$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: pjNIIIBV7U3ebYWDbggidKLgSGD/7VqMZ7+Qu/u+fcE= Subject key identifier: 22:63:95:02:67:05:C3:FF:E1:07:F9:C0:C5:F0:41:9C:9F:06:0F:1D Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: C3 Signing time: Wed 25 Mar 2026 06:14:20 +0000 Manifest this update: Wed 25 Mar 2026 06:14:19 +0000 Manifest next update: Wed 01 Apr 2026 06:14:19 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: EVHoUoieBtuKQHKPTN4kjqOY2uhxrVHI5FPxFEq7uTc=) 2: DA700744185511F09304D972C4F9AE02.roa (hash: esj/3vUrMHPqtCAfRwLH6nR9IZBIZp4+dFrygvFkia0=) 3: E658E72CB4A611F08CEAB576C4F9AE02.roa (hash: GxZwvDHfJBJSbzbkszrsfMF/m9l39R3m3cmVTDMbpig=) 4: B754B304107A11F19C5931212E3D8C67.roa (hash: X42bQpbtp0QuU2Rc7u3h3Q36DtuhWPyQ8ylGJu3nBJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Mar 25 06:14:19 2026 GMT Not After : Apr 1 06:14:19 2026 GMT Subject: CN=69c37d3c-f271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:de:71:5b:2a:80:aa:56:9b:29:8b:07:8a:57: cf:fa:ef:77:9c:6f:89:e7:cd:7e:6d:53:45:cc:44: ec:46:d2:8a:6b:82:1a:ac:5c:12:63:fb:5b:b4:17: 3a:9a:10:ac:9f:c3:97:28:d8:db:0f:80:24:86:20: c5:8a:2f:78:ab:47:75:3d:08:4b:17:e1:69:50:00: 41:ac:f5:42:27:d3:f6:f9:17:85:6a:80:76:14:eb: 31:81:07:0b:60:f6:d3:76:9f:7f:6a:67:1a:e9:d3: ad:3b:ae:f8:20:9a:00:10:ca:f7:84:31:59:7f:fe: 3d:e1:48:e3:4e:4f:1f:6a:f8:20:35:cb:56:54:9c: 78:7e:47:8a:76:d6:f7:fb:58:bd:92:b4:62:0c:8e: ec:b7:18:95:74:df:4f:35:55:ce:42:19:0d:02:89: 2a:1e:19:eb:2a:57:b0:f6:4d:29:eb:90:ab:ea:c7: 29:48:2a:7a:1e:16:18:0f:fc:70:63:02:6c:45:cb: 4f:b7:1e:34:b2:2f:01:1f:03:65:de:d8:bb:16:ff: 1d:cd:7c:c6:0c:f4:ba:75:79:27:a7:89:2a:cd:bd: 56:94:7c:ee:b0:17:6f:f6:3d:f2:73:5f:ce:8b:57: 92:b4:1d:f2:f9:60:bd:95:03:6e:f7:60:bc:52:df: 5c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:63:95:02:67:05:C3:FF:E1:07:F9:C0:C5:F0:41:9C:9F:06:0F:1D X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:0c:1d:b4:22:15:6e:ad:66:ab:5c:50:55:8a:e7:95:df:1a: fe:80:ad:4d:5a:92:49:a7:fa:a6:f8:42:b2:19:7b:13:0e:bb: 9c:42:e7:5e:14:4f:f0:bf:c7:e7:54:ce:8d:1c:c2:29:e0:46: 35:ab:e0:24:2c:2e:3d:0e:0b:46:51:9b:61:9b:de:30:ec:16: 03:5d:ff:cc:23:f8:38:21:ad:bd:ba:d9:79:b6:0e:fb:54:c5: c8:9c:3d:c0:5e:b3:d2:93:cf:31:d9:cd:49:9a:23:8b:fc:0e: 4e:fb:0f:d4:57:c3:a0:0f:5f:31:18:18:16:ed:c0:d0:6f:e3: 49:77:8a:db:5f:35:74:df:62:e3:95:cc:1a:6f:7a:4b:3f:6f: d7:66:6f:ee:3e:0b:13:36:ad:b3:2f:a1:48:54:2b:eb:7d:b3: 8e:f3:f3:01:46:51:6d:27:35:8f:44:ab:4e:29:f2:d2:f0:26: c6:47:39:b9:fc:8f:f1:10:47:7a:d7:b8:8b:2e:ca:48:56:dc: 25:fb:96:14:b5:d8:3a:d6:35:1b:af:84:bc:22:ef:5f:e8:e6: 16:e7:50:5f:bd:f9:10:59:fb:27:42:e3:ca:43:d8:7e:5a:97: 9e:a1:c1:1d:f3:ea:0c:76:c8:5e:82:30:9e:36:a4:9a:74:6c: a1:29:39:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QjkxMTAvBgNVBAUTKDkxMTc2RDE2OUM0MkYwM0Q5NTI4MkJCQkEyMDRDNEU0 NEQzMUVEMDkwHhcNMjYwMzI1MDYxNDE5WhcNMjYwNDAxMDYxNDE5WjAYMRYwFAYD VQQDEw02OWMzN2QzYy1mMjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh95xWyqAqlabKYsHilfP+u93nG+J581+bVNFzETsRtKKa4IarFwSY/tbtBc6 mhCsn8OXKNjbD4AkhiDFii94q0d1PQhLF+FpUABBrPVCJ9P2+ReFaoB2FOsxgQcL YPbTdp9/amca6dOtO674IJoAEMr3hDFZf/494UjjTk8favggNctWVJx4fkeKdtb3 +1i9krRiDI7stxiVdN9PNVXOQhkNAokqHhnrKlew9k0p65Cr6scpSCp6HhYYD/xw YwJsRctPtx40si8BHwNl3ti7Fv8dzXzGDPS6dXknp4kqzb1WlHzusBdv9j3yc1/O i1eStB3y+WC9lQNu92C8Ut9cWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCJjlQJn BcP/4Qf5wMXwQZyfBg8dMB8GA1UdIwQYMBaAFJEXbRacQvA9lSgru6IExORNMe0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVCOS81MjAyRDAyODBE RjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhEMlZLQ3U3b2dURTVFMHg3 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVCOS81MjAyRDAyODBERjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhE MlZLQ3U3b2dURTVFMHg3UWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQAwdtCIVbq1mq1xQVYrnld8a/oCtTVqSSaf6pvhCshl7Ew67nELnXhRP8L/H 51TOjRzCKeBGNavgJCwuPQ4LRlGbYZveMOwWA13/zCP4OCGtvbrZebYO+1TFyJw9 wF6z0pPPMdnNSZoji/wOTvsP1FfDoA9fMRgYFu3A0G/jSXeK2181dN9i45XMGm96 Sz9v12Zv7j4LEzatsy+hSFQr632zjvPzAUZRbSc1j0SrTiny0vAmxkc5ufyP8RBH ete4iy7KSFbcJfuWFLXYOtY1G6+EvCLvX+jmFudQX735EFn7J0LjykPYflqXnqHB HfPqDHbIXoIwnjakmnRsoSk5Ag== -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:10 2026 by rpki-client