$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft File: K7fm9k6JPZEwSosliGA1DWdQVK0.mft (raw, json) Hash identifier: VQ5UnvPeB2QnVLoc4xGL8ts/6cCaYPf+en768IjuhfM= Subject key identifier: 29:F4:E6:6B:C9:26:F6:54:E3:37:0B:D9:D2:F7:6D:CC:19:A9:B1:9C Authority key identifier: 2B:B7:E6:F6:4E:89:3D:91:30:4A:8B:25:88:60:35:0D:67:50:54:AD Certificate issuer: /CN=A91F08D9/serialNumber=2BB7E6F64E893D91304A8B258860350D675054AD Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft Manifest number: 71 Signing time: Wed 25 Mar 2026 07:04:32 +0000 Manifest this update: Wed 25 Mar 2026 07:04:31 +0000 Manifest next update: Wed 01 Apr 2026 07:04:31 +0000 Files and hashes: 1: K7fm9k6JPZEwSosliGA1DWdQVK0.crl (hash: K4shG1POQfHoVCJNerRDaCABl4KZaObzZBiVmU46K+g=) 2: 87B1CF3484AB11F08EC73477C4F9AE02.roa (hash: wj3CysiZUbw6+gol3WXIUNIf6f/KPaKD87i7kYiUu3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.crl rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08D9, serialNumber=2BB7E6F64E893D91304A8B258860350D675054AD Validity Not Before: Mar 25 07:04:31 2026 GMT Not After : Apr 1 07:04:31 2026 GMT Subject: CN=69c388ff-bf6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5f:e7:f4:01:ab:2d:70:86:09:e2:c6:51:cc: 20:a5:49:df:8f:40:44:9b:ec:03:13:66:2b:6c:71: b7:e4:ae:5d:a5:d2:82:64:58:ca:a7:c9:f3:c9:18: ff:45:28:86:28:4a:da:cd:5e:ef:02:65:06:0c:f6: ac:25:37:3b:76:14:74:cc:b9:d2:f0:5f:78:e9:a9: 32:a7:06:6f:b9:57:89:e1:51:d5:68:8c:7d:f1:30: c3:3a:27:e7:bc:b7:c0:03:f8:f7:72:09:9a:6b:f3: 8c:f2:82:5d:c9:02:b5:be:ab:21:84:e0:ed:a0:f8: 75:83:4d:67:f7:d5:68:56:ef:5e:4c:f5:17:af:51: d3:ee:4d:c0:ac:39:be:27:01:c6:67:10:f3:e3:fc: 04:60:9d:eb:d7:25:63:ad:fe:a6:ac:56:b3:18:c1: 9a:76:bf:25:bc:38:09:a4:84:c4:69:b5:9f:0d:55: 90:07:8d:4a:83:c1:c6:bc:fe:ed:6e:ba:c0:22:89: 6f:ac:01:43:ab:e1:e0:ca:cb:45:49:fe:31:cc:0f: d6:95:1c:bb:fc:26:dd:87:2d:db:10:fc:f2:1b:8f: d4:0b:f6:25:53:f0:c0:46:fa:d1:f6:a0:b0:33:6c: e5:c8:30:c6:51:89:ca:e5:53:6b:e2:19:aa:00:f3: 69:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F4:E6:6B:C9:26:F6:54:E3:37:0B:D9:D2:F7:6D:CC:19:A9:B1:9C X509v3 Authority Key Identifier: keyid:2B:B7:E6:F6:4E:89:3D:91:30:4A:8B:25:88:60:35:0D:67:50:54:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:7d:cf:ba:72:3f:d9:f7:51:e4:04:c8:2f:7f:e8:4f:2f:0c: