$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: /rWU9f0/B4y7CtilgOcVrJFDojncGzcdM+bWsnL8gFQ= Subject key identifier: 8E:8B:B7:43:DF:99:E5:62:0A:4F:80:D5:E4:D5:C7:FE:E1:6A:3A:8D Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: F8 Signing time: Wed 25 Mar 2026 05:29:07 +0000 Manifest this update: Wed 25 Mar 2026 05:29:06 +0000 Manifest next update: Wed 01 Apr 2026 05:29:06 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: 9sAv12pIIvM6wlH+rTEgPUwNkD+gxk2a8veAXCuflN8=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: FK/DlPDSG9WEqzNFstF7HVEnaAW4fzuMAjNc2Kwb/bg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Mar 25 05:29:06 2026 GMT Not After : Apr 1 05:29:06 2026 GMT Subject: CN=69c372a2-0f48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fd:1f:27:7a:94:1c:69:b8:8c:a6:18:e9:b9: 22:ef:2f:af:d5:d2:fd:74:b3:3a:44:9e:a6:24:6c: 2a:d1:32:33:7f:cd:82:11:43:2e:b5:7c:ff:c6:09: 61:5c:1f:92:bf:fc:48:84:43:2b:1f:c6:af:ba:eb: 9f:20:9c:06:52:4e:db:c1:80:bd:15:82:af:16:f9: b0:fd:c2:ff:ab:e6:60:c3:de:18:a9:b2:9a:e8:8d: c1:bb:5d:d9:b0:c6:3d:98:05:01:dc:a0:13:5c:78: fa:3d:8b:66:e5:33:71:c4:a5:c3:56:f7:a0:8e:8a: 61:11:f1:90:3e:27:9e:82:1e:fb:c0:b3:09:d7:1e: 5c:c1:c2:a7:4a:57:30:af:fe:c7:bf:e8:79:9b:a3: 98:a7:54:e1:80:53:6f:16:71:cf:a1:e8:79:90:08: d0:a5:03:dd:9c:05:05:df:c7:a9:02:04:dd:ae:24: 14:5f:1e:64:6b:47:2e:8c:bd:a6:a9:00:57:0c:fe: fb:e3:73:e8:f0:ca:c5:77:1e:d3:fc:3b:98:de:30: 1c:d4:99:a5:00:dd:75:0d:61:c9:9c:35:4e:1f:2a: 1f:19:16:b5:ae:93:06:54:fe:ee:14:07:5d:eb:38: a3:25:9a:64:80:1a:1c:db:2f:05:eb:ab:37:7c:1e: 19:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:8B:B7:43:DF:99:E5:62:0A:4F:80:D5:E4:D5:C7:FE:E1:6A:3A:8D X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:3b:de:bf:ad:cd:be:9e:ea:02:6e:e6:c3:e8:4d:50:e1:5a: 28:ce:46:ed:2d:73:cc:fe:59:43:c0:21:e0:e9:6c:00:6c:68: 9a:c7:96:ef:b2:ca:dc:40:d4:01:67:7a:54:8b:39:d4:bf:54: 35:09:1a:f0:3c:72:9a:53:8e:e8:64:fb:be:db:9f:07:a4:b5: ce:01:5a:a0:63:de:1b:4c:e0:a0:b9:23:a0:d8:96:7e:39:ac: 6f:12:8e:17:c4:94:a2:5e:e4:a1:b2:aa:f3:99:bf:5b:22:72: 1b:87:f6:b9:30:81:98:42:15:d8:62:8b:5e:43:4e:61:c7:85: 89:60:ea:9b:a6:b7:16:ae:74:06:19:5e:bc:c1:b9:8f:af:69: f5:83:a4:54:7b:d7:53:e7:57:7e:d6:1a:5c:60:a2:2b:03:df: 07:18:47:9a:e7:40:44:01:3a:1c:24:d6:e5:9b:7d:89:7a:e5: 18:05:9f:f0:2b:26:0e:32:66:d8:81:b6:fa:0f:32:0b:a5:43: 6f:24:37:23:d5:50:8f:05:5e:f3:8f:21:a0:30:fd:51:50:e9: ca:55:62:5c:c2:2e:50:43:07:5d:ca:4d:da:8b:07:70:5f:d0: 59:d3:2c:ba:f0:cf:7f:1c:64:b9:b5:0f:5b:84:11:46:6c:bf: 74:30:1b:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjYwMzI1MDUyOTA2WhcNMjYwNDAxMDUyOTA2WjAYMRYwFAYD VQQDEw02OWMzNzJhMi0wZjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/0fJ3qUHGm4jKYY6bki7y+v1dL9dLM6RJ6mJGwq0TIzf82CEUMutXz/xglh XB+Sv/xIhEMrH8avuuufIJwGUk7bwYC9FYKvFvmw/cL/q+Zgw94YqbKa6I3Bu13Z sMY9mAUB3KATXHj6PYtm5TNxxKXDVvegjophEfGQPieegh77wLMJ1x5cwcKnSlcw r/7Hv+h5m6OYp1ThgFNvFnHPoeh5kAjQpQPdnAUF38epAgTdriQUXx5ka0cujL2m qQBXDP7743Po8MrFdx7T/DuY3jAc1JmlAN11DWHJnDVOHyofGRa1rpMGVP7uFAdd 6zijJZpkgBoc2y8F66s3fB4ZZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI6Lt0Pf meViCk+A1eTVx/7hajqNMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbjvev63Nvp7qAm7mw+hNUOFaKM5G7S1zzP5ZQ8Ah4OlsAGxomseW77LK3EDU AWd6VIs51L9UNQka8DxymlOO6GT7vtufB6S1zgFaoGPeG0zgoLkjoNiWfjmsbxKO F8SUol7kobKq85m/WyJyG4f2uTCBmEIV2GKLXkNOYceFiWDqm6a3Fq50BhlevMG5 j69p9YOkVHvXU+dXftYaXGCiKwPfBxhHmudARAE6HCTW5Zt9iXrlGAWf8CsmDjJm 2IG2+g8yC6VDbyQ3I9VQjwVe848hoDD9UVDpylViXMIuUEMHXcpN2osHcF/QWdMs uvDPfxxkubUPW4QRRmy/dDAb9w== -----END CERTIFICATE-----Generated at Thu Mar 26 11:39:24 2026 by rpki-client