$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: qE2NW5e3lGG13YwakLHBzHBD6Ne0DUmPyQ8Fp3cKciA= Subject key identifier: F4:6D:0D:99:78:DC:ED:B3:4B:7A:C1:FD:88:88:4F:4F:BF:A2:BF:5E Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: 013F Signing time: Wed 25 Mar 2026 04:37:54 +0000 Manifest this update: Wed 25 Mar 2026 04:37:54 +0000 Manifest next update: Wed 01 Apr 2026 04:37:54 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: +M+7e/Ore0+59H6GhLN9/pRyv70gmxbiG+uY2PXt5pc=) 2: AB61CD86D51811F09422126CC4F9AE02.roa (hash: wLQqscjsnYEYzLsf7dryhLVTKS2UxVldfhWeV31D8Ow=) 3: AAF88862D51811F0B469126CC4F9AE02.roa (hash: +QQBiTJ12auhqCjWR/SYaD0xY7aR7A8XJnlI57+FIP0=) 4: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: MuAhFwAwASJtjgbbeqMge30aVjeav/nUmbfnNFDWvGc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Mar 25 04:37:54 2026 GMT Not After : Apr 1 04:37:54 2026 GMT Subject: CN=69c366a2-6a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a5:7d:e2:13:eb:57:f6:e9:77:72:30:cd:27: 66:4d:64:f7:4e:b0:a0:59:bc:49:b1:0a:ce:c1:20: 56:e3:f0:04:41:b9:6e:b0:8d:e5:9a:49:f8:90:4e: 07:60:f9:63:16:da:24:57:46:3b:ca:2c:d1:24:93: fc:cd:6f:25:35:5e:99:0d:12:1d:01:42:32:94:1e: 8b:90:c5:e5:b3:d8:33:e9:4b:2b:d9:56:65:e0:e7: 5c:d2:73:a4:b3:9b:58:b3:82:b8:be:de:66:0c:91: 23:00:3d:1c:05:55:9e:d1:92:2e:85:50:5e:50:ef: a5:0b:cd:40:ff:11:72:3c:8f:d4:af:03:2f:7f:dc: 83:81:f4:6c:e8:c9:bd:b9:66:9e:20:a0:a7:0a:de: b8:c0:2f:4d:64:07:d7:4d:0a:17:f4:ac:5d:82:1a: a8:69:c2:2b:e9:66:4f:88:c6:e6:ee:60:1b:76:15: 56:77:48:c8:74:22:95:f4:8f:35:db:cb:80:0b:5c: 15:37:8f:57:f6:32:c1:2a:b1:45:96:05:e6:56:74: 16:e2:48:c2:3a:be:a3:b8:a8:90:6c:3b:c0:27:9a: fb:00:0f:a8:cc:0d:67:ca:02:8d:d3:55:e6:68:c7: 9e:70:07:ff:75:e6:ae:af:1f:bd:22:ff:5f:47:81: ca:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:6D:0D:99:78:DC:ED:B3:4B:7A:C1:FD:88:88:4F:4F:BF:A2:BF:5E X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:1f:ba:bd:d3:9b:83:7e:f5:7b:ae:6f:a9:4c:b9:e7:37:ed: 78:d5:14:8d:3d:4a:e2:b3:ab:65:39:84:69:c8:4a:3b:4b:a1: b5:76:40:2d:98:b0:a1:09:b6:3a:8b:c5:40:dc:0d:4b:1b:18: 45:dd:2c:b0:4b:52:1e:69:35:04:f6:76:33:4a:33:d5:71:e8: 9f:98:d2:54:81:ca:68:a9:14:3e:e0:3d:eb:b9:b5:1c:85:19: 93:61:6b:49:51:3a:0f:f7:eb:10:f8:cb:6e:4c:33:3d:1d:f2: 9d:4d:8a:42:92:ac:1e:8e:7e:db:d6:2d:13:57:7d:b0:a1:31: 75:0f:e6:9b:68:f7:28:f6:7d:1a:f2:1b:17:79:87:90:a7:7e: 30:2f:93:17:87:d2:e8:b9:9c:de:f6:2b:79:e5:f7:28:8e:7d: 83:53:97:08:9a:83:72:e2:12:45:1b:2e:96:14:74:ab:a4:04: 61:fb:bb:cc:26:3e:46:e1:11:ac:b0:01:3c:69:7a:37:22:45: 36:88:60:a3:dc:5e:1d:89:f9:2d:17:46:eb:fd:27:b5:5a:66: 07:60:de:9a:9a:a7:5e:e7:0d:6c:8a:22:4a:81:48:6e:d9:2b: a5:36:7a:4b:d0:28:f7:43:82:b4:0d:85:64:6e:5d:ae:97:22: 4e:8c:86:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjYwMzI1MDQzNzU0WhcNMjYwNDAxMDQzNzU0WjAYMRYwFAYD VQQDEw02OWMzNjZhMi02YTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkKV94hPrV/bpd3IwzSdmTWT3TrCgWbxJsQrOwSBW4/AEQblusI3lmkn4kE4H YPljFtokV0Y7yizRJJP8zW8lNV6ZDRIdAUIylB6LkMXls9gz6Usr2VZl4Odc0nOk s5tYs4K4vt5mDJEjAD0cBVWe0ZIuhVBeUO+lC81A/xFyPI/UrwMvf9yDgfRs6Mm9 uWaeIKCnCt64wC9NZAfXTQoX9KxdghqoacIr6WZPiMbm7mAbdhVWd0jIdCKV9I81 28uAC1wVN49X9jLBKrFFlgXmVnQW4kjCOr6juKiQbDvAJ5r7AA+ozA1nygKN01Xm aMeecAf/deaurx+9Iv9fR4HK7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPRtDZl4 3O2zS3rB/YiIT0+/or9eMB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABR+6vdObg371e65vqUy55zfteNUUjT1K4rOrZTmEachKO0uhtXZALZiwoQm2 OovFQNwNSxsYRd0ssEtSHmk1BPZ2M0oz1XHon5jSVIHKaKkUPuA967m1HIUZk2Fr SVE6D/frEPjLbkwzPR3ynU2KQpKsHo5+29YtE1d9sKExdQ/mm2j3KPZ9GvIbF3mH kKd+MC+TF4fS6Lmc3vYreeX3KI59g1OXCJqDcuISRRsulhR0q6QEYfu7zCY+RuER rLABPGl6NyJFNohgo9xeHYn5LRdG6/0ntVpmB2DempqnXucNbIoiSoFIbtkrpTZ6 S9Ao90OCtA2FZG5drpciToyGZQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:26:37 2026 by rpki-client