$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: H9U20UmMg4ALi4Ze8XOv7pelLxqwr0dEhm6cmJxWn5M= Subject key identifier: 68:DE:97:76:11:48:26:EF:E8:03:1E:B5:59:2F:BE:28:2D:1A:1A:5A Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 06C5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 06BE Signing time: Fri 06 Mar 2026 21:45:55 +0000 Manifest this update: Fri 06 Mar 2026 21:45:55 +0000 Manifest next update: Fri 13 Mar 2026 21:45:55 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: nVfSYseRb0TzxXaPLwhfyBlbq+8jCeEaUEO0xp1BO8I=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: l4uYU+uPf8JPateYFt5+JYWdyGHASfl72ELVvU8+Sso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 21:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Mar 6 21:45:55 2026 GMT Not After : Mar 13 21:45:55 2026 GMT Subject: CN=69ab4b13-c561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:1e:9e:a2:aa:c2:c5:92:56:15:4f:21:d9:97: 46:b0:cf:14:49:89:6c:61:41:23:7a:18:f5:92:34: 51:18:14:d8:69:e4:28:25:d6:b6:62:b8:05:47:b0: 50:2f:26:96:e9:f2:f5:cb:99:d2:37:59:92:80:8a: 9f:b7:66:a8:67:ba:a0:16:90:19:31:f4:0c:95:e8: 6a:a3:4c:1b:86:82:31:41:6d:d7:af:ff:36:1b:37: f5:b4:51:1c:73:3e:cc:2c:48:91:05:98:9a:9d:f5: e0:36:15:0d:a1:b4:55:a0:9a:1b:91:52:79:85:3b: a5:a8:6a:be:b1:5d:79:69:9e:05:27:b8:31:51:7c: e1:5f:ac:e9:b3:dd:ac:0d:fd:5b:4b:4a:1e:e9:f3: 64:42:80:fb:1d:69:54:f2:30:84:63:53:d4:4f:37: 32:25:21:f6:c7:1f:70:c9:a2:d8:80:35:d5:26:8f: 6a:e7:e5:41:10:21:a7:5d:30:9d:53:1f:1b:2c:8d: b6:20:13:83:77:56:2c:f3:36:43:2d:9b:ec:38:e0: d9:b1:27:49:72:e3:c4:61:99:19:0a:0f:d4:db:2f: c4:4c:5e:44:26:2d:10:db:38:4f:ea:03:4b:12:61: 54:dd:6a:fc:91:15:62:81:93:98:ee:ac:08:68:dc: 8c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DE:97:76:11:48:26:EF:E8:03:1E:B5:59:2F:BE:28:2D:1A:1A:5A X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ac:ef:e7:7b:13:af:4e:52:3f:4f:89:ff:68:3b:04:2b:dd: 1d:34:9b:8d:d8:24:07:a8:c0:b2:25:7e:5c:b1:a2:78:93:25: dd:4a:50:6c:a9:f5:4a:37:52:4a:c0:86:77:61:31:a2:35:cf: e6:8d:ee:56:b0:03:e5:26:08:14:04:03:e4:9b:1c:8e:f1:e8: 90:9b:0b:fa:d5:18:49:88:77:2e:70:e9:22:da:70:2a:99:01: 75:d8:d2:a3:d3:92:8f:b7:52:e6:b4:1d:54:47:8e:48:79:34: de:32:c9:83:4f:30:fe:4d:4f:cd:3b:57:24:ff:a2:97:cc:8a: e4:78:41:d1:60:f7:49:01:1d:26:16:8f:71:ff:3e:9e:47:66: d7:e1:d8:23:f6:a9:5b:0e:ff:be:a4:7f:be:af:78:42:f4:2c: 45:8f:93:73:70:a9:80:45:72:ac:f5:d6:49:18:4a:e6:2e:f3: 56:78:b4:e6:90:aa:47:4f:a5:7a:e5:af:1d:3a:8d:24:71:1c: 02:fd:e1:0b:94:6f:aa:16:c7:97:3d:cf:b8:9b:d8:20:7b:69: 2d:07:03:65:55:a4:28:30:62:55:46:2c:fa:cd:c6:17:3c:b1: 55:c4:9f:cc:4a:1b:b3:5a:e9:6d:fd:fe:8b:71:45:02:a5:b4: 6a:60:ad:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjYwMzA2MjE0NTU1WhcNMjYwMzEzMjE0NTU1WjAYMRYwFAYD VQQDEw02OWFiNGIxMy1jNTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlx6eoqrCxZJWFU8h2ZdGsM8USYlsYUEjehj1kjRRGBTYaeQoJda2YrgFR7BQ LyaW6fL1y5nSN1mSgIqft2aoZ7qgFpAZMfQMlehqo0wbhoIxQW3Xr/82Gzf1tFEc cz7MLEiRBZianfXgNhUNobRVoJobkVJ5hTulqGq+sV15aZ4FJ7gxUXzhX6zps92s Df1bS0oe6fNkQoD7HWlU8jCEY1PUTzcyJSH2xx9wyaLYgDXVJo9q5+VBECGnXTCd Ux8bLI22IBODd1Ys8zZDLZvsOODZsSdJcuPEYZkZCg/U2y/ETF5EJi0Q2zhP6gNL EmFU3Wr8kRVigZOY7qwIaNyMKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjel3YR SCbv6AMetVkvvigtGhpaMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfKzv53sTr05SP0+J/2g7BCvdHTSbjdgkB6jAsiV+XLGieJMl3UpQbKn1SjdS SsCGd2ExojXP5o3uVrAD5SYIFAQD5JscjvHokJsL+tUYSYh3LnDpItpwKpkBddjS o9OSj7dS5rQdVEeOSHk03jLJg08w/k1PzTtXJP+il8yK5HhB0WD3SQEdJhaPcf8+ nkdm1+HYI/apWw7/vqR/vq94QvQsRY+Tc3CpgEVyrPXWSRhK5i7zVni05pCqR0+l euWvHTqNJHEcAv3hC5RvqhbHlz3PuJvYIHtpLQcDZVWkKDBiVUYs+s3GFzyxVcSf zEobs1rpbf3+i3FFAqW0amCtPg== -----END CERTIFICATE-----Generated at Sat Mar 7 14:34:36 2026 by rpki-client