$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: PXPpbIYHmWmw2PB7QtRncMgSLQO+U/4xy7PDC0Lg4GE= Subject key identifier: A6:49:F8:2A:82:CA:7C:AB:E1:BA:45:86:BF:EE:23:E6:CB:EB:2C:C5 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 081D Signing time: Tue 24 Mar 2026 20:47:56 +0000 Manifest this update: Tue 24 Mar 2026 20:47:55 +0000 Manifest next update: Tue 31 Mar 2026 20:47:55 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: MsaOAo3jRlUZeW1FY1VWvZiDmCVgpLEoGVRz7WFk/sE=) 2: E7BAB834B5F511F0B410AD78C4F9AE02.roa (hash: uxSAnvR6R6IbVNUOgDxpWGpdmYbvPquJW1vjjs3knts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2088 (0x828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Mar 24 20:47:55 2026 GMT Not After : Mar 31 20:47:55 2026 GMT Subject: CN=69c2f87c-129e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:19:56:d7:17:be:4a:b0:3b:d9:5a:64:fd:c8: 69:ad:34:73:85:82:9e:f8:30:5b:71:6a:3f:03:ad: 6f:59:d7:81:f4:a8:10:0f:95:53:1d:a5:c3:99:dd: 92:49:bd:68:a9:84:d9:48:64:cd:dd:fb:20:23:1e: 33:0f:bf:e3:ac:1c:d9:b3:87:0a:7e:19:8b:32:47: 90:53:f5:81:97:53:34:cd:d6:b0:22:a4:68:9d:14: 22:ed:31:3a:1c:91:1a:d2:6d:19:8e:cf:41:dc:29: 99:97:ba:3a:49:7f:07:c6:51:11:04:28:62:09:8a: b9:26:85:e7:0f:1d:ac:d3:db:dc:03:fe:95:e9:76: 96:38:06:a2:0c:ff:58:55:3a:c1:ca:d1:64:e3:3c: 0c:e5:df:c1:84:fa:2a:70:fb:5e:63:03:4b:a1:55: 72:fb:0a:ab:f3:8a:39:19:99:5e:8b:ed:c0:bc:72: 2b:83:bd:db:54:34:54:f0:08:e6:24:31:97:40:60: 28:61:8f:84:1a:32:29:dc:7d:bd:3c:5c:61:82:97: b2:09:b3:98:4c:12:d3:ab:76:a7:c4:85:08:90:c1: 77:2f:fa:96:b4:6c:b9:8c:ca:53:22:b5:aa:69:c1: e3:ce:3f:a2:24:24:aa:d8:8a:74:01:d7:55:db:74: 97:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:49:F8:2A:82:CA:7C:AB:E1:BA:45:86:BF:EE:23:E6:CB:EB:2C:C5 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:bc:74:8a:c2:ec:71:01:3a:b6:54:11:18:c0:e9:a5:11:23: a7:96:05:d7:c0:88:aa:43:a8:9c:22:87:3c:29:72:2e:b6:b0: 46:93:5b:b3:30:04:97:b4:9c:84:83:e4:50:bc:99:5d:3a:cb: a3:3b:c6:42:45:95:bf:46:a1:51:fb:c8:24:d2:da:24:cc:2d: 86:f8:95:67:f6:6f:76:3b:d5:59:a9:f5:4c:59:6d:b7:d3:6e: 03:37:a7:e1:cc:38:e2:0e:eb:c6:7b:38:d9:ff:04:e1:a0:d2: 91:25:df:cb:ac:c3:73:df:0e:2e:05:11:66:5a:c8:5e:73:a2: 35:67:9f:96:a6:15:21:85:22:55:cc:c1:0a:cb:c8:c4:8f:28: 90:12:91:0f:0b:5f:c9:01:0b:f4:18:f7:b9:da:ad:ca:2d:36: c2:d9:a9:a2:12:9a:aa:96:e2:0a:dc:d8:17:30:87:5c:e0:ca: 70:01:cc:45:e1:88:d0:fb:39:d9:4e:06:ad:8d:a4:e7:71:b0: 33:55:b8:ae:f7:af:82:c6:01:f3:90:99:56:35:88:41:e2:6d: c9:9c:d8:3a:90:12:12:7a:bc:fc:9f:f0:11:5d:d5:c6:ef:76: 7e:be:d7:09:63:19:64:d2:f3:5e:0c:cd:db:e7:86:d9:04:4d: 27:6c:79:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjYwMzI0MjA0NzU1WhcNMjYwMzMxMjA0NzU1WjAYMRYwFAYD VQQDEw02OWMyZjg3Yy0xMjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhlW1xe+SrA72Vpk/chprTRzhYKe+DBbcWo/A61vWdeB9KgQD5VTHaXDmd2S Sb1oqYTZSGTN3fsgIx4zD7/jrBzZs4cKfhmLMkeQU/WBl1M0zdawIqRonRQi7TE6 HJEa0m0Zjs9B3CmZl7o6SX8HxlERBChiCYq5JoXnDx2s09vcA/6V6XaWOAaiDP9Y VTrBytFk4zwM5d/BhPoqcPteYwNLoVVy+wqr84o5GZlei+3AvHIrg73bVDRU8Ajm JDGXQGAoYY+EGjIp3H29PFxhgpeyCbOYTBLTq3anxIUIkMF3L/qWtGy5jMpTIrWq acHjzj+iJCSq2Ip0AddV23SXLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKZJ+CqC ynyr4bpFhr/uI+bL6yzFMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArrx0isLscQE6tlQRGMDppREjp5YF18CIqkOonCKHPClyLrawRpNbszAEl7Sc hIPkULyZXTrLozvGQkWVv0ahUfvIJNLaJMwthviVZ/ZvdjvVWan1TFltt9NuAzen 4cw44g7rxns42f8E4aDSkSXfy6zDc98OLgURZlrIXnOiNWeflqYVIYUiVczBCsvI xI8okBKRDwtfyQEL9Bj3udqtyi02wtmpohKaqpbiCtzYFzCHXODKcAHMReGI0Ps5 2U4GrY2k53GwM1W4rvevgsYB85CZVjWIQeJtyZzYOpASEnq8/J/wEV3Vxu92fr7X CWMZZNLzXgzN2+eG2QRNJ2x5DQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:33:10 2026 by rpki-client