$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: N+B8sB/xHpJHktNiIiRKc62XFvxwKm3tG1EftVajeWs= Subject key identifier: 1D:17:58:74:E8:4D:97:DC:CD:87:B2:D2:2C:C1:6A:3A:23:4A:E6:1D Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: 018B Signing time: Tue 07 Apr 2026 04:10:19 +0000 Manifest this update: Tue 07 Apr 2026 04:10:19 +0000 Manifest next update: Tue 14 Apr 2026 04:10:19 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: LAgOBpcstQ4ZMOxZUwyR+sSiymKai1Ts7T39MncI4oI=) 2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: x/bgawUh/ekhizQsMMTbBFbp2PQnJdzq20ib+LnBc+A=) 3: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: sZTUTJvgxgWJhUoK93A1p1nM08bMCHTb48BCqzgU1N4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Apr 7 04:10:19 2026 GMT Not After : Apr 14 04:10:19 2026 GMT Subject: CN=69d483ab-e6bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4b:70:a3:1a:c1:8d:2a:f3:80:ed:78:7c:e3: 80:13:7b:2f:58:63:26:f9:be:7a:44:22:70:cc:a5: 1d:e2:38:03:0c:30:c2:4a:1e:ac:c1:fc:74:cd:c8: 96:5c:71:fc:b8:69:96:76:c2:07:49:64:a5:b6:91: c9:1b:d5:5d:03:e5:ed:04:20:76:55:35:60:05:a8: 04:a0:70:1c:98:2f:8d:8e:62:86:9a:2e:b5:d2:af: 5c:54:fb:1b:01:b1:65:9d:50:5f:71:23:24:ba:36: 32:d9:bb:4b:57:1d:74:89:a6:de:23:27:62:e7:43: 19:79:0c:ab:be:d1:c6:b5:c2:c7:a7:43:4c:6a:d0: 0b:0f:0d:32:1b:ff:92:2e:92:21:80:68:e3:ca:1c: f6:22:4a:e0:bc:99:44:e0:fa:bb:c3:40:e2:95:6f: d5:fe:9d:69:29:1b:6b:f7:a7:e6:76:f2:96:86:f4: 0e:6c:81:b4:15:7c:8b:75:fc:a9:6f:26:b0:e2:e6: af:10:77:a2:d9:57:b0:f7:34:3a:96:01:70:3b:d3: b5:10:75:76:56:9f:39:5b:84:23:98:64:89:fc:21: 6e:07:f9:6a:4f:0d:88:96:4e:5a:ac:d4:8b:f3:9d: 2a:c7:82:be:c0:2e:df:49:a8:0c:60:71:12:a8:6e: 57:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:17:58:74:E8:4D:97:DC:CD:87:B2:D2:2C:C1:6A:3A:23:4A:E6:1D X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:6c:ef:95:3e:8d:6d:f5:20:01:67:a5:2e:cd:82:be:b1:d6: 8a:97:96:a3:96:01:b8:e2:62:01:c2:9c:4d:58:07:fa:fb:ce: cd:ab:23:e6:05:e5:10:2f:16:3e:61:29:64:96:de:b0:87:e3: f0:d2:15:0a:0a:c7:17:eb:16:5f:b7:5a:05:e3:5a:9b:f2:2c: c2:60:f3:8a:60:8e:d6:f8:ec:37:f2:74:a3:98:90:b9:56:eb: b7:2d:87:46:da:13:23:e9:30:2a:0b:0e:8a:e3:c0:11:c6:3c: a6:8a:48:dd:3f:4b:b5:47:f6:06:de:1c:20:c3:7d:af:aa:35: 4e:08:80:80:97:d2:cf:da:1d:09:45:22:71:57:f6:2d:d2:df: fd:1e:84:37:22:51:7e:9c:6f:d4:c6:ac:d0:e2:ce:95:c7:2e: 12:eb:10:73:7a:fa:e4:19:a2:80:85:4c:25:9a:4f:52:2c:de: e1:d3:f4:f7:46:8d:9e:60:39:5f:6a:0c:56:54:48:71:47:0f: a6:41:b5:b3:ba:34:e1:ab:52:af:d7:48:7f:2d:aa:d5:3f:cf: fa:cd:72:8d:8b:ab:a0:6f:4d:ea:46:2d:b4:94:8b:88:ef:09: b5:c6:19:11:a2:15:fe:1b:d4:f6:ff:b3:18:93:17:29:11:7e: 5b:e0:97:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjYwNDA3MDQxMDE5WhcNMjYwNDE0MDQxMDE5WjAYMRYwFAYD VQQDEw02OWQ0ODNhYi1lNmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEtwoxrBjSrzgO14fOOAE3svWGMm+b56RCJwzKUd4jgDDDDCSh6swfx0zciW XHH8uGmWdsIHSWSltpHJG9VdA+XtBCB2VTVgBagEoHAcmC+NjmKGmi610q9cVPsb AbFlnVBfcSMkujYy2btLVx10iabeIydi50MZeQyrvtHGtcLHp0NMatALDw0yG/+S LpIhgGjjyhz2IkrgvJlE4Pq7w0DilW/V/p1pKRtr96fmdvKWhvQObIG0FXyLdfyp byaw4uavEHei2Vew9zQ6lgFwO9O1EHV2Vp85W4QjmGSJ/CFuB/lqTw2Ilk5arNSL 850qx4K+wC7fSagMYHESqG5XswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB0XWHTo TZfczYey0izBajojSuYdMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsGzvlT6NbfUgAWelLs2CvrHWipeWo5YBuOJiAcKcTVgH+vvOzasj5gXlEC8W PmEpZJbesIfj8NIVCgrHF+sWX7daBeNam/IswmDzimCO1vjsN/J0o5iQuVbrty2H RtoTI+kwKgsOiuPAEcY8popI3T9LtUf2Bt4cIMN9r6o1TgiAgJfSz9odCUUicVf2 LdLf/R6ENyJRfpxv1Mas0OLOlccuEusQc3r65BmigIVMJZpPUize4dP090aNnmA5 X2oMVlRIcUcPpkG1s7o04atSr9dIfy2q1T/P+s1yjYuroG9N6kYttJSLiO8JtcYZ EaIV/hvU9v+zGJMXKRF+W+CXJQ== -----END CERTIFICATE-----Generated at Thu Apr 9 01:03:52 2026 by rpki-client