$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: wWPJD1bstHhFSa/f9RY+yTp9oPQSQ7iPYDkthPQD4+Y= Subject key identifier: 47:D2:8E:F5:79:BC:14:6F:D2:39:5F:5E:CF:08:11:76:DA:72:44:F4 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0F48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0EEE Signing time: Tue 24 Mar 2026 17:33:51 +0000 Manifest this update: Tue 24 Mar 2026 17:33:50 +0000 Manifest next update: Tue 31 Mar 2026 17:33:50 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: 4NpnzjLYfcLEuqTxwuWW94LetwHKqiQr22v+/DZ0bbM=) 2: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: g+9ZIN0bzKl4hPUjZROdg1CsqMAMZorZF/Wv0UBIawM=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: /Cz52wzWYqQnUj07hXNkZLZ60VUenuXwm+9E2QE9HIA=) 4: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: i3lNMYsCEQ7EVRpurO9/d15VIL5I80raSGImmBhJGG8=) 5: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: b0kVW8mwUtVCvYjRqG2UREGRiOmhO8C18FZOPi8ZNSE=) 6: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: kewXGKanCZLKjJIXfgJUDmzxktzRMPkrL83SLgZewRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3912 (0xf48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Mar 24 17:33:50 2026 GMT Not After : Mar 31 17:33:50 2026 GMT Subject: CN=69c2caff-1590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a6:de:36:42:41:0c:9d:ed:e7:ca:c3:ef:08: 7a:82:e1:68:76:b8:84:d1:6a:e6:c7:38:b4:ee:e5: 20:1d:ad:fb:a9:8f:cf:ea:49:9b:f9:96:f0:b3:d1: 5d:7b:d2:0f:35:01:74:30:12:e7:cf:81:ec:3a:d6: 1f:14:06:1e:52:58:7d:38:ab:db:f8:1a:56:a3:61: 8e:13:8c:43:d6:c7:2e:c5:85:55:d8:91:af:cf:b4: c9:a1:91:a8:f5:36:08:2d:5f:61:7e:c1:05:03:a2: d0:42:f9:95:6e:09:91:22:28:e1:c8:27:f5:66:cd: 32:b0:8c:c5:b0:24:6a:06:aa:c2:11:82:b3:49:23: 23:40:59:61:d1:14:af:17:9d:bc:67:ac:d4:d4:e1: c4:fd:a7:bb:69:47:5f:11:2e:c4:58:1b:51:25:04: 79:9d:01:80:07:3b:b9:88:50:84:72:d3:61:73:a3: a4:cc:97:a2:a5:98:7c:c8:46:d6:07:fe:cc:de:80: 7a:50:29:80:32:fa:48:85:34:8a:79:1a:4e:7b:f5: f5:52:3b:93:21:a2:79:5f:09:49:59:f9:81:b8:40: 75:10:a5:01:cb:50:67:2c:fd:7b:2a:b6:ae:3a:2b: 67:b8:5a:5e:c8:a8:bc:d8:24:2e:71:f6:f0:60:8d: 8e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D2:8E:F5:79:BC:14:6F:D2:39:5F:5E:CF:08:11:76:DA:72:44:F4 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:64:27:86:bf:3d:5a:6e:3e:2e:ce:ac:e6:6a:07:a6:2b:2f: 0b:01:03:af:ed:af:34:9e:67:56:21:50:e2:d1:b1:73:36:b1: 59:f1:a7:f7:d9:1e:38:8b:9a:2d:70:f8:78:e7:e2:60:ea:66: f8:42:de:f9:b2:fb:37:a1:e9:a2:c1:7b:d8:ca:f5:22:a8:9e: 75:02:88:13:e7:c4:18:f7:f3:98:8c:94:e9:2e:b5:ab:0c:a7: c5:f3:ff:1a:5c:65:11:07:bf:98:5e:2f:e0:24:c6:e4:4c:b7: a8:d6:68:62:34:95:81:a8:75:14:3d:96:5d:07:88:dc:6b:2d: a0:af:1c:25:4e:f0:be:65:eb:5e:23:9b:94:d6:cc:32:84:e9: 2b:da:53:17:29:66:88:54:49:7d:14:5e:18:71:8e:94:78:3b: a5:88:36:79:88:1a:46:4a:b4:b0:54:6e:73:58:ac:5b:32:b1: fc:d5:9c:80:27:1d:c1:43:e7:52:39:fe:86:6c:a1:a0:a9:51: 4c:a9:af:a7:0e:e9:25:f9:47:a0:91:9c:01:ec:2c:8f:1c:1f: 15:ae:3e:2d:af:10:e7:20:04:7f:cf:68:b6:ee:71:e4:df:16: ec:6b:73:68:82:38:80:f1:a3:19:71:8b:17:9d:3a:08:f4:3c: 36:8b:95:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjYwMzI0MTczMzUwWhcNMjYwMzMxMTczMzUwWjAYMRYwFAYD VQQDEw02OWMyY2FmZi0xNTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoabeNkJBDJ3t58rD7wh6guFodriE0Wrmxzi07uUgHa37qY/P6kmb+Zbws9Fd e9IPNQF0MBLnz4HsOtYfFAYeUlh9OKvb+BpWo2GOE4xD1scuxYVV2JGvz7TJoZGo 9TYILV9hfsEFA6LQQvmVbgmRIijhyCf1Zs0ysIzFsCRqBqrCEYKzSSMjQFlh0RSv F528Z6zU1OHE/ae7aUdfES7EWBtRJQR5nQGABzu5iFCEctNhc6OkzJeipZh8yEbW B/7M3oB6UCmAMvpIhTSKeRpOe/X1UjuTIaJ5XwlJWfmBuEB1EKUBy1BnLP17Krau OitnuFpeyKi82CQucfbwYI2OBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfSjvV5 vBRv0jlfXs8IEXbackT0MB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfWQnhr89Wm4+Ls6s5moHpisvCwEDr+2vNJ5nViFQ4tGxczaxWfGn99keOIua LXD4eOfiYOpm+ELe+bL7N6HposF72Mr1IqiedQKIE+fEGPfzmIyU6S61qwynxfP/ GlxlEQe/mF4v4CTG5Ey3qNZoYjSVgah1FD2WXQeI3GstoK8cJU7wvmXrXiOblNbM MoTpK9pTFylmiFRJfRReGHGOlHg7pYg2eYgaRkq0sFRuc1isWzKx/NWcgCcdwUPn Ujn+hmyhoKlRTKmvpw7pJflHoJGcAewsjxwfFa4+La8Q5yAEf89otu5x5N8W7Gtz aII4gPGjGXGLF506CPQ8NouVIg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:44:46 2026 by rpki-client