$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: d78kdP1YtHKpKleBTcsGgzbUtGff1CRz2WrT6A3acKE= Subject key identifier: 66:11:CF:66:DF:44:CA:20:32:56:F1:3D:CF:3E:7D:BC:B0:43:02:4C Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 01B4 Signing time: Sun 29 Mar 2026 03:40:47 +0000 Manifest this update: Sun 29 Mar 2026 03:40:46 +0000 Manifest next update: Sun 05 Apr 2026 03:40:46 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: X8q33VL2RKYThLOZGd8enANZ5AGkJ8bqJmt0F3jNku8=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: Y7CBsuQt9HIpYcN19tybRAYJs+zswt16vqxj5J0HE2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 03:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Mar 29 03:40:46 2026 GMT Not After : Apr 5 03:40:46 2026 GMT Subject: CN=69c89f3f-bef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f0:8c:e7:88:bc:f8:d0:2a:e3:35:3b:dc:66: 85:b1:85:f5:82:30:40:0b:3e:0d:7d:ad:6d:80:97: 51:b9:ec:ce:48:4d:64:db:22:ce:86:98:dd:c3:75: 12:54:47:9e:40:5a:d4:d1:6a:d4:79:1c:9f:05:95: f8:1a:cd:81:e7:00:61:3a:69:ef:90:cf:24:b9:14: 74:e0:2f:5c:c4:c5:7d:a1:38:18:85:a6:72:c7:df: c5:01:33:20:94:8c:a5:51:6b:67:6f:2b:03:51:57: 0a:80:49:e7:0c:9d:0f:d1:eb:d3:37:cc:62:b2:0a: 65:e9:08:e7:08:ec:18:df:de:d4:87:ce:fe:6e:63: 20:34:e6:6f:d9:7b:01:ea:31:4b:c3:36:4b:20:3c: de:c0:66:0c:05:d1:17:1e:0e:be:6b:09:4f:55:9e: 33:dc:d5:76:c3:9d:95:40:a0:ab:aa:42:b2:aa:a4: 5d:b8:cc:44:9d:04:af:79:b4:87:19:e8:2b:28:75: ea:57:44:7e:f5:fd:0f:5d:39:93:ad:dc:c8:f5:18: f0:21:25:e9:7d:44:b5:b2:b6:71:37:8c:b1:12:04: 9c:41:f5:65:8d:ab:5a:82:96:6c:12:14:77:4f:f0: 51:a4:8a:94:08:9c:e5:95:48:1b:78:f9:9b:5f:a2: e9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:11:CF:66:DF:44:CA:20:32:56:F1:3D:CF:3E:7D:BC:B0:43:02:4C X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:d0:43:5e:0f:4b:ce:c1:67:a5:fc:1d:57:cf:1f:2b:03:85: 6c:a9:bb:80:77:e9:94:12:f0:57:2a:bc:ad:ac:3f:d0:b3:06: f3:06:a8:26:7b:33:cf:20:51:f4:0d:d5:42:ca:b5:c2:d1:5c: 01:90:20:aa:5e:f9:97:34:37:2f:f9:90:b3:8f:b0:b5:00:e8: 94:ba:af:7c:ba:ef:03:92:f9:b6:d4:b8:0f:3a:8e:11:50:85: cf:61:a6:d6:cc:b3:67:c6:ca:54:cc:60:4c:44:3b:f4:d4:e8: a2:91:f4:9f:4e:69:ef:85:6d:be:08:0f:0c:fa:13:85:eb:75: 32:49:81:1b:cf:4b:cc:ab:5b:27:df:7c:79:23:c7:80:61:d5: 66:8f:36:34:01:aa:15:7d:b2:83:87:e0:a2:81:2c:2c:d2:52: 41:8f:c9:c1:8b:a0:c8:54:82:62:bf:d6:e2:50:cc:48:09:6a: 83:98:f2:15:66:c1:a5:ae:64:1c:43:9e:fc:1d:cd:38:c3:8c: a3:81:0f:93:b5:96:22:4e:e4:99:e6:d3:8d:ed:46:55:40:19: 2e:12:d6:65:df:af:92:d5:15:2d:a0:0f:ee:78:2d:b4:68:71: 5b:4b:b5:b6:bf:94:c0:b4:57:a6:f9:be:7d:e0:b1:e0:aa:ec: c3:42:0e:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjYwMzI5MDM0MDQ2WhcNMjYwNDA1MDM0MDQ2WjAYMRYwFAYD VQQDEw02OWM4OWYzZi1iZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvCM54i8+NAq4zU73GaFsYX1gjBACz4Nfa1tgJdRuezOSE1k2yLOhpjdw3US VEeeQFrU0WrUeRyfBZX4Gs2B5wBhOmnvkM8kuRR04C9cxMV9oTgYhaZyx9/FATMg lIylUWtnbysDUVcKgEnnDJ0P0evTN8xisgpl6QjnCOwY397Uh87+bmMgNOZv2XsB 6jFLwzZLIDzewGYMBdEXHg6+awlPVZ4z3NV2w52VQKCrqkKyqqRduMxEnQSvebSH GegrKHXqV0R+9f0PXTmTrdzI9RjwISXpfUS1srZxN4yxEgScQfVljatagpZsEhR3 T/BRpIqUCJzllUgbePmbX6LpoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGYRz2bf RMogMlbxPc8+fbywQwJMMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVNBDXg9LzsFnpfwdV88fKwOFbKm7gHfplBLwVyq8raw/0LMG8waoJnszzyBR 9A3VQsq1wtFcAZAgql75lzQ3L/mQs4+wtQDolLqvfLrvA5L5ttS4DzqOEVCFz2Gm 1syzZ8bKVMxgTEQ79NToopH0n05p74VtvggPDPoThet1MkmBG89LzKtbJ998eSPH gGHVZo82NAGqFX2yg4fgooEsLNJSQY/JwYugyFSCYr/W4lDMSAlqg5jyFWbBpa5k HEOe/B3NOMOMo4EPk7WWIk7kmebTje1GVUAZLhLWZd+vktUVLaAP7ngttGhxW0u1 tr+UwLRXpvm+feCx4Krsw0IO/A== -----END CERTIFICATE-----Generated at Mon Mar 30 00:02:05 2026 by rpki-client