$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: WHZepI5CJGqJp/2+cn8tAxQ0qFBz4M1Y7S0FZQ3Pm9c= Subject key identifier: 1B:A0:63:5A:F6:1F:C8:2A:10:51:22:4E:A7:DB:25:F0:13:9F:F0:42 Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 08CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0D78 Signing time: Tue 24 Mar 2026 20:10:09 +0000 Manifest this update: Tue 24 Mar 2026 20:10:08 +0000 Manifest next update: Tue 31 Mar 2026 20:10:08 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: STBQH1PGJiPlYf0mwPySgH7MccEQ476ZGZap7KdA7/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: Mar 24 20:10:08 2026 GMT Not After : Mar 31 20:10:08 2026 GMT Subject: CN=69c2efa1-624f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:4b:fc:7e:8e:ca:2c:ea:0e:fb:42:c0:4b:69: ee:c2:99:3a:e3:1a:6e:a1:d4:2c:a3:19:08:f7:18: 3b:52:40:31:1e:e9:13:11:d5:9b:35:0b:20:20:42: fe:9d:70:17:c6:72:6f:01:5e:40:98:1d:59:76:92: 19:c4:f6:9b:03:f5:c8:fb:41:46:8d:69:5c:e0:41: 26:23:68:e8:6f:59:64:29:6b:ad:af:db:c0:50:d2: 73:ca:7a:84:1d:10:72:35:3e:9b:4d:f8:7b:5f:22: 14:4a:21:5c:55:04:61:e7:e4:41:8f:9a:37:aa:ae: e1:18:d8:e0:f0:9b:a9:f3:32:e2:4a:a4:60:34:67: 2e:8e:d6:3a:3e:dd:9f:70:03:71:11:c5:9b:4b:67: 4a:0e:87:79:c1:a1:b8:8d:bd:21:8b:57:cb:59:4d: 75:55:ef:64:33:00:bd:02:dd:03:c3:2c:8a:41:4d: 8d:d4:68:eb:3b:48:42:f3:f2:0d:e5:8d:5c:e4:15: bd:9d:dd:46:31:f1:6f:05:16:96:0c:4d:2b:1a:9e: f8:f2:17:9f:f0:1f:dd:af:fc:96:3a:92:12:68:98: 93:fc:cf:1f:36:bd:74:fa:64:b0:c6:08:00:a9:08: b5:e6:79:14:dd:dd:ea:0f:25:71:f2:34:c9:2e:7c: bd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A0:63:5A:F6:1F:C8:2A:10:51:22:4E:A7:DB:25:F0:13:9F:F0:42 X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:c8:5f:dd:01:35:bb:a2:ba:79:23:78:67:0f:b4:b9:a1:cb: bc:18:d3:9b:5a:78:c9:d7:6f:98:aa:87:90:de:9f:ea:51:2d: 71:9f:fa:58:2a:66:0e:7b:f8:f8:d9:5b:05:44:22:fd:48:ef: 79:63:f4:26:59:35:d1:d8:4e:83:a5:8d:54:90:02:8e:29:c2: a1:91:9f:58:d3:c8:51:65:f5:c3:0c:44:eb:4a:bd:f6:bd:04: 58:f0:f5:b9:e8:16:5a:0e:b5:f7:67:ff:45:20:2e:9e:44:32: 2a:69:b6:5e:b5:da:27:49:77:c4:35:11:71:61:a4:96:4f:93: 59:8f:03:72:46:11:e6:2d:44:70:2a:5a:a9:68:ef:82:1b:3c: 08:64:03:10:b0:67:29:ff:12:af:34:8e:62:f3:72:fe:b1:aa: e5:57:06:89:10:4e:bc:88:ba:c3:5b:4f:f3:12:0b:0b:92:2d: ca:41:d7:99:2d:cc:e2:d1:d4:c2:48:c6:35:66:2b:13:36:4c: 26:31:b6:eb:67:93:de:c2:7c:01:6d:9e:12:1a:9d:a8:ba:2e: fa:70:b1:23:03:35:ed:ac:bd:cc:fa:f5:54:7c:f7:a3:a7:27: 2e:e6:a7:e9:54:32:08:6b:5f:c0:1e:1e:dd:5c:a5:36:c6:97: 28:04:76:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjYwMzI0MjAxMDA4WhcNMjYwMzMxMjAxMDA4WjAYMRYwFAYD VQQDEw02OWMyZWZhMS02MjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj0v8fo7KLOoO+0LAS2nuwpk64xpuodQsoxkI9xg7UkAxHukTEdWbNQsgIEL+ nXAXxnJvAV5AmB1ZdpIZxPabA/XI+0FGjWlc4EEmI2job1lkKWutr9vAUNJzynqE HRByNT6bTfh7XyIUSiFcVQRh5+RBj5o3qq7hGNjg8Jup8zLiSqRgNGcujtY6Pt2f cANxEcWbS2dKDod5waG4jb0hi1fLWU11Ve9kMwC9At0DwyyKQU2N1GjrO0hC8/IN 5Y1c5BW9nd1GMfFvBRaWDE0rGp748hef8B/dr/yWOpISaJiT/M8fNr10+mSwxggA qQi15nkU3d3qDyVx8jTJLny97wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBugY1r2 H8gqEFEiTqfbJfATn/BCMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHshf3QE1u6K6eSN4Zw+0uaHLvBjTm1p4yddvmKqHkN6f6lEtcZ/6WCpmDnv4 +NlbBUQi/UjveWP0Jlk10dhOg6WNVJACjinCoZGfWNPIUWX1wwxE60q99r0EWPD1 uegWWg6192f/RSAunkQyKmm2XrXaJ0l3xDURcWGklk+TWY8DckYR5i1EcCpaqWjv ghs8CGQDELBnKf8SrzSOYvNy/rGq5VcGiRBOvIi6w1tP8xILC5ItykHXmS3M4tHU wkjGNWYrEzZMJjG262eT3sJ8AW2eEhqdqLou+nCxIwM17ay9zPr1VHz3o6cnLuan 6VQyCGtfwB4e3VylNsaXKAR2iw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:42:12 2026 by rpki-client