$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: b0mgd7fl0ZU4f/UficCQtpwIWbjCO0g5R1MnUEZgI44= Subject key identifier: C6:12:9F:0A:B6:75:32:C1:E9:A7:82:BA:2B:27:42:D8:51:5E:CF:05 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 147E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 1458 Signing time: Tue 24 Mar 2026 15:23:26 +0000 Manifest this update: Tue 24 Mar 2026 15:23:25 +0000 Manifest next update: Tue 31 Mar 2026 15:23:25 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: wuAlaGY2cMN3oWMDwkKi2x3GXcc8/GgXJhCsnadNrl4=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: Ahq8pAmeUbi/UnTEDIDcD1i65MG+Vf7huahab+3HR9s=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: yi1Y4ZAzUNkEpGZbqmVVGbSuzm1HULg6+CfEtcyOZy0=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: w2NWjfabvdQFP3C4IwPEM+fGnRuZMPns4zEDrwbMyxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5246 (0x147e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Mar 24 15:23:25 2026 GMT Not After : Mar 31 15:23:25 2026 GMT Subject: CN=69c2ac6e-c641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:83:fa:25:62:b9:19:3c:a0:3d:4d:14:5a:a3: 19:ea:d0:f7:38:fe:aa:4e:e2:59:11:74:b2:86:d6: ab:d9:40:b8:7b:3d:4f:cb:64:46:6d:e9:8c:85:df: ca:4d:29:dc:fd:36:73:37:ae:48:23:f1:87:1e:11: db:78:46:68:b6:f4:33:f5:0d:1e:ab:c1:e3:cd:ea: 14:45:7c:6d:a9:7c:d5:6c:ad:d2:c1:cd:31:b7:76: 92:cc:df:19:d2:99:c2:3d:65:3a:dd:3d:59:fb:d9: b8:9a:bf:32:b6:a8:aa:03:66:d4:66:44:38:7e:6c: 26:0a:25:aa:71:ed:e9:23:ae:08:8e:4a:84:b7:2d: 93:1a:1b:c5:66:c5:7b:6c:b2:fc:8a:5f:06:70:96: 04:8f:0d:4f:ce:0c:81:df:57:63:2d:96:54:cf:68: fc:5b:72:0d:04:34:c5:51:0f:58:b5:6f:f6:93:e0: 12:c8:1e:ca:bc:93:fc:3c:f2:6d:fa:59:5c:ca:f6: c2:93:72:c4:23:c3:64:30:83:a6:69:cf:27:49:87: 31:c3:85:6c:68:b1:94:9b:d1:14:8b:5d:34:87:6c: 1c:57:4b:0b:62:9a:2b:07:13:3f:d6:18:af:48:e6: 20:f9:dc:b3:14:28:0c:04:90:91:b3:5a:83:e4:f5: 85:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:12:9F:0A:B6:75:32:C1:E9:A7:82:BA:2B:27:42:D8:51:5E:CF:05 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:34:ad:e1:16:29:f6:52:dc:18:b3:42:7b:cd:7b:3c:0f:76: ed:ec:39:f3:fd:5c:87:af:30:d7:d6:0f:8f:b6:3d:a6:9b:72: 57:1b:13:f3:62:bc:43:a9:f5:0d:79:f0:ad:dd:49:df:83:54: af:6c:e3:70:b0:f0:d8:c8:fd:6b:c3:a4:46:50:b4:f7:5e:5e: e0:66:a5:34:af:d2:fa:06:b5:7d:33:c7:b2:c2:d2:47:42:45: 4d:ba:79:b9:22:c3:89:b9:30:7e:5b:1e:68:d8:d1:63:6e:7c: 53:d3:06:03:eb:cc:db:49:fd:79:48:95:46:47:58:74:7c:eb: 3c:c5:b4:b3:42:73:49:c4:fb:3e:f0:15:18:9b:f8:3e:16:4d: e4:99:5b:24:24:64:c4:a2:26:4e:ab:8d:a5:c2:bc:c1:8d:84: 4e:81:f8:1c:ed:9a:e9:1d:0b:67:cc:64:11:6c:0d:74:a6:c0: b2:b2:e3:e4:0d:46:76:19:ef:5c:52:21:de:1e:4f:63:d6:09: e3:22:a8:ef:83:ee:fc:c9:1c:4f:58:8e:02:20:42:6c:fa:be: e5:80:4d:d7:f7:7f:d6:8d:74:c6:c7:9e:4c:76:16:c9:2f:03: 4b:31:85:02:15:49:57:3a:83:a1:61:ae:20:6a:95:4b:6a:a6: 97:7d:8c:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjYwMzI0MTUyMzI1WhcNMjYwMzMxMTUyMzI1WjAYMRYwFAYD VQQDEw02OWMyYWM2ZS1jNjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgYP6JWK5GTygPU0UWqMZ6tD3OP6qTuJZEXSyhtar2UC4ez1Py2RGbemMhd/K TSnc/TZzN65II/GHHhHbeEZotvQz9Q0eq8HjzeoURXxtqXzVbK3Swc0xt3aSzN8Z 0pnCPWU63T1Z+9m4mr8ytqiqA2bUZkQ4fmwmCiWqce3pI64IjkqEty2TGhvFZsV7 bLL8il8GcJYEjw1PzgyB31djLZZUz2j8W3INBDTFUQ9YtW/2k+ASyB7KvJP8PPJt +llcyvbCk3LEI8NkMIOmac8nSYcxw4VsaLGUm9EUi100h2wcV0sLYporBxM/1hiv SOYg+dyzFCgMBJCRs1qD5PWFmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMYSnwq2 dTLB6aeCuisnQthRXs8FMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATDSt4RYp9lLcGLNCe817PA927ew58/1ch68w19YPj7Y9pptyVxsT82K8Q6n1 DXnwrd1J34NUr2zjcLDw2Mj9a8OkRlC0915e4GalNK/S+ga1fTPHssLSR0JFTbp5 uSLDibkwflseaNjRY258U9MGA+vM20n9eUiVRkdYdHzrPMW0s0JzScT7PvAVGJv4 PhZN5JlbJCRkxKImTquNpcK8wY2EToH4HO2a6R0LZ8xkEWwNdKbAsrLj5A1Gdhnv XFIh3h5PY9YJ4yKo74Pu/MkcT1iOAiBCbPq+5YBN1/d/1o10xseeTHYWyS8DSzGF AhVJVzqDoWGuIGqVS2qml32MMw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:32 2026 by rpki-client