$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: O17WCpo2D1GQhuNfNZHQEo3DxLBtBl594Hp1VbnoHPU= Subject key identifier: 23:50:7B:13:50:8C:4C:92:4B:94:01:41:D9:97:EB:0A:8A:43:12:BC Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0CCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0CAE Signing time: Tue 24 Mar 2026 18:21:37 +0000 Manifest this update: Tue 24 Mar 2026 18:21:36 +0000 Manifest next update: Tue 31 Mar 2026 18:21:36 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: /2Q5VFNQmxDo9AxhvTqzD7GtylMxXyP1oFTxIPYDUo0=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: 0ui+SiQ/c3MRovj/aJJcziARwvWd2KxwKuQ6NFEu4OA=) 3: C9989D9EF52011EF88416555C4F9AE02.roa (hash: OehBxOplI/UOZ/b2d9DDqACV634wRHZsLO+l8ckQwQQ=) 4: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: qPZmqhPtG1orNWgO21O3wlBwiZAj4EQWTBy6up25D/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Mar 24 18:21:36 2026 GMT Not After : Mar 31 18:21:36 2026 GMT Subject: CN=69c2d631-4c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:78:7f:cd:11:28:25:c0:16:17:5e:22:75:3a: 10:46:09:dc:99:c3:26:d4:15:10:53:32:bc:56:98: a7:d3:04:49:59:ed:0e:d0:b2:19:a1:30:df:65:84: 14:a1:8e:7a:89:64:2f:d7:36:c1:fc:67:fa:5d:df: 58:55:9b:e5:c3:64:92:42:27:07:c0:9c:5a:ae:66: 15:d1:ca:78:95:68:41:f9:46:ad:f5:09:7e:a2:29: 4c:03:eb:22:b8:e8:15:d3:51:08:b7:95:3b:80:a8: 99:6b:e9:9b:61:2b:c8:12:d8:84:31:86:3d:77:73: 4c:76:0a:8a:1b:82:48:d6:0c:0a:5c:95:83:c2:7a: 49:72:2e:5a:e0:3f:2c:5e:41:9d:b0:15:37:91:c5: 6a:d5:7b:d8:f5:7a:c7:1c:1b:31:1f:ee:eb:e5:9d: 6d:ec:87:99:4c:0f:b8:74:87:b0:26:4a:97:74:d2: b9:71:e8:6f:95:19:0d:6f:81:7e:53:3e:75:d0:6f: db:8e:7a:85:9d:7d:33:5e:8e:c4:e1:23:ce:4e:fb: ec:c5:80:5c:54:12:ea:b9:0a:d8:46:b7:11:a1:f9: f3:f4:83:e4:31:f6:49:7b:25:5a:b4:d0:f8:60:18: b7:d3:eb:47:a8:6c:99:fd:ae:db:f2:e2:c0:f9:89: d2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:50:7B:13:50:8C:4C:92:4B:94:01:41:D9:97:EB:0A:8A:43:12:BC X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:cb:97:f0:b9:3b:e8:ca:f0:84:f2:fe:d5:5c:96:86:82:78: 5e:43:fc:fe:a8:3c:3e:d1:07:f6:bb:5c:45:15:1c:e4:27:2f: d5:b6:3a:cc:8e:06:82:a1:26:f7:86:1f:a3:00:30:42:8d:7d: 58:7c:22:61:7b:f3:d8:17:26:6d:d2:72:4b:8e:cb:5d:1f:5c: 33:ca:18:a8:66:9d:2a:c2:56:71:1a:4f:8e:72:5f:51:d7:a6: 01:88:84:a9:14:0f:a7:de:30:d8:7f:c0:d7:2f:4f:a9:c1:c7: 8e:f7:44:e1:4b:63:d5:ea:5e:45:5d:9b:7a:ad:e5:55:0a:2d: 41:ee:13:b2:9c:a7:58:52:eb:9f:e9:ec:3c:73:0e:5d:98:c3: 93:cc:15:a4:82:71:23:48:8b:96:2c:c5:7a:34:a8:22:94:a4: 5e:f5:88:6f:fb:6a:d3:96:7a:9e:33:64:c0:64:72:ac:bb:09: 8e:47:c8:4e:88:fb:a9:c6:98:b5:39:ed:4b:3a:c1:59:cc:7c: 49:2a:14:48:ec:e0:e5:d2:4d:7f:23:f2:54:00:34:36:10:25: 33:4b:d7:47:cb:83:f0:1b:5b:60:d0:c6:5b:2d:26:70:61:e1: db:59:1c:cc:a8:b7:79:a9:9d:a2:b6:2c:5e:d7:26:8a:38:d4: 6d:d8:72:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjYwMzI0MTgyMTM2WhcNMjYwMzMxMTgyMTM2WjAYMRYwFAYD VQQDEw02OWMyZDYzMS00YzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3h/zREoJcAWF14idToQRgncmcMm1BUQUzK8Vpin0wRJWe0O0LIZoTDfZYQU oY56iWQv1zbB/Gf6Xd9YVZvlw2SSQicHwJxarmYV0cp4lWhB+Uat9Ql+oilMA+si uOgV01EIt5U7gKiZa+mbYSvIEtiEMYY9d3NMdgqKG4JI1gwKXJWDwnpJci5a4D8s XkGdsBU3kcVq1XvY9XrHHBsxH+7r5Z1t7IeZTA+4dIewJkqXdNK5cehvlRkNb4F+ Uz510G/bjnqFnX0zXo7E4SPOTvvsxYBcVBLquQrYRrcRofnz9IPkMfZJeyVatND4 YBi30+tHqGyZ/a7b8uLA+YnShQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCNQexNQ jEySS5QBQdmX6wqKQxK8MB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhsuX8Lk76MrwhPL+1VyWhoJ4XkP8/qg8PtEH9rtcRRUc5Ccv1bY6zI4GgqEm 94YfowAwQo19WHwiYXvz2BcmbdJyS47LXR9cM8oYqGadKsJWcRpPjnJfUdemAYiE qRQPp94w2H/A1y9PqcHHjvdE4Utj1epeRV2beq3lVQotQe4TspynWFLrn+nsPHMO XZjDk8wVpIJxI0iLlizFejSoIpSkXvWIb/tq05Z6njNkwGRyrLsJjkfIToj7qcaY tTntSzrBWcx8SSoUSOzg5dJNfyPyVAA0NhAlM0vXR8uD8BtbYNDGWy0mcGHh21kc zKi3eamdorYsXtcmijjUbdhyNw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:58:16 2026 by rpki-client