$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: BpW83nPJtDKeqkmFf3jQSUjUPI01D4hrxkQwX2KMPNo= Subject key identifier: 47:39:5A:8E:E8:18:EA:36:7B:B5:37:B8:86:AF:36:1D:0F:53:CC:7D Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01E3 Signing time: Wed 25 Mar 2026 02:45:23 +0000 Manifest this update: Wed 25 Mar 2026 02:45:22 +0000 Manifest next update: Wed 01 Apr 2026 02:45:22 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: cINxExNNysWiU1qGYN9qYXwbDeH9F1unT9S+fwZPIIs=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: CEGrzyVX/R9nXXUQAan2KcsnSM9ycrOqX5vVxIScejc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Mar 25 02:45:22 2026 GMT Not After : Apr 1 02:45:22 2026 GMT Subject: CN=69c34c42-d13b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:61:b3:ee:ea:1e:bd:ce:7d:bb:a6:0f:fb:78: 9b:ac:20:0d:0f:bc:1e:f2:2b:cc:dc:0a:0b:6a:87: e1:74:ff:c5:71:9e:06:54:43:4f:b7:77:e8:b9:a7: 2a:dc:10:08:56:85:be:37:9e:c2:6a:3c:17:88:15: d4:a8:05:f1:d3:fe:6b:1a:a1:d7:5e:55:10:bc:c0: 8a:4b:90:72:5e:d5:95:6c:a2:d0:dd:49:c9:38:63: a7:56:22:6c:97:42:83:7b:70:fa:7d:37:e2:9e:b7: 1c:e7:cf:34:82:d9:27:af:bf:f6:30:25:6e:b6:8f: 15:bc:80:61:ec:ee:3a:9e:6b:bc:2e:e0:5c:bb:37: 6b:11:06:a4:ec:85:8d:43:13:79:8f:68:62:e1:47: 1e:ac:c9:8a:16:02:5c:37:92:fd:73:a5:91:c3:05: 49:21:a3:dd:c3:33:c6:5e:b7:a7:a4:69:16:b1:5d: 94:a2:29:81:9d:27:f1:22:47:90:ae:ac:da:9c:ef: c4:17:75:d8:20:8c:1f:ff:8e:82:09:ad:3e:12:bb: 33:f2:9a:cd:08:4d:d7:00:0f:96:b8:e6:bc:a6:3e: 28:24:da:1b:03:69:0d:2b:69:2e:49:49:be:06:c2: 30:c1:85:23:e2:97:9c:ae:ee:b9:93:54:29:ab:93: f4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:39:5A:8E:E8:18:EA:36:7B:B5:37:B8:86:AF:36:1D:0F:53:CC:7D X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:48:1f:39:d1:9e:0b:72:e0:ea:be:cb:1a:33:b0:f2:9b:86: e9:db:d7:3f:93:e4:4d:db:c7:3f:59:e7:ad:b3:92:dc:9e:69: 1f:5e:91:e8:80:48:c1:56:d0:a9:ab:88:04:41:c1:47:98:8b: d4:a8:c0:63:e9:48:3b:35:dd:c3:9e:31:9d:6b:e8:61:c5:e3: 4b:78:bd:f3:f4:aa:13:f6:31:4b:23:e6:91:ab:fd:63:89:bc: 1b:a8:79:9b:95:14:79:2d:6e:c3:22:16:bd:a1:11:43:e5:0e: 0b:dc:60:c6:55:38:bc:c0:28:0b:c4:49:29:2a:9c:65:6a:d1: e7:50:43:6e:d5:a9:7b:e5:d9:be:7f:70:76:3c:16:92:37:87: 96:4f:df:16:54:6f:29:e6:1a:10:5a:db:cd:81:0f:d5:f1:14: 8f:c7:39:7e:fb:96:c3:c7:7d:4c:0e:38:a5:f9:ca:49:86:a5: 09:64:2a:58:5d:0a:44:9d:ca:a6:04:bd:37:e7:bd:98:5d:20: 9f:73:3d:eb:cd:1b:60:37:4a:a7:46:fc:6f:33:7d:78:f0:7e: 92:e5:61:49:3d:2e:24:85:cf:4f:f0:ee:14:df:50:55:83:7c: 31:82:6a:95:38:d7:04:2a:7e:09:58:ec:d7:1d:e8:a3:0a:9e: a3:62:87:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjYwMzI1MDI0NTIyWhcNMjYwNDAxMDI0NTIyWjAYMRYwFAYD VQQDEw02OWMzNGM0Mi1kMTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGGz7uoevc59u6YP+3ibrCAND7we8ivM3AoLaofhdP/FcZ4GVENPt3fouacq 3BAIVoW+N57CajwXiBXUqAXx0/5rGqHXXlUQvMCKS5ByXtWVbKLQ3UnJOGOnViJs l0KDe3D6fTfinrcc5880gtknr7/2MCVuto8VvIBh7O46nmu8LuBcuzdrEQak7IWN QxN5j2hi4UcerMmKFgJcN5L9c6WRwwVJIaPdwzPGXrenpGkWsV2UoimBnSfxIkeQ rqzanO/EF3XYIIwf/46CCa0+Ersz8prNCE3XAA+WuOa8pj4oJNobA2kNK2kuSUm+ BsIwwYUj4pecru65k1Qpq5P0tQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEc5Wo7o GOo2e7U3uIavNh0PU8x9MB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWUgfOdGeC3Lg6r7LGjOw8puG6dvXP5PkTdvHP1nnrbOS3J5pH16R6IBIwVbQ qauIBEHBR5iL1KjAY+lIOzXdw54xnWvoYcXjS3i98/SqE/YxSyPmkav9Y4m8G6h5 m5UUeS1uwyIWvaERQ+UOC9xgxlU4vMAoC8RJKSqcZWrR51BDbtWpe+XZvn9wdjwW kjeHlk/fFlRvKeYaEFrbzYEP1fEUj8c5fvuWw8d9TA44pfnKSYalCWQqWF0KRJ3K pgS9N+e9mF0gn3M9680bYDdKp0b8bzN9ePB+kuVhST0uJIXPT/DuFN9QVYN8MYJq lTjXBCp+CVjs1x3oowqeo2KHDQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:30:30 2026 by rpki-client