$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft File: kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft (raw, json) Hash identifier: 8ru66rhr9WIZsC5uFokpl++HIgFhoXDlaajOirym93s= Subject key identifier: C1:18:6C:AE:F8:C7:F8:91:02:72:C4:36:7C:9F:DE:EB:F9:66:A1:27 Authority key identifier: 91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 Certificate issuer: /CN=A91D8157/serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft Manifest number: 1B Signing time: Wed 25 Mar 2026 08:14:10 +0000 Manifest this update: Wed 25 Mar 2026 08:14:10 +0000 Manifest next update: Wed 01 Apr 2026 08:14:10 +0000 Files and hashes: 1: kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl (hash: 4v0Y2lp64uczhNBJpAfZspyzHn91wlYoRrJKRTXCmyg=) 2: C2373EAC1D6011F1BE4C1B34263D8C67.roa (hash: 07klE73+JTtSptr8Nr9s1wMcP6sL8OycY1vW+oKqJmE=) 3: B1B9A1641D6011F1B057D12F263D8C67.roa (hash: t6D9tXAplx7/JIUvggusg1vjbe0cuS2nLDglz+Se1SQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8157, serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Validity Not Before: Mar 25 08:14:10 2026 GMT Not After : Apr 1 08:14:10 2026 GMT Subject: CN=69c39952-1021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ac:8c:32:4b:08:6c:42:b9:82:44:2c:56:a4: 1e:72:88:c5:7a:c7:71:2f:fb:b5:88:36:3d:a7:8c: c9:c7:f6:01:94:29:fa:67:10:77:e6:cd:e8:78:f1: f0:7f:d0:c8:74:a9:96:5b:f8:83:fa:e6:d0:85:63: e2:3a:c1:fe:c2:d9:3d:9e:61:33:ae:50:5b:a0:cc: b7:9b:3d:0c:fa:86:31:c1:cc:20:32:63:44:21:08: 28:db:ae:f3:c3:6c:ba:9d:16:cc:67:d5:f3:1f:54: 0d:cc:78:7e:8d:16:7c:de:3a:d5:55:a6:c9:e2:90: f3:ed:c6:b6:f3:cd:7d:e8:6e:3f:1e:42:74:16:0e: e5:28:5c:f9:78:ec:5d:c6:a3:53:10:b4:32:98:ff: bb:53:b1:ec:71:29:b4:cf:96:fe:00:19:23:c1:f9: 13:d7:e0:a2:89:06:07:6c:74:f1:24:9a:60:9f:48: 4a:d0:d5:bd:f2:e0:18:67:51:91:8c:6b:35:61:e2: 28:45:e5:00:f2:d3:06:c9:47:3d:65:99:34:f2:c3: 7b:27:1b:bd:5a:f8:02:06:14:c9:11:13:15:c2:96: 23:ce:e2:67:ce:4c:47:f7:19:6f:eb:96:39:89:6d: 50:39:ca:12:e7:b8:b7:4b:ed:1e:c5:4a:c6:f1:7f: 0c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:18:6C:AE:F8:C7:F8:91:02:72:C4:36:7C:9F:DE:EB:F9:66:A1:27 X509v3 Authority Key Identifier: keyid:91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:3e:d9:9e:64:9e:88:a5:bd:1f:7b:1c:2d:a9:ff:1c:27:bc: bb:6f:b5:98:53:93:df:fc:7d:02:c4:14:ec:9b:62:d6:69:82: df:97:38:bb:f3:68:ca:80:08:ac:88:bf:3b:b2:56:6e:9d:a9: da:02:8e:98:a6:34:0e:78:62:f5:7d:fc:15:22:b2:07:b2:0f: f8:cc:52:fc:44:1e:97:f4:31:d0:5a:4d:bf:7e:fa:2c:64:76: 56:0e:94:b5:a3:42:e8:8c:7c:62:53:1f:5b:9a:28:da:3b:60: ce:6a:b3:be:69:7b:3b:2b:8f:7e:4e:20:49:76:72:71:b1:fc: 40:84:3e:59:b5:bb:be:f0:77:16:12:68:89:8a:61:28:f9:3c: ac:d2:9a:84:9e:c4:ad:32:ea:b5:30:ea:ba:e1:c0:53:25:dc: c3:63:75:e5:ab:32:19:a1:08:61:c8:d6:f7:39:20:a8:3f:27: 24:57:06:e7:0e:5d:74:57:78:24:48:5c:ab:a7:06:21:0d:05: cf:5f:84:98:1d:3d:99:02:65:a7:68:d0:e6:b4:bd:7a:6a:e4: 5b:2c:ab:44:fa:ab:b3:50:98:68:4b:a0:26:cd:73:47:28:d0: 86:69:ec:33:8a:b2:e9:d0:c3:7f:97:79:56:0d:f2:21:a7:c7: a1:bb:d2:9b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE1NzExMC8GA1UEBRMoOTFEQTNBMTc2MzdDRDI5MkNFQTQ2NzBERDEzQTcyRDg2 RUFBMkQ5MTAeFw0yNjAzMjUwODE0MTBaFw0yNjA0MDEwODE0MTBaMBgxFjAUBgNV BAMTDTY5YzM5OTUyLTEwMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfrIwySwhsQrmCRCxWpB5yiMV6x3Ev+7WINj2njMnH9gGUKfpnEHfmzeh48fB/ 0Mh0qZZb+IP65tCFY+I6wf7C2T2eYTOuUFugzLebPQz6hjHBzCAyY0QhCCjbrvPD bLqdFsxn1fMfVA3MeH6NFnzeOtVVpsnikPPtxrbzzX3obj8eQnQWDuUoXPl47F3G o1MQtDKY/7tTsexxKbTPlv4AGSPB+RPX4KKJBgdsdPEkmmCfSErQ1b3y4BhnUZGM azVh4ihF5QDy0wbJRz1lmTTyw3snG71a+AIGFMkRExXCliPO4mfOTEf3GW/rljmJ bVA5yhLnuLdL7R7FSsbxfwyZAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUwRhsrvjH +JECcsQ2fJ/e6/lmoScwHwYDVR0jBBgwFoAUkdo6F2N80pLOpGcN0Tpy2G6qLZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTU3LzI1MDgzOEFFMTE0 MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBMT3BHY04wVHB5Mkc2cUxa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2RvNkYyTjgwcExPcEdjTjBUcHkyRzZxTFpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MTU3LzI1MDgzOEFFMTE0MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBM T3BHY04wVHB5Mkc2cUxaRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBxPtmeZJ6Ipb0fexwtqf8cJ7y7b7WYU5Pf/H0CxBTsm2LWaYLflzi782jKgAis iL87slZunanaAo6YpjQOeGL1ffwVIrIHsg/4zFL8RB6X9DHQWk2/fvosZHZWDpS1 o0LojHxiUx9bmijaO2DOarO+aXs7K49+TiBJdnJxsfxAhD5Ztbu+8HcWEmiJimEo +Tys0pqEnsStMuq1MOq64cBTJdzDY3XlqzIZoQhhyNb3OSCoPyckVwbnDl10V3gk SFyrpwYhDQXPX4SYHT2ZAmWnaNDmtL16auRbLKtE+quzUJhoS6AmzXNHKNCGaewz irLp0MN/l3lWDfIhp8ehu9Kb -----END CERTIFICATE-----Generated at Thu Mar 26 06:15:39 2026 by rpki-client