$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: kfRiIPtnm665o6zBapSU9aSDqz4xxjj8pR4Mj6yaaj0= Subject key identifier: DB:5A:5F:07:8D:3D:1C:7E:95:5B:D7:4A:05:71:06:BC:3D:1B:0E:29 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 07DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 07C2 Signing time: Thu 26 Mar 2026 21:18:55 +0000 Manifest this update: Thu 26 Mar 2026 21:18:54 +0000 Manifest next update: Thu 02 Apr 2026 21:18:54 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: GobNa5zT8d/Dx7arkGnLJC233BfYkYFUbr9ykOE4A68=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: 2CcUX8OCn1/fmWn37MNKtyhofnamXBuWgD+4aT2Pu3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 21:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2012 (0x7dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Mar 26 21:18:54 2026 GMT Not After : Apr 2 21:18:54 2026 GMT Subject: CN=69c5a2bf-e024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:87:a8:49:fa:2a:e1:fe:19:68:fa:44:ab:da: 7c:cd:74:a9:e8:a7:32:50:47:2c:12:86:26:c7:81: d6:f9:c8:96:43:37:25:7d:5e:70:c9:21:09:35:40: 00:96:30:70:d2:2d:b9:36:11:59:1c:4d:ce:9b:4d: 61:84:13:92:df:83:ce:1c:9f:2c:ef:c4:aa:0a:ab: b4:f2:4d:dd:ea:f8:c4:08:11:0d:f7:ba:d9:ea:49: 49:84:73:20:eb:34:d3:79:2d:0b:91:a6:21:83:b6: 77:b7:79:36:2d:92:ce:be:3f:83:6a:78:e1:df:09: b8:2a:c0:14:ed:4f:0e:42:fe:82:db:a5:83:88:89: 57:25:e7:97:e5:e6:87:f2:08:72:aa:8a:8b:f3:cc: dd:50:91:e8:db:d9:45:a2:c4:d8:98:5a:b6:7d:27: 16:2b:01:85:b1:fa:cb:0a:55:e4:ec:b3:04:2a:92: 22:19:d8:b9:83:b3:0b:75:5d:da:46:60:6a:3c:71: e1:bc:69:f1:2d:e1:9a:83:3e:b3:d9:cb:bc:b4:82: ba:fd:00:6c:1b:0a:4a:07:6f:3b:aa:72:d7:e4:09: fd:4e:bc:aa:1a:f1:5e:40:3f:b3:4f:1a:4f:a0:ad: 5d:3e:99:6e:cf:6b:15:29:20:e8:0d:60:ff:49:f1: be:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5A:5F:07:8D:3D:1C:7E:95:5B:D7:4A:05:71:06:BC:3D:1B:0E:29 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ad:d3:98:a8:21:16:ff:82:de:62:58:33:db:34:ba:f3:31: 5f:7c:d4:2b:12:cb:d4:52:60:84:15:e5:de:d6:92:dd:13:3c: c1:7e:0b:18:bb:3f:8d:08:47:e6:1b:41:c9:0e:50:8b:e2:27: fb:ee:51:dd:f9:dd:58:83:ae:82:c9:87:10:a9:8b:47:8d:55: 89:82:d5:30:17:f9:49:14:36:e8:22:27:07:b4:2d:af:57:2b: 0c:f1:aa:61:0b:6c:d6:65:58:e0:cf:d5:70:3d:8d:5c:60:85: 70:8d:48:60:78:54:f9:0a:21:75:59:3b:83:86:82:dd:5b:72: 5b:07:f0:d2:db:d7:42:60:ad:cb:b1:51:96:81:4d:0c:90:88: 6a:22:b8:b6:76:ff:c6:76:04:ee:3a:5a:53:58:6b:d1:1c:2d: 46:46:ed:df:93:b7:32:99:a6:ee:0a:da:79:73:b2:f1:08:53: 0a:f3:77:e7:c6:9e:8e:d7:a9:21:e9:33:ff:d0:89:f7:54:65: 5b:72:75:fe:fa:0c:1d:61:7d:7c:04:7f:a3:ef:1c:80:36:6d: de:f4:d5:b3:11:03:e4:f7:56:10:93:a3:4a:00:d9:2c:2c:83: 09:38:0d:f4:83:f5:e7:c4:11:01:39:76:55:3b:cf:12:cb:c2: ee:e1:89:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjYwMzI2MjExODU0WhcNMjYwNDAyMjExODU0WjAYMRYwFAYD VQQDEw02OWM1YTJiZi1lMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYeoSfoq4f4ZaPpEq9p8zXSp6KcyUEcsEoYmx4HW+ciWQzclfV5wySEJNUAA ljBw0i25NhFZHE3Om01hhBOS34POHJ8s78SqCqu08k3d6vjECBEN97rZ6klJhHMg 6zTTeS0LkaYhg7Z3t3k2LZLOvj+Danjh3wm4KsAU7U8OQv6C26WDiIlXJeeX5eaH 8ghyqoqL88zdUJHo29lFosTYmFq2fScWKwGFsfrLClXk7LMEKpIiGdi5g7MLdV3a RmBqPHHhvGnxLeGagz6z2cu8tIK6/QBsGwpKB287qnLX5An9TryqGvFeQD+zTxpP oK1dPpluz2sVKSDoDWD/SfG+QQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNtaXweN PRx+lVvXSgVxBrw9Gw4pMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUK3TmKghFv+C3mJYM9s0uvMxX3zUKxLL1FJghBXl3taS3RM8wX4LGLs/jQhH 5htByQ5Qi+In++5R3fndWIOugsmHEKmLR41ViYLVMBf5SRQ26CInB7Qtr1crDPGq YQts1mVY4M/VcD2NXGCFcI1IYHhU+QohdVk7g4aC3VtyWwfw0tvXQmCty7FRloFN DJCIaiK4tnb/xnYE7jpaU1hr0RwtRkbt35O3Mpmm7graeXOy8QhTCvN358aejtep Iekz/9CJ91RlW3J1/voMHWF9fAR/o+8cgDZt3vTVsxED5PdWEJOjSgDZLCyDCTgN 9IP158QRATl2VTvPEsvC7uGJig== -----END CERTIFICATE-----Generated at Sat Mar 28 10:28:49 2026 by rpki-client