$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: so7b2spZNfDjGfMjZS03VZPFV4Z8kW3V1f1PnvnLwxc= Subject key identifier: DF:BD:8A:24:E9:8F:3A:45:18:5E:B5:BF:A8:19:F8:B4:82:5A:2D:8E Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 03CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 03C6 Signing time: Tue 24 Mar 2026 23:59:29 +0000 Manifest this update: Tue 24 Mar 2026 23:59:28 +0000 Manifest next update: Tue 31 Mar 2026 23:59:28 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: HIPgvIFhzM/9jFX8PtjuoFXtyI2Wo32AQo946OsBa20=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: XP4HSeF++rcOTwwJXu1GGe3b805gAKCMza6aEuOXosM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 971 (0x3cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Mar 24 23:59:28 2026 GMT Not After : Mar 31 23:59:28 2026 GMT Subject: CN=69c32561-2dee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4c:2d:4b:37:a6:8e:1b:8e:4b:d6:33:ec:2f: ca:3c:24:fe:9c:89:92:5b:c6:58:d1:06:30:2f:7e: 81:90:01:68:3a:d5:0a:2b:94:6d:9d:71:7b:ff:e7: 90:b6:1e:2d:7b:6d:fc:a7:0d:c4:f1:ce:cb:56:bc: 96:dc:28:55:a6:43:ff:55:56:a2:3f:29:1a:f7:4a: 63:86:8b:55:f7:91:79:58:4b:37:1a:60:40:1d:49: 32:da:b9:9c:dc:be:3e:17:47:02:f3:93:1d:d2:4b: d7:a4:0c:32:98:b4:fe:b6:69:68:7f:12:8b:f1:ef: 75:9b:14:a9:6d:b7:b9:ac:4a:10:3b:c2:ff:96:f9: 99:e2:d1:68:46:bd:7e:b1:b5:1b:d7:a7:b6:94:32: c9:3c:06:3a:d6:f2:fc:70:29:ec:23:8a:ea:29:71: 04:ea:dd:92:e5:f7:c3:bb:c9:6e:93:25:07:7a:5e: 1d:69:34:7c:11:9d:fc:c4:c6:fb:e4:fc:91:3c:3d: 26:fd:92:f3:b1:28:e5:5e:97:b2:fb:f1:75:f3:f4: 3e:db:07:96:18:1d:9c:ec:f2:fe:ca:9f:01:53:2d: e0:c7:19:91:f9:c9:57:44:be:a6:5f:21:63:21:10: ed:80:f4:56:d3:2a:a1:13:e1:1b:96:df:8c:8e:11: 49:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:BD:8A:24:E9:8F:3A:45:18:5E:B5:BF:A8:19:F8:B4:82:5A:2D:8E X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:1b:95:ee:2b:2d:aa:14:62:de:bc:70:4d:d3:f1:6c:01:99: 5a:1d:ff:b1:01:f6:f8:e4:9a:5d:ae:d9:6f:de:8c:7f:60:cc: 0b:38:62:50:ec:26:8a:f5:90:48:27:46:10:86:bc:b5:45:5e: 1c:2b:da:c2:69:94:57:97:a4:ab:9e:af:3f:3f:dc:f4:89:dc: d0:15:21:32:88:40:fd:4a:2a:c3:20:6f:46:9b:34:38:eb:9c: fe:1c:f4:93:e6:de:64:94:47:b1:ba:af:cc:7d:d9:ed:2c:10: 64:20:2c:5e:4e:66:c6:c1:49:16:0c:18:c8:c0:ef:32:41:b5: f8:18:da:01:d6:5f:5d:01:aa:83:08:c4:51:ec:78:d2:9a:b7: 81:f4:10:87:a9:f9:31:97:08:6e:78:30:29:94:10:d3:49:d3: a6:05:f2:b4:eb:e3:f1:c3:d7:a7:bf:0f:d6:7c:1b:5b:7f:3f: ac:ff:2a:fc:31:d2:cb:03:6d:c7:b6:78:fb:98:ef:7b:46:46: ee:96:9b:84:c3:54:58:5d:e9:e6:87:10:eb:23:93:2f:16:01: b2:32:2c:f3:7a:da:d6:0f:93:a3:25:ca:cd:c7:9e:69:da:43: cc:3d:fa:d7:39:d7:fb:50:4c:87:ba:57:80:5a:6e:7d:ce:1f: b9:ba:37:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjYwMzI0MjM1OTI4WhcNMjYwMzMxMjM1OTI4WjAYMRYwFAYD VQQDEw02OWMzMjU2MS0yZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEwtSzemjhuOS9Yz7C/KPCT+nImSW8ZY0QYwL36BkAFoOtUKK5RtnXF7/+eQ th4te238pw3E8c7LVryW3ChVpkP/VVaiPyka90pjhotV95F5WEs3GmBAHUky2rmc 3L4+F0cC85Md0kvXpAwymLT+tmlofxKL8e91mxSpbbe5rEoQO8L/lvmZ4tFoRr1+ sbUb16e2lDLJPAY61vL8cCnsI4rqKXEE6t2S5ffDu8lukyUHel4daTR8EZ38xMb7 5PyRPD0m/ZLzsSjlXpey+/F18/Q+2weWGB2c7PL+yp8BUy3gxxmR+clXRL6mXyFj IRDtgPRW0yqhE+Eblt+MjhFJAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN+9iiTp jzpFGF61v6gZ+LSCWi2OMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKhuV7istqhRi3rxwTdPxbAGZWh3/sQH2+OSaXa7Zb96Mf2DMCzhiUOwmivWQ SCdGEIa8tUVeHCvawmmUV5ekq56vPz/c9Inc0BUhMohA/UoqwyBvRps0OOuc/hz0 k+beZJRHsbqvzH3Z7SwQZCAsXk5mxsFJFgwYyMDvMkG1+BjaAdZfXQGqgwjEUex4 0pq3gfQQh6n5MZcIbngwKZQQ00nTpgXytOvj8cPXp78P1nwbW38/rP8q/DHSywNt x7Z4+5jve0ZG7pabhMNUWF3p5ocQ6yOTLxYBsjIs83ra1g+ToyXKzceeadpDzD36 1znX+1BMh7pXgFpufc4fubo3Fw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:34:32 2026 by rpki-client