$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: Fpd44gl/Og9xxidyl6MDqu3tm52m+gq/0ZBDeODDj04= Subject key identifier: 3D:F7:D3:29:56:17:15:50:51:CA:58:FC:3F:C1:10:EC:77:17:12:22 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 040D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 03F7 Signing time: Sun 29 Mar 2026 00:23:58 +0000 Manifest this update: Sun 29 Mar 2026 00:23:57 +0000 Manifest next update: Sun 05 Apr 2026 00:23:57 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: 4OcikTDj7gPTPvl7QY4Kpr53CXssSrc83aA9CZ+S+7s=) 2: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: tR+5MDUW4TOJVjv12UKHch7zSjULR/5+u2MVA1fbHas=) 3: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: 9Mz8rV54HoMelrPRHK31KXuQst4w6EzFVX+5Qn5V6r8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 00:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Mar 29 00:23:57 2026 GMT Not After : Apr 5 00:23:57 2026 GMT Subject: CN=69c8711e-e99d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3d:92:0a:ff:61:40:ca:24:9d:f9:d6:aa:11: fe:eb:7a:06:91:6f:bd:8c:4a:7e:ea:34:b5:3e:dc: 61:93:7a:2c:61:7e:8c:46:f7:f6:2f:4b:39:e7:0f: b3:50:0c:b9:d3:0d:b4:a2:71:7d:a0:c5:6e:a0:04: 64:de:ef:6b:9e:e1:85:2b:59:6f:42:a4:ad:88:ea: 21:6c:f3:87:f0:40:4b:48:69:34:b8:2a:c4:f1:e3: 57:f3:2a:92:2d:d0:b6:5c:ac:c9:2d:74:77:43:56: 99:17:3c:ee:3d:96:1e:16:5d:6b:3d:68:4a:e7:3d: f5:a9:a6:bc:24:77:28:37:36:9a:3f:a2:ab:9c:37: 05:a6:4c:5c:c3:16:dc:15:7b:d2:9d:24:ca:15:41: d9:0c:35:32:81:e7:1c:fe:69:a4:ec:2d:9b:36:f4: f8:df:d1:8c:c8:6e:fb:f1:77:f7:ba:59:72:10:54: 27:6b:8f:d9:89:39:41:f9:63:f2:08:36:97:1e:b6: 5a:0e:34:1f:1e:9c:06:3e:41:e4:08:d4:d9:54:47: 08:7f:77:a4:cb:31:fc:2e:a6:ae:81:35:c8:f2:0a: 65:9a:93:b0:34:3a:56:a2:94:9c:db:96:1c:67:7a: 80:24:92:d5:ae:57:ab:72:9b:7d:79:5a:c2:68:77: cd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F7:D3:29:56:17:15:50:51:CA:58:FC:3F:C1:10:EC:77:17:12:22 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:01:d0:ed:6e:80:5d:33:86:d1:79:0b:f0:1b:94:38:ec:6b: 16:80:6a:16:57:7e:e7:a3:4b:a5:87:ae:16:ed:93:38:c0:47: 00:62:96:28:2d:48:ab:78:4b:22:74:6c:f5:3f:07:99:7e:01: ac:33:a9:bb:88:e5:d9:4e:5f:46:d0:88:20:11:6c:37:e5:a0: cd:77:a2:56:f9:9d:7e:b8:5b:0a:49:3c:f9:dd:4c:07:80:56: ea:c8:14:0a:44:dc:3e:e5:cc:56:e5:84:ae:d7:dd:98:5a:93: 31:2c:8b:10:9b:eb:e3:73:31:14:5e:76:35:83:96:94:c1:01: 64:bd:5a:15:d0:85:01:e7:d7:eb:b8:60:36:27:5c:8f:78:6a: 34:24:1d:80:8a:04:72:6f:6c:96:c9:19:b6:f8:15:7f:e0:b2: 04:b0:40:43:fc:e5:9e:4b:3d:d5:89:16:4b:58:7c:63:ce:5f: 3d:2d:68:71:ff:12:bd:e3:c8:4d:aa:c4:73:e2:e2:67:84:96: 47:a8:f4:f3:eb:38:c1:0f:b5:de:a5:b3:96:5d:7b:d4:e2:fb: 4d:18:ba:f7:5f:ff:af:cc:f5:36:53:6e:da:50:2b:9a:63:5b: 6d:27:44:87:f2:03:b4:36:40:6f:0f:5d:9c:24:76:57:21:07: 5f:d2:ea:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjYwMzI5MDAyMzU3WhcNMjYwNDA1MDAyMzU3WjAYMRYwFAYD VQQDEw02OWM4NzExZS1lOTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyj2SCv9hQMoknfnWqhH+63oGkW+9jEp+6jS1Ptxhk3osYX6MRvf2L0s55w+z UAy50w20onF9oMVuoARk3u9rnuGFK1lvQqStiOohbPOH8EBLSGk0uCrE8eNX8yqS LdC2XKzJLXR3Q1aZFzzuPZYeFl1rPWhK5z31qaa8JHcoNzaaP6KrnDcFpkxcwxbc FXvSnSTKFUHZDDUygecc/mmk7C2bNvT439GMyG778Xf3ullyEFQna4/ZiTlB+WPy CDaXHrZaDjQfHpwGPkHkCNTZVEcIf3ekyzH8LqaugTXI8gplmpOwNDpWopSc25Yc Z3qAJJLVrlercpt9eVrCaHfNbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD330ylW FxVQUcpY/D/BEOx3FxIiMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANAHQ7W6AXTOG0XkL8BuUOOxrFoBqFld+56NLpYeuFu2TOMBHAGKWKC1Iq3hL InRs9T8HmX4BrDOpu4jl2U5fRtCIIBFsN+WgzXeiVvmdfrhbCkk8+d1MB4BW6sgU CkTcPuXMVuWErtfdmFqTMSyLEJvr43MxFF52NYOWlMEBZL1aFdCFAefX67hgNidc j3hqNCQdgIoEcm9slskZtvgVf+CyBLBAQ/zlnks91YkWS1h8Y85fPS1ocf8SvePI TarEc+LiZ4SWR6j08+s4wQ+13qWzll171OL7TRi691//r8z1NlNu2lArmmNbbSdE h/IDtDZAbw9dnCR2VyEHX9Lqlw== -----END CERTIFICATE-----Generated at Mon Mar 30 06:59:16 2026 by rpki-client