$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: 0Y+anWOeHgKbPfsa8zOtsnvwpXRC9liNWPwA7D40fdI= Subject key identifier: 57:C4:CA:D4:BF:C1:7C:95:AC:90:18:F9:7D:0A:9A:30:BE:25:BE:CC Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 0950 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 0945 Signing time: Tue 24 Mar 2026 19:56:34 +0000 Manifest this update: Tue 24 Mar 2026 19:56:34 +0000 Manifest next update: Tue 31 Mar 2026 19:56:34 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: yBxqJMDoKX9YQeqCsypl8eAcxeHXjaVucl8Wvj/Neps=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: K8ifKpf1OxSentj2ShFOfGXT/u0aCJtaC2BhvsjDEzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2384 (0x950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: Mar 24 19:56:34 2026 GMT Not After : Mar 31 19:56:34 2026 GMT Subject: CN=69c2ec72-502f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b5:0a:d0:72:81:6f:c1:3a:42:66:8c:9d:02: 1c:52:b3:48:36:07:4a:c9:73:b3:39:55:48:26:cc: ed:a7:21:1a:12:99:a3:50:2d:9a:6d:89:f7:47:3d: a1:25:00:d9:44:15:2c:c7:84:a8:a9:39:d3:51:4a: cb:a8:c2:9a:b9:c2:48:00:bd:e1:52:62:5b:2e:e4: 60:c6:8c:0e:be:f2:98:6f:6d:6b:b2:a0:0e:ce:ab: ce:0e:bb:ba:f3:36:46:7e:ff:dd:24:4d:aa:0d:5b: 8e:b2:b6:ab:d1:87:73:05:7f:1c:ce:5a:0f:6f:19: 50:32:89:0b:76:c7:56:f9:70:db:13:f3:8b:3b:78: 36:cd:aa:85:b3:c3:59:e1:85:bf:79:49:c5:08:f8: ce:0a:5d:b3:33:31:68:7f:9f:23:dd:c7:dc:49:9f: 85:23:9e:a9:2b:5a:b2:13:61:67:9e:91:56:87:5c: 97:29:15:47:be:3c:8b:a9:a7:00:4d:39:19:c8:39: 02:f5:50:3a:31:e0:d1:7d:3d:ac:e8:ae:5d:7f:44: 53:9d:d0:be:e6:2d:5c:90:fb:ae:5a:50:6c:92:eb: 9a:23:5e:27:f9:fb:1f:c2:b7:6c:0e:c9:25:5a:b2: 63:37:d6:f4:6a:7e:52:5d:59:5d:db:57:85:fd:88: bd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C4:CA:D4:BF:C1:7C:95:AC:90:18:F9:7D:0A:9A:30:BE:25:BE:CC X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a4:39:0a:bc:d4:69:8d:0d:9d:fe:9d:3d:be:e9:7b:6b:2a: 50:05:b3:eb:b6:f5:77:84:d1:ad:08:e9:ed:93:c3:3b:a4:4a: bb:e8:cb:9d:23:b9:90:7e:35:6f:f0:7f:0e:62:46:29:0a:36: c0:82:86:64:b7:74:bf:86:f7:9d:4b:45:f9:9b:05:17:47:6b: b6:8c:9d:de:b4:37:df:1c:b9:2d:35:b6:3a:46:9a:07:fd:50: 0a:00:00:35:60:a9:e9:df:21:cd:99:89:d7:9b:4b:da:23:b2: 2e:d6:37:60:24:5e:6f:fa:2a:f2:87:1e:a0:31:57:8e:dc:dc: 11:14:77:07:ad:72:b8:08:49:7a:ad:c4:de:14:59:fa:fe:32: 15:73:3c:18:ad:26:43:8c:0e:ef:13:2e:4f:a6:26:e3:85:a1: ec:d3:c9:aa:91:5d:22:b6:9c:83:93:e2:e5:9d:34:0b:44:2a: 7e:da:c3:de:6f:c4:48:71:a0:e3:3e:5c:1e:ec:f3:0a:a0:8b: f2:bf:83:7f:55:29:f6:e2:94:1a:ed:7b:ae:66:ac:0e:4b:13: 00:b2:c3:df:e3:72:3d:cb:c6:2a:3a:f8:d9:00:e4:12:8c:70: a0:1a:19:bc:bc:96:b8:a4:6a:8a:35:a1:a3:04:ef:98:c3:ed: 53:87:56:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjYwMzI0MTk1NjM0WhcNMjYwMzMxMTk1NjM0WjAYMRYwFAYD VQQDEw02OWMyZWM3Mi01MDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrUK0HKBb8E6QmaMnQIcUrNINgdKyXOzOVVIJsztpyEaEpmjUC2abYn3Rz2h JQDZRBUsx4SoqTnTUUrLqMKaucJIAL3hUmJbLuRgxowOvvKYb21rsqAOzqvODru6 8zZGfv/dJE2qDVuOsrar0YdzBX8czloPbxlQMokLdsdW+XDbE/OLO3g2zaqFs8NZ 4YW/eUnFCPjOCl2zMzFof58j3cfcSZ+FI56pK1qyE2FnnpFWh1yXKRVHvjyLqacA TTkZyDkC9VA6MeDRfT2s6K5df0RTndC+5i1ckPuuWlBskuuaI14n+fsfwrdsDskl WrJjN9b0an5SXVld21eF/Yi9RwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFfEytS/ wXyVrJAY+X0KmjC+Jb7MMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnaQ5CrzUaY0Nnf6dPb7pe2sqUAWz67b1d4TRrQjp7ZPDO6RKu+jLnSO5kH41 b/B/DmJGKQo2wIKGZLd0v4b3nUtF+ZsFF0drtoyd3rQ33xy5LTW2OkaaB/1QCgAA NWCp6d8hzZmJ15tL2iOyLtY3YCReb/oq8oceoDFXjtzcERR3B61yuAhJeq3E3hRZ +v4yFXM8GK0mQ4wO7xMuT6Ym44Wh7NPJqpFdIracg5Pi5Z00C0QqftrD3m/ESHGg 4z5cHuzzCqCL8r+Df1Up9uKUGu17rmasDksTALLD3+NyPcvGKjr42QDkEoxwoBoZ vLyWuKRqijWhowTvmMPtU4dW1Q== -----END CERTIFICATE-----Generated at Thu Mar 26 23:03:47 2026 by rpki-client