$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: Mu+IrzOq8qqr+42jJqs8nEEK9+fru3sjIuJEWGQg+uc= Subject key identifier: FA:A0:A1:75:B5:0B:3C:EE:38:05:6B:EF:42:AD:B6:2B:19:64:CE:0E Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 0133 Signing time: Wed 25 Mar 2026 04:42:35 +0000 Manifest this update: Wed 25 Mar 2026 04:42:34 +0000 Manifest next update: Wed 01 Apr 2026 04:42:34 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: 8NmtmN4yfe41T8IK3SElMCUPFHNdpOe7riYJW1XulYU=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: jP6TZWwRFPY1LK/E2kOV63Xfi0StNXGzAgbQFJN0A6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Mar 25 04:42:34 2026 GMT Not After : Apr 1 04:42:34 2026 GMT Subject: CN=69c367ba-cb50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a8:a9:82:f8:58:f6:85:d8:6c:ad:fe:7f:dc: 22:2f:fc:e5:9c:4c:a1:6d:58:22:ee:9b:c8:c2:07: 6c:2f:f6:3d:1d:22:95:aa:25:0e:9d:b2:2d:f0:b0: d2:bf:6e:81:f6:3f:ae:10:11:b5:06:6c:5e:ff:38: 49:f3:81:dc:6f:6c:3c:4c:c0:f6:87:ab:a7:5a:cd: a7:a0:d0:1b:cc:46:68:50:86:22:cc:91:72:61:2f: c3:54:c5:74:6e:6a:3f:88:3c:a8:ec:eb:f8:41:95: 2c:af:62:78:5f:df:73:22:47:18:1c:37:ba:88:a4: 38:4d:60:0b:88:91:63:a7:48:0f:c4:13:97:34:27: 1e:d3:e8:8d:96:97:49:71:3c:14:36:51:99:19:a4: 46:a2:9b:27:ad:83:d9:05:7e:ed:53:49:01:c3:85: d9:64:c6:23:52:7b:a2:96:03:3c:f0:b6:11:6e:4d: f6:34:be:f6:b8:3c:3b:2d:6d:4b:4d:e6:c0:fa:18: 62:95:e0:12:4d:67:76:3a:fb:32:d7:c6:40:b7:17: 79:4e:8c:74:c7:26:5c:68:5b:c4:a0:37:4c:f2:2f: bd:09:34:14:6d:4b:d4:cf:7e:d5:38:3a:f2:f0:db: f3:ce:06:df:5e:8e:0e:08:ec:54:70:77:17:8a:3d: 6e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:A0:A1:75:B5:0B:3C:EE:38:05:6B:EF:42:AD:B6:2B:19:64:CE:0E X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:1e:39:36:02:c6:37:4e:ce:ce:33:6a:97:18:95:f5:5e:bc: e1:a1:5c:17:aa:92:7d:7a:65:fa:af:e7:30:ca:fb:fa:07:50: 8a:86:e4:cb:ae:c5:b1:ce:73:8b:a7:b7:a7:26:02:ac:93:23: a7:05:10:78:d3:c3:7c:c6:fe:10:99:8c:62:34:43:26:cb:de: 15:3d:e9:2a:92:71:5e:2c:7a:0c:11:fc:94:82:eb:56:18:b9: 0a:6c:af:51:e3:95:a8:13:ad:17:8e:39:9d:0b:5f:4f:76:9b: 3c:60:10:00:24:37:0d:09:af:2f:dd:c5:1e:e7:30:af:ee:9c: f3:d7:ec:df:1f:27:80:49:13:11:59:2f:a0:3c:77:9e:51:d1: 64:7e:92:82:00:6a:5f:87:7b:68:e6:36:0a:7d:e2:e0:3a:d6: e7:d9:c2:e0:84:7e:eb:bc:53:be:31:ff:45:5f:fb:92:9a:35: e3:82:fa:93:c2:b8:e9:2e:30:4a:9c:7a:21:eb:aa:b9:bd:44: 7f:58:6d:86:c8:e2:5c:80:d6:82:6f:82:99:93:bb:1d:28:99: d7:e5:46:4f:d0:dc:6e:42:14:aa:e7:a0:bb:35:c3:4c:c3:68: 15:5e:9c:70:f2:df:55:23:3b:ce:4c:3d:16:86:6e:b9:7d:62: 38:63:5f:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjYwMzI1MDQ0MjM0WhcNMjYwNDAxMDQ0MjM0WjAYMRYwFAYD VQQDEw02OWMzNjdiYS1jYjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKipgvhY9oXYbK3+f9wiL/zlnEyhbVgi7pvIwgdsL/Y9HSKVqiUOnbIt8LDS v26B9j+uEBG1Bmxe/zhJ84Hcb2w8TMD2h6unWs2noNAbzEZoUIYizJFyYS/DVMV0 bmo/iDyo7Ov4QZUsr2J4X99zIkcYHDe6iKQ4TWALiJFjp0gPxBOXNCce0+iNlpdJ cTwUNlGZGaRGopsnrYPZBX7tU0kBw4XZZMYjUnuilgM88LYRbk32NL72uDw7LW1L TebA+hhileASTWd2Ovsy18ZAtxd5Tox0xyZcaFvEoDdM8i+9CTQUbUvUz37VODry 8NvzzgbfXo4OCOxUcHcXij1u1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPqgoXW1 CzzuOAVr70KttisZZM4OMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuh45NgLGN07OzjNqlxiV9V684aFcF6qSfXpl+q/nMMr7+gdQiobky67Fsc5z i6e3pyYCrJMjpwUQeNPDfMb+EJmMYjRDJsveFT3pKpJxXix6DBH8lILrVhi5Cmyv UeOVqBOtF445nQtfT3abPGAQACQ3DQmvL93FHucwr+6c89fs3x8ngEkTEVkvoDx3 nlHRZH6SggBqX4d7aOY2Cn3i4DrW59nC4IR+67xTvjH/RV/7kpo144L6k8K46S4w Spx6Ieuqub1Ef1hthsjiXIDWgm+CmZO7HSiZ1+VGT9DcbkIUqueguzXDTMNoFV6c cPLfVSM7zkw9FoZuuX1iOGNfPQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:24:38 2026 by rpki-client