d4:19:bc:f7:09:38:e2:e3:fb:24:80:6b:d9:73:de:78:8b:14: af:70:3b:80:e9:99:3e:6d:38:27:fc:3f:c6:94:94:e5:f5:71: 7f:39:ad:13:51:e5:01:2a:f5:9c:2f:52:73:d4:5b:09:7b:a6: a7:e2:9d:7b:52:ec:db:03:e0:d3:42:33:b3:cb:4b:4e:77:7e: e6:44:ef:3f:32:1d:d5:57:58:9e:ce:0b:8b:4b:d6:fe:0d:3d: 96:5d:00:05:f3:64:c6:b3:5e:d6:e7:48:1c:97:1f:6c:b1:e0: da:7f:14:a2:2f:95:3b:49:51:a6:a5:12:47:32:be:fe:33:93: 65:a0:83:de:d1:54:cd:f3:b0:5b:bd:9b:c3:17:5d:fc:51:d8: 4f:00:0a:7f:54:78:56:fa:ea:ca:07:2b:c0:ef:fe:1e:58:3c: 62:43:c9:47:6a:59:a1:35:72:52:7b:b9:dd:58:66:c8:5e:28: d5:5a:a4:96:17:ed:38:cb:8f:15:c0:84:eb:18:fd:b5:b8:f5: e0:57:f1:04:29:2b:b7:76:01:d4:d8:b4:e3:77:8e:cb:e7:6d: e6:82:bf:17:7d:8f:3c:94:25:99:75:fd:95:9e:3a:e0:e9:89: 33:93:a8:77 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhEOTExMC8GA1UEBRMoMkJCN0U2RjY0RTg5M0Q5MTMwNEE4QjI1ODg2MDM1MEQ2 NzUwNTRBRDAeFw0yNjAzMjUwNzA0MzFaFw0yNjA0MDEwNzA0MzFaMBgxFjAUBgNV BAMTDTY5YzM4OGZmLWJmNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZX+f0AastcIYJ4sZRzCClSd+PQESb7AMTZitscbfkrl2l0oJkWMqnyfPJGP9F KIYoStrNXu8CZQYM9qwlNzt2FHTMudLwX3jpqTKnBm+5V4nhUdVojH3xMMM6J+e8 t8AD+PdyCZpr84zygl3JArW+qyGE4O2g+HWDTWf31WhW715M9RevUdPuTcCsOb4n AcZnEPPj/ARgnevXJWOt/qasVrMYwZp2vyW8OAmkhMRptZ8NVZAHjUqDwca8/u1u usAiiW+sAUOr4eDKy0VJ/jHMD9aVHLv8Jt2HLdsQ/PIbj9QL9iVT8MBG+tH2oLAz bOXIMMZRicrlU2viGaoA82kLAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUKfTma8km 9lTjNwvZ0vdtzBmpsZwwHwYDVR0jBBgwFoAUK7fm9k6JPZEwSosliGA1DWdQVK0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEQ5LzBGRDZBQjUyODE3 MTExRjA5QjEwQUU1NkM0RjlBRTAyL0s3Zm05azZKUFpFd1Nvc2xpR0ExRFdkUVZL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzdmbTlrNkpQWkV3U29zbGlHQTFEV2RRVkswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw OEQ5LzBGRDZBQjUyODE3MTExRjA5QjEwQUU1NkM0RjlBRTAyL0s3Zm05azZKUFpF d1Nvc2xpR0ExRFdkUVZLMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQApfc+6cj/Z91HkBMgvf+hPLwzUGbz3CTji4/skgGvZc954ixSvcDuA6Zk+bTgn /D/GlJTl9XF/Oa0TUeUBKvWcL1Jz1FsJe6an4p17UuzbA+DTQjOzy0tOd37mRO8/ Mh3VV1iezguLS9b+DT2WXQAF82TGs17W50gclx9sseDafxSiL5U7SVGmpRJHMr7+ M5NloIPe0VTN87BbvZvDF138UdhPAAp/VHhW+urKByvA7/4eWDxiQ8lHalmhNXJS e7ndWGbIXijVWqSWF+04y48VwITrGP21uPXgV/EEKSu3dgHU2LTjd47L523mgr8X fY88lCWZdf2Vnjrg6Ykzk6h3 -----END CERTIFICATE-----Generated at Thu Mar 26 18:55:35 2026 by rpki-client