f:f9:74:41:74:71:39:e5: 62:5f:89:40:4c:bf:1e:4c:cc:df:e7:88:b8:92:50: 0c:66:4c:00:a6:41:73:6f:3a:38:1a:5f:d4:5a:93: 92:b0:c1:b6:f0:e6:1c:a0:82:a4:d5:a8:b8:e7:43: b8:11:41:02:ab:7e:f8:5c:08:23:3a:fd:f8:3f:6e: 72:d3:ad:21:cd:34:7a:aa:b2:24:db:82:3a:1c:65: ea:41:7a:9a:ae:cd:7b:8a:03:d6:97:c7:62:f8:8e: 3e:1f:2b:7b:5f:1d:fc:7b:cc:09:d3:da:26:37:b7: f3:04:6c:26:05:85:4e:0a:f2:62:8c:c7:1e:d6:73: 47:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:24:39:26:B3:B4:5A:41:E8:AA:F1:D8:71:71:5E:02:3A:85:D6:9F X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:36:76:06:0c:97:15:e4:30:4c:52:a1:4e:73:a0:b8:87:a4: 24:47:fa:2f:21:28:8d:29:93:f0:82:c5:84:18:98:e1:6c:0d: 7b:d9:bb:65:69:be:a3:0f:ee:3e:23:6b:cc:d8:a1:fe:f3:85: cc:9d:16:e7:dd:26:fa:a7:6b:91:1b:e5:5e:cd:98:9e:f7:ab: 15:61:ed:a7:c3:8f:ab:e2:d4:63:05:52:89:11:91:25:0b:e8: 4b:1a:83:0d:cf:e9:a6:bf:1a:8b:87:b2:03:8b:a3:4e:d3:9b: 4e:88:88:b4:76:7e:08:ee:6f:c6:d6:61:7e:cc:51:1d:a8:58: 97:f6:f8:53:45:7b:92:be:11:c3:4a:c2:b0:f2:1f:f6:e7:d9: 77:6a:91:9b:c1:b8:b7:a0:29:57:6d:08:c1:57:a5:79:8a:ad: 97:e8:5e:89:27:1d:20:5d:a2:4b:71:ce:0a:cd:fe:54:e6:ce: 10:1b:d1:a4:f9:cc:67:2d:e3:ac:77:72:f2:9a:27:5d:74:42: 35:e7:e9:b4:1f:0f:9e:5e:40:2f:b4:80:34:66:de:40:b1:ea: 04:ea:b5:c6:27:6f:81:aa:cd:16:d8:18:e4:69:d7:69:33:06: a7:c2:a6:22:8a:1e:96:05:33:77:c3:24:5b:a4:6b:d1:d0:65: 83:d3:33:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjYwMzI1MDAwODM4WhcNMjYwNDAxMDAwODM4WjAYMRYwFAYD VQQDEw02OWMzMjc4Ny02M2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaCusRiE0KFbmG+9SrQT1Cu3jFKc6gKd2eheBDqLCGpEbdJ64z9pc8yUrJel bOBd6SAOq7Buny2gtqipLV04PUqyvNcTbCOpdByb1o6Zb2fhnC2Nh6VNxzrVB88R +HsnfDTeU25mdeySd5qwefstgClMPUgtoMrbxueT7+O8D/l0QXRxOeViX4lATL8e TMzf54i4klAMZkwApkFzbzo4Gl/UWpOSsMG28OYcoIKk1ai450O4EUECq374XAgj Ov34P25y060hzTR6qrIk24I6HGXqQXqars17igPWl8di+I4+Hyt7Xx38e8wJ09om N7fzBGwmBYVOCvJijMce1nNHOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIwkOSaz tFpB6Krx2HFxXgI6hdafMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKjZ2BgyXFeQwTFKhTnOguIekJEf6LyEojSmT8ILFhBiY4WwNe9m7ZWm+ow/u PiNrzNih/vOFzJ0W590m+qdrkRvlXs2YnverFWHtp8OPq+LUYwVSiRGRJQvoSxqD Dc/ppr8ai4eyA4ujTtObToiItHZ+CO5vxtZhfsxRHahYl/b4U0V7kr4Rw0rCsPIf 9ufZd2qRm8G4t6ApV20IwVeleYqtl+heiScdIF2iS3HOCs3+VObOEBvRpPnMZy3j rHdy8ponXXRCNefptB8Pnl5AL7SANGbeQLHqBOq1xidvgarNFtgY5GnXaTMGp8Km IooelgUzd8MkW6Rr0dBlg9MzvQ== -----END CERTIFICATE-----Generated at Thu Mar 26 21:04:00 2026 by rpki-client