$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: ORlI0UjV2UzCHyYH6Q6szx0UMlJdODHRLBwYkZ7eZqA= Subject key identifier: 85:B8:0B:3E:4F:A4:6C:4F:54:18:A1:7C:66:C8:DC:FD:11:C9:D6:E6 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 0125 Signing time: Wed 25 Mar 2026 04:54:47 +0000 Manifest this update: Wed 25 Mar 2026 04:54:47 +0000 Manifest next update: Wed 01 Apr 2026 04:54:47 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: Z58MwDiW2G5dQSI7vduZwpHcVQHqs0r91G3tM3fFXaU=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: 1xxchiebCxLNftly6au7Pkd2xXnWXWVrUcEG++FarVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Mar 25 04:54:47 2026 GMT Not After : Apr 1 04:54:47 2026 GMT Subject: CN=69c36a97-1000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6b:8b:79:26:48:85:b2:c4:50:f8:dd:5c:f1: 9a:89:c3:d6:8c:c1:b4:fd:ae:63:e1:97:8c:dd:5b: 7b:95:e6:2f:19:89:7d:0c:d9:66:49:83:9c:a6:91: 9d:89:74:06:b5:84:5c:7d:d7:99:89:78:9a:b7:1e: 6f:b2:1a:e3:05:7e:9f:42:b8:a5:cc:a5:fa:47:fe: 2d:56:e2:d5:6b:e0:d2:0d:96:fa:da:97:c2:77:3a: 39:27:78:ce:0a:ff:a5:f0:01:bb:ce:4b:09:cf:64: 70:d6:0e:d8:f4:a1:1d:36:17:a2:e9:c5:f5:4c:8e: f8:c9:0f:3c:ca:2e:4c:3e:6f:89:22:58:10:24:ce: e9:48:0a:d3:d7:9f:f3:7a:60:1d:af:21:b4:5c:93: 1e:48:db:8f:16:c6:b7:54:cf:f5:6f:89:86:51:08: eb:54:65:40:90:fd:80:12:2f:b1:03:00:c3:83:48: 73:d4:57:dc:3d:79:89:38:91:b0:d1:9a:23:8b:2b: 83:04:f7:cf:72:3d:6c:28:d6:3d:8b:d9:1d:b5:36: e6:e2:a4:49:a3:0f:de:f6:96:9e:bf:56:77:70:a3: 1b:9a:3c:9e:6d:84:d6:f5:d5:60:08:cb:46:b0:3d: 7f:c8:0d:49:10:fe:63:32:86:e7:5e:a9:ea:d4:d6: 4c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B8:0B:3E:4F:A4:6C:4F:54:18:A1:7C:66:C8:DC:FD:11:C9:D6:E6 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:85:51:c7:30:89:75:2e:24:a9:94:20:6d:2b:db:14:7b:7a: 38:e1:69:1a:8e:f1:d5:33:9b:c3:ba:e3:14:75:84:b7:32:0f: cc:19:91:4e:45:88:e0:e5:d1:36:cc:2a:d6:3a:f7:05:e0:62: c6:8f:e1:08:56:ee:39:9a:ec:39:f7:32:a2:32:18:1f:b8:fa: f4:ad:2b:c8:03:77:10:8a:bb:d7:30:f9:f8:fa:72:e3:92:4e: f4:13:dd:75:46:bc:e1:f0:d1:ee:81:1d:2c:65:65:05:a2:8e: 64:5f:56:ff:a1:4b:f4:7e:1b:d7:72:ea:e1:d9:58:a4:7f:34: 7e:c3:e0:76:f8:c3:fd:7d:7e:63:ed:d3:06:41:94:4f:5c:ae: 94:82:a5:31:15:65:20:83:85:30:35:e5:75:61:1e:39:59:a2: f6:3e:2f:24:35:69:45:d9:4a:62:ba:90:16:9b:bd:38:9d:f2: f1:b1:e2:24:75:05:00:2f:6d:21:b4:45:b7:48:d5:7b:79:dc: fc:15:14:81:6f:1f:b6:62:9c:ae:c1:b4:1b:ac:cf:8b:9a:6e: dd:88:a2:bb:54:c0:7f:eb:4b:1f:af:95:e5:d7:97:01:0a:87: b5:14:4b:de:28:4e:a7:d1:13:bf:9d:e8:b2:7e:e3:8f:90:9c: 6c:e3:b0:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjYwMzI1MDQ1NDQ3WhcNMjYwNDAxMDQ1NDQ3WjAYMRYwFAYD VQQDEw02OWMzNmE5Ny0xMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomuLeSZIhbLEUPjdXPGaicPWjMG0/a5j4ZeM3Vt7leYvGYl9DNlmSYOcppGd iXQGtYRcfdeZiXiatx5vshrjBX6fQrilzKX6R/4tVuLVa+DSDZb62pfCdzo5J3jO Cv+l8AG7zksJz2Rw1g7Y9KEdNhei6cX1TI74yQ88yi5MPm+JIlgQJM7pSArT15/z emAdryG0XJMeSNuPFsa3VM/1b4mGUQjrVGVAkP2AEi+xAwDDg0hz1FfcPXmJOJGw 0ZojiyuDBPfPcj1sKNY9i9kdtTbm4qRJow/e9paev1Z3cKMbmjyebYTW9dVgCMtG sD1/yA1JEP5jMobnXqnq1NZM5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIW4Cz5P pGxPVBihfGbI3P0RydbmMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABYVRxzCJdS4kqZQgbSvbFHt6OOFpGo7x1TObw7rjFHWEtzIPzBmRTkWI4OXR Nswq1jr3BeBixo/hCFbuOZrsOfcyojIYH7j69K0ryAN3EIq71zD5+Ppy45JO9BPd dUa84fDR7oEdLGVlBaKOZF9W/6FL9H4b13Lq4dlYpH80fsPgdvjD/X1+Y+3TBkGU T1yulIKlMRVlIIOFMDXldWEeOVmi9j4vJDVpRdlKYrqQFpu9OJ3y8bHiJHUFAC9t IbRFt0jVe3nc/BUUgW8ftmKcrsG0G6zPi5pu3Yiiu1TAf+tLH6+V5deXAQqHtRRL 3ihOp9ETv53osn7jj5CcbOOwoA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:49 2026 by rpki-client