$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: CtI1Bc92mnDfIfGqK4YY3WYh57OYa13drhxR6Nc4+S8= Subject key identifier: 43:0A:B9:09:6F:1A:9F:28:77:96:42:2C:D6:C0:08:B8:19:40:BC:91 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 0A4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 0A43 Signing time: Tue 24 Mar 2026 19:29:55 +0000 Manifest this update: Tue 24 Mar 2026 19:29:54 +0000 Manifest next update: Tue 31 Mar 2026 19:29:54 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: 9LmKBJNTP3zU3C1kBYVC9bE6ho6YZ39VIz5vP9qvgUw=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: tMZ5eMTtP1d92HOozzJdgHksx9o6zVLKwH65RdaVt8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2637 (0xa4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Mar 24 19:29:54 2026 GMT Not After : Mar 31 19:29:54 2026 GMT Subject: CN=69c2e632-6798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:49:a8:fd:53:fc:24:b4:3d:ec:34:c2:89:13: b7:4a:77:b4:ef:84:cd:13:57:8b:74:19:94:96:0a: 41:12:9a:4e:1d:4a:75:1f:8e:a1:2c:22:93:65:10: 86:00:c1:30:fc:46:e7:be:9b:ec:52:6f:29:d0:d3: 7a:f8:81:2c:09:90:e1:2e:10:e3:c4:d5:78:40:b0: af:98:4c:2e:a4:7c:0f:a2:e3:1d:fb:fb:a9:97:75: f1:d5:90:0e:10:8b:f4:1e:c1:2c:77:a6:a5:d5:d8: cc:88:93:4f:7f:00:3c:0a:a5:56:a9:e8:7e:75:24: db:91:63:25:ea:16:3e:06:1f:53:9b:86:f9:26:4b: d2:56:d9:00:f1:31:40:63:da:77:11:fb:0e:35:fa: 99:be:9c:ef:0f:d3:8f:71:52:18:a4:96:f4:07:65: 75:84:59:9b:0c:07:6a:69:2c:b7:69:90:0a:ae:bc: 39:16:a9:68:dd:09:4d:fa:36:9b:c9:d5:8d:00:6b: a9:a9:5d:74:b3:8a:75:e9:ba:15:39:b7:dc:46:eb: c2:d4:ea:bd:17:e4:6c:cb:5b:30:3a:9c:7b:d1:35: b7:32:f1:3e:bc:92:cd:cd:a2:f5:d0:b4:a8:2e:2e: 86:a1:33:37:f3:42:5e:4c:b4:26:51:65:7b:0c:2c: 67:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:0A:B9:09:6F:1A:9F:28:77:96:42:2C:D6:C0:08:B8:19:40:BC:91 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:87:e6:bc:ca:29:f0:45:14:a5:1c:f3:a0:63:ad:13:9b:4b: 9b:ea:a5:f6:63:64:fd:bf:ee:86:8c:26:4c:49:0a:d5:10:75: 12:d6:70:50:cb:33:96:c9:b6:58:c9:9c:f0:da:ad:7e:30:0d: d5:4f:a7:df:c5:7f:81:8d:fc:f5:33:d7:ea:33:df:06:e9:fe: ea:b5:2d:f2:44:1a:8b:2f:dc:33:44:c6:0b:d8:4e:84:bf:a2: 52:1c:2e:49:d5:60:05:32:2b:da:92:31:24:80:1b:3c:fb:d2: e5:f7:4f:f4:ed:a0:dc:6d:06:08:69:19:44:35:46:fd:8f:e1: c6:78:f9:04:c6:9a:1d:26:ce:6d:62:d5:02:6d:2d:b2:79:cd: 7e:dc:9c:11:99:27:87:15:a9:0d:44:88:9b:ad:74:1a:22:4d: b3:b5:16:5b:4f:6d:fb:c4:f7:9d:49:1a:8d:6d:72:8c:5a:a8: 60:e2:3d:b5:61:7a:98:f3:66:99:93:00:26:fc:75:54:24:78: 10:dd:45:51:30:c7:66:04:18:d0:6f:67:ee:17:ad:a3:d9:5f: d0:8d:3a:6e:ee:d2:35:a8:7d:d2:f8:f1:92:3e:c8:3f:d7:35: eb:1a:88:0c:a6:69:9b:ea:9a:57:dc:9f:29:dc:f7:bd:b3:b9: a8:1a:57:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjYwMzI0MTkyOTU0WhcNMjYwMzMxMTkyOTU0WjAYMRYwFAYD VQQDEw02OWMyZTYzMi02Nzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0mo/VP8JLQ97DTCiRO3Sne074TNE1eLdBmUlgpBEppOHUp1H46hLCKTZRCG AMEw/EbnvpvsUm8p0NN6+IEsCZDhLhDjxNV4QLCvmEwupHwPouMd+/upl3Xx1ZAO EIv0HsEsd6al1djMiJNPfwA8CqVWqeh+dSTbkWMl6hY+Bh9Tm4b5JkvSVtkA8TFA Y9p3EfsONfqZvpzvD9OPcVIYpJb0B2V1hFmbDAdqaSy3aZAKrrw5Fqlo3QlN+jab ydWNAGupqV10s4p16boVObfcRuvC1Oq9F+Rsy1swOpx70TW3MvE+vJLNzaL10LSo Li6GoTM380JeTLQmUWV7DCxnHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEMKuQlv Gp8od5ZCLNbACLgZQLyRMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlIfmvMop8EUUpRzzoGOtE5tLm+ql9mNk/b/uhowmTEkK1RB1EtZwUMszlsm2 WMmc8NqtfjAN1U+n38V/gY389TPX6jPfBun+6rUt8kQaiy/cM0TGC9hOhL+iUhwu SdVgBTIr2pIxJIAbPPvS5fdP9O2g3G0GCGkZRDVG/Y/hxnj5BMaaHSbObWLVAm0t snnNftycEZknhxWpDUSIm610GiJNs7UWW09t+8T3nUkajW1yjFqoYOI9tWF6mPNm mZMAJvx1VCR4EN1FUTDHZgQY0G9n7heto9lf0I06bu7SNah90vjxkj7IP9c16xqI DKZpm+qaV9yfKdz3vbO5qBpX8A== -----END CERTIFICATE-----Generated at Thu Mar 26 17:39:32 2026 by rpki-client