$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft File: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft (raw, json) Hash identifier: /IAGu9ZHVDsOSctza3a5J5Gcr1PDR4SBR4oU7LOVBBQ= Subject key identifier: D4:4B:40:00:6C:78:29:42:B4:0C:F8:61:95:A6:CF:37:3D:5E:49:7D Authority key identifier: 92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34 Certificate issuer: /CN=A91FDCFE/serialNumber=92AC4FBE170EA9DF89F0C8318C3CD45F93A52334 Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft Manifest number: 0484 Signing time: Tue 24 Mar 2026 23:44:34 +0000 Manifest this update: Tue 24 Mar 2026 23:44:34 +0000 Manifest next update: Tue 31 Mar 2026 23:44:34 +0000 Files and hashes: 1: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl (hash: zP4RLqpNMKXX5iyInaKED2riIW0hn1DzjUj3KDDr3aY=) 2: 8AB7936E5FF111F092635949C4F9AE02.roa (hash: B+tg3MGzU6RZBeuCdNyRx0cM0Jlgf3lhdx/0R3MqTSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDCFE, serialNumber=92AC4FBE170EA9DF89F0C8318C3CD45F93A52334 Validity Not Before: Mar 24 23:44:34 2026 GMT Not After : Mar 31 23:44:34 2026 GMT Subject: CN=69c321e2-d9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:28:57:26:64:2d:f1:34:23:81:2d:99:7e:11: 80:f1:7a:6d:de:37:91:95:b8:59:a0:58:56:c3:f4: 45:e0:ef:0f:41:97:a7:17:d9:eb:e8:16:ea:f2:80: e2:19:9f:4e:60:59:8c:c8:14:94:d4:84:9b:84:b7: 8b:98:7c:94:0a:c3:6c:58:f7:80:60:1f:56:d0:3b: d6:5e:7c:80:7c:43:94:c1:86:d5:00:87:3e:6e:40: 91:65:b2:20:39:b8:2f:27:86:17:6c:06:d0:d9:f4: 98:51:43:c7:8d:41:53:42:06:dc:56:31:09:e6:67: 33:07:2c:58:1c:0a:5b:03:f5:8a:52:14:34:ce:44: 09:3c:a3:c0:28:f9:39:7b:e1:96:a3:f6:11:2e:61: 7f:e6:01:eb:c4:c4:be:55:24:fb:ed:c9:3f:45:a6: 84:71:e1:0e:fb:ed:8b:9a:44:a6:40:d3:21:44:fb: 94:1a:3d:aa:38:fd:98:7a:eb:b6:02:9a:05:1f:42: 97:53:5f:64:c0:ea:3c:30:88:e7:dd:18:15:6b:18: b9:bb:f0:af:b4:3e:da:9f:f8:2d:6a:16:db:17:f5: 8c:3b:ca:f3:6a:44:9b:c0:04:0f:c0:37:cb:65:2e: 17:e2:45:9e:3b:52:ad:a5:a4:89:a2:8c:4a:d4:8b: e0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:4B:40:00:6C:78:29:42:B4:0C:F8:61:95:A6:CF:37:3D:5E:49:7D X509v3 Authority Key Identifier: keyid:92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:cc:b9:9a:b9:bc:e5:8b:64:9e:17:38:32:69:ea:71:4f:bb: 3d:5e:26:82:91:8e:cf:90:62:83:e4:f6:10:28:c3:a5:88:e0: a2:b5:26:34:8d:fb:2a:47:b2:12:4c:57:89:12:1b:0d:4d:f3: 6a:f1:66:30:64:7e:c9:8d:d1:a8:a7:b7:77:fe:1c:44:70:a6: 5f:3e:e4:25:bb:99:2e:4f:09:59:a7:21:d2:aa:ac:e8:ca:76: 4a:d8:4c:de:74:0a:20:51:b4:6b:e0:6c:d5:de:bb:a3:a8:1f: b1:9d:9a:d9:45:2b:90:00:40:cd:78:e7:50:31:80:43:2c:04: d9:b7:21:c8:24:ea:58:a1:05:91:5c:de:9b:71:df:e0:00:71: f0:f6:59:ef:99:16:ad:42:3e:9a:e3:2c:33:e7:1c:f4:24:ee: 09:cb:18:b8:ae:7e:b7:23:ed:45:93:56:0f:79:b3:5e:ba:f8: 3a:8e:83:07:39:6c:f0:72:e3:00:ff:03:da:54:d4:11:dc:f9: 7b:12:75:a6:89:7c:90:97:e6:98:a9:72:a4:c6:53:73:74:bb: 93:46:68:77:de:a9:e5:67:e1:5e:38:28:e5:e2:22:66:0b:d0: d9:f9:3c:2d:55:90:6d:52:c8:e0:bd:0f:e3:4b:4d:42:44:a9: 41:bd:cf:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDRkUxMTAvBgNVBAUTKDkyQUM0RkJFMTcwRUE5REY4OUYwQzgzMThDM0NENDVG OTNBNTIzMzQwHhcNMjYwMzI0MjM0NDM0WhcNMjYwMzMxMjM0NDM0WjAYMRYwFAYD VQQDEw02OWMzMjFlMi1kOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ChXJmQt8TQjgS2ZfhGA8Xpt3jeRlbhZoFhWw/RF4O8PQZenF9nr6Bbq8oDi GZ9OYFmMyBSU1ISbhLeLmHyUCsNsWPeAYB9W0DvWXnyAfEOUwYbVAIc+bkCRZbIg ObgvJ4YXbAbQ2fSYUUPHjUFTQgbcVjEJ5mczByxYHApbA/WKUhQ0zkQJPKPAKPk5 e+GWo/YRLmF/5gHrxMS+VST77ck/RaaEceEO++2LmkSmQNMhRPuUGj2qOP2Yeuu2 ApoFH0KXU19kwOo8MIjn3RgVaxi5u/CvtD7an/gtahbbF/WMO8rzakSbwAQPwDfL ZS4X4kWeO1KtpaSJooxK1IvgwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNRLQABs eClCtAz4YZWmzzc9Xkl9MB8GA1UdIwQYMBaAFJKsT74XDqnfifDIMYw81F+TpSM0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRENGRS85NjUwNUIyNDgw RTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhjT3FkLUo4TWd4akR6VVg1T2xJ elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2txeFB2aGNPcWQtSjhNZ3hqRHpVWDVPbEl6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RENGRS85NjUwNUIyNDgwRTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhjT3Fk LUo4TWd4akR6VVg1T2xJelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEMy5mrm85Ytknhc4MmnqcU+7PV4mgpGOz5Big+T2ECjDpYjgorUmNI37Kkey EkxXiRIbDU3zavFmMGR+yY3RqKe3d/4cRHCmXz7kJbuZLk8JWach0qqs6Mp2SthM 3nQKIFG0a+Bs1d67o6gfsZ2a2UUrkABAzXjnUDGAQywE2bchyCTqWKEFkVzem3Hf 4ABx8PZZ75kWrUI+muMsM+cc9CTuCcsYuK5+tyPtRZNWD3mzXrr4Oo6DBzls8HLj AP8D2lTUEdz5exJ1pol8kJfmmKlypMZTc3S7k0Zod96p5WfhXjgo5eIiZgvQ2fk8 LVWQbVLI4L0P40tNQkSpQb3PXw== -----END CERTIFICATE-----Generated at Thu Mar 26 12:24:45 2026 by rpki-client