$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: h2X9rH1v6Xzu+RIkY/BjPuLoMscYcMquFIgxmZ6MLaA= Subject key identifier: B9:36:4C:E8:F0:B2:11:B6:CB:26:58:24:FF:3C:3D:1A:58:2A:20:65 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 01DA Signing time: Wed 25 Mar 2026 02:49:15 +0000 Manifest this update: Wed 25 Mar 2026 02:49:15 +0000 Manifest next update: Wed 01 Apr 2026 02:49:15 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: 5Q0sm31SqeXw1RcYK6dWfvk+jTDMF0JFrtmjXXpdn3M=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: KWX82VUSGhT9UsPkifLZyX4n6ROSHucaBgxHHGSJG/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Mar 25 02:49:15 2026 GMT Not After : Apr 1 02:49:15 2026 GMT Subject: CN=69c34d2b-be18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c7:a7:ad:25:bd:b7:cb:58:a6:14:27:47:69: 05:24:84:fb:2f:78:30:eb:0e:9e:44:91:c4:88:17: 54:82:61:3e:1e:a1:2f:d5:c9:8a:c0:b1:07:17:2b: 9d:e5:81:e6:e7:79:2e:a3:0a:50:31:f9:da:ac:66: 88:64:68:da:1d:cc:5f:38:a3:91:17:e5:2f:62:23: e6:1b:d5:83:ff:6a:d4:ba:06:d2:d8:de:5a:36:c5: f8:83:c5:f2:a9:d3:d5:a2:a2:06:14:2f:aa:c1:3e: d7:28:1c:e2:6f:da:4c:6b:7e:3b:db:48:ed:96:f9: c8:5a:a8:36:42:cb:fd:68:c1:1c:8c:13:ed:c3:b8: f5:76:7a:64:dc:ba:e9:f7:aa:88:9d:77:1b:8c:73: 5d:16:01:13:d4:16:a6:d4:87:ad:c5:2f:cb:aa:a4: 85:1e:db:ef:33:d0:13:bd:0f:f5:31:62:09:93:3b: a9:2f:0a:2b:2f:5f:8c:98:a2:97:44:a9:00:9d:2e: 85:db:67:e7:77:39:84:81:53:03:10:8e:ae:cb:86: 4d:f5:9a:12:a1:46:0c:17:78:12:15:b8:88:a8:9f: fb:98:6e:80:28:83:7f:84:62:02:96:1c:4a:86:80: fa:da:ff:90:81:4e:94:92:15:72:c6:63:3e:0e:16: f2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:36:4C:E8:F0:B2:11:B6:CB:26:58:24:FF:3C:3D:1A:58:2A:20:65 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e5:be:f5:47:e1:02:3a:b1:ca:f0:fa:1b:0e:11:da:47:d5: 99:94:47:bc:93:93:17:e2:0f:73:0e:f1:6b:ed:c4:87:d8:d5: bc:9d:00:c6:1c:b1:73:29:19:90:e9:34:ca:cf:22:6a:b9:31: 4e:7a:a8:35:e3:6b:88:56:79:2b:f2:b1:39:a8:ce:c3:89:ba: dd:fd:28:d7:b7:22:58:b5:6b:6e:1c:01:66:d3:79:62:5f:07: 00:68:21:b3:82:f5:d3:6f:52:d9:70:72:ce:0e:80:f0:8a:c5: 1a:4f:75:e6:df:2f:55:d0:f3:87:74:2e:04:0a:a2:c0:ce:f5: 78:e9:1f:21:17:db:a6:1f:4d:d1:48:f1:64:bd:0c:df:11:f5: c8:90:63:0f:e3:83:33:82:3a:22:ee:8e:40:ab:cd:1b:c9:7f: e8:12:a8:53:95:47:43:ff:96:29:d3:e9:b9:44:e6:2f:9d:0b: 61:a5:02:d2:71:2c:03:8d:ff:19:4e:54:69:9e:48:8c:49:65: 0f:1a:55:c3:39:27:aa:26:28:3b:d9:c1:b3:a0:43:90:7c:87: a9:54:06:85:b7:d3:e5:4b:b0:71:24:85:8e:bc:fb:96:ba:b0: 99:9c:95:d5:96:8c:f1:ff:d4:de:5c:35:ee:4a:fd:ea:fb:d3: 3c:39:ed:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjYwMzI1MDI0OTE1WhcNMjYwNDAxMDI0OTE1WjAYMRYwFAYD VQQDEw02OWMzNGQyYi1iZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucenrSW9t8tYphQnR2kFJIT7L3gw6w6eRJHEiBdUgmE+HqEv1cmKwLEHFyud 5YHm53kuowpQMfnarGaIZGjaHcxfOKORF+UvYiPmG9WD/2rUugbS2N5aNsX4g8Xy qdPVoqIGFC+qwT7XKBzib9pMa34720jtlvnIWqg2Qsv9aMEcjBPtw7j1dnpk3Lrp 96qInXcbjHNdFgET1Bam1IetxS/LqqSFHtvvM9ATvQ/1MWIJkzupLworL1+MmKKX RKkAnS6F22fndzmEgVMDEI6uy4ZN9ZoSoUYMF3gSFbiIqJ/7mG6AKIN/hGIClhxK hoD62v+QgU6UkhVyxmM+DhbyZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLk2TOjw shG2yyZYJP88PRpYKiBlMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbuW+9UfhAjqxyvD6Gw4R2kfVmZRHvJOTF+IPcw7xa+3Eh9jVvJ0AxhyxcykZ kOk0ys8iarkxTnqoNeNriFZ5K/KxOajOw4m63f0o17ciWLVrbhwBZtN5Yl8HAGgh s4L1029S2XByzg6A8IrFGk915t8vVdDzh3QuBAqiwM71eOkfIRfbph9N0UjxZL0M 3xH1yJBjD+ODM4I6Iu6OQKvNG8l/6BKoU5VHQ/+WKdPpuUTmL50LYaUC0nEsA43/ GU5UaZ5IjEllDxpVwzknqiYoO9nBs6BDkHyHqVQGhbfT5UuwcSSFjrz7lrqwmZyV 1ZaM8f/U3lw17kr96vvTPDntvw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:31:16 2026 by rpki-client