$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: 8TemlmKVK4RvXnGmrtfKAnA17OB5AiZVFItjFIjEU4s= Subject key identifier: A8:3A:A4:26:07:23:E8:28:71:04:2E:C2:33:5C:D4:87:56:95:44:B1 Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 01CE Signing time: Fri 13 Mar 2026 03:08:02 +0000 Manifest this update: Fri 13 Mar 2026 03:08:01 +0000 Manifest next update: Fri 20 Mar 2026 03:08:01 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: pt+7MY/H5fUBlOON/sd1narfQfP2l7h2xeRpnAYqq4k=) 2: 59962840D01911EE96596B16C4F9AE02.roa (hash: y1hStzic/YZJ1I+8JzXAyWcd1KU9dmVU0MUq2vt+Xgs=) 3: 48B227F4E8D111F089B2D8B5616F56BC.roa (hash: WkyL76qiMF9RZhUkNMb3RMO30+J1U+zYYA70lfRZGcY=) 4: 11A28878915611EE83F61C41C4F9AE02.roa (hash: RMJ3MtQdHxz76LVbzxDYjdiseR/569W+/vsBpB/W5j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 03:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2, serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Mar 13 03:08:01 2026 GMT Not After : Mar 20 03:08:01 2026 GMT Subject: CN=69b37f92-19ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:74:14:af:34:d9:e0:d6:c0:05:ef:de:48:e0: 90:ed:35:f9:ea:39:ab:b2:e5:d7:71:43:8c:bc:8c: 4c:68:1e:75:1f:92:2b:a3:c1:04:46:c9:e7:0e:70: 33:1d:37:eb:36:a2:cb:36:2c:ba:86:10:fa:5b:e9: 16:cb:98:1f:59:1b:94:ea:d5:6b:e8:2e:3e:7f:7f: bd:5c:7d:0f:b5:b4:1b:f3:1b:a2:6f:e9:1b:ae:7e: ff:5b:ed:41:77:a8:c7:d0:a1:b8:96:ec:7f:02:4f: 39:a7:a1:9c:f2:15:fb:c4:e6:f8:5f:8d:43:98:59: 9f:0e:39:4d:7f:09:cd:ad:51:ca:25:4b:47:30:ef: 0f:95:4c:5d:8d:12:55:f3:b1:64:e8:db:32:7c:3f: f7:95:b3:7d:6a:9e:d8:61:50:ef:fa:66:10:5d:84: a6:22:7b:9c:5c:99:14:c8:cb:94:2d:d7:5c:fa:94: 2e:b1:e8:bb:cf:02:4b:84:09:2b:6c:fb:cd:55:71: 21:c9:93:99:34:4f:0b:98:9e:8b:35:ae:0e:b9:a1: 1c:32:12:c8:80:28:d3:7c:9d:df:bc:65:74:74:6a: d7:55:21:74:fd:97:e0:46:46:d0:a0:44:f5:3c:18: 93:84:91:aa:8c:84:cb:7b:b1:03:98:69:28:76:e9: a2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3A:A4:26:07:23:E8:28:71:04:2E:C2:33:5C:D4:87:56:95:44:B1 X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ab:77:66:ca:30:46:02:70:c1:3a:27:4d:72:69:37:ad:7a: 1e:43:0c:ea:ff:8c:70:f9:67:82:85:84:70:95:a0:c7:f5:3b: d3:1d:ea:bc:16:be:d5:f4:b9:f7:20:f1:7e:75:54:02:87:ba: 2a:e9:78:6a:65:79:f4:b4:f5:31:0f:66:b7:45:00:f1:59:2c: ad:f1:d9:fa:40:7f:4a:d2:ba:4d:d5:2b:5d:92:8f:be:97:ff: b4:53:42:9d:f7:79:96:e7:65:2e:0c:07:b7:9f:b4:c5:d2:8a: a8:7d:1b:be:91:a9:62:0b:33:92:aa:b1:d1:36:e9:7f:18:79: e4:bb:b9:16:fd:ab:0f:9e:45:ce:43:83:7a:e0:f4:0e:09:7b: a7:0a:ed:3e:25:ed:a7:08:b0:93:7e:dd:e1:ae:f7:91:fe:1e: 0f:93:eb:c0:e7:6c:d7:41:4c:9a:6d:6d:3b:ff:02:38:d5:e7: b7:34:ce:39:ca:14:93:d5:3a:c9:0b:c1:13:91:81:e5:2c:09: b2:5d:88:27:e2:f2:87:05:c9:ad:13:c3:c7:1f:76:2a:8b:da: 9d:90:d2:0d:c5:c2:7a:92:2e:47:f3:8c:65:9d:59:59:29:c0: b2:95:76:f6:11:e5:b4:ee:9f:28:ea:c2:19:4f:8e:19:bc:b6: 20:b4:09:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjYwMzEzMDMwODAxWhcNMjYwMzIwMDMwODAxWjAYMRYwFAYD VQQDEw02OWIzN2Y5Mi0xOWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXQUrzTZ4NbABe/eSOCQ7TX56jmrsuXXcUOMvIxMaB51H5Iro8EERsnnDnAz HTfrNqLLNiy6hhD6W+kWy5gfWRuU6tVr6C4+f3+9XH0PtbQb8xuib+kbrn7/W+1B d6jH0KG4lux/Ak85p6Gc8hX7xOb4X41DmFmfDjlNfwnNrVHKJUtHMO8PlUxdjRJV 87Fk6NsyfD/3lbN9ap7YYVDv+mYQXYSmInucXJkUyMuULddc+pQusei7zwJLhAkr bPvNVXEhyZOZNE8LmJ6LNa4OuaEcMhLIgCjTfJ3fvGV0dGrXVSF0/ZfgRkbQoET1 PBiThJGqjITLe7EDmGkodumi4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKg6pCYH I+gocQQuwjNc1IdWlUSxMB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDlCMi8wQTZGM0I0MjkxNTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1 dVZNYk9iTnV4MUlkM2pEV00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPqt3ZsowRgJwwTonTXJpN616HkMM6v+McPlngoWEcJWgx/U70x3qvBa+1fS5 9yDxfnVUAoe6Kul4amV59LT1MQ9mt0UA8VksrfHZ+kB/StK6TdUrXZKPvpf/tFNC nfd5ludlLgwHt5+0xdKKqH0bvpGpYgszkqqx0Tbpfxh55Lu5Fv2rD55FzkODeuD0 Dgl7pwrtPiXtpwiwk37d4a73kf4eD5PrwOds10FMmm1tO/8CONXntzTOOcoUk9U6 yQvBE5GB5SwJsl2IJ+LyhwXJrRPDxx92KovanZDSDcXCepIuR/OMZZ1ZWSnAspV2 9hHltO6fKOrCGU+OGby2ILQJHg== -----END CERTIFICATE-----Generated at Fri Mar 13 12:11:36 2026 by rpki-client