$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft File: kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft (raw, json) Hash identifier: v54XcgyZbLEwo6Tx6EwvT40vh9NtBJsF7vvdySXAUN4= Subject key identifier: 0B:DA:94:19:A5:64:7E:82:7F:64:12:D9:36:94:7D:0A:1C:FC:9B:77 Authority key identifier: 91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 Certificate issuer: /CN=A91D8157/serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft Manifest number: 0F Signing time: Sat 07 Mar 2026 08:23:13 +0000 Manifest this update: Sat 07 Mar 2026 08:23:12 +0000 Manifest next update: Sat 14 Mar 2026 08:23:12 +0000 Files and hashes: 1: kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl (hash: +fH4OtkZfzB+HB46HKbqCdxcuPa4AEGc3jJ5uiek66M=) 2: 2CA802E618AF11F1B70F0562083D8C67.roa (hash: lFQ6yoWTM2pz67ni9h5bMdscyEIZBnFD06g9IzSasf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8157, serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Validity Not Before: Mar 7 08:23:12 2026 GMT Not After : Mar 14 08:23:12 2026 GMT Subject: CN=69abe070-3ff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:00:b9:44:65:e5:70:d4:dc:55:68:1e:99:cd: fb:bf:d9:bd:27:d9:52:36:ec:63:d0:1a:45:12:44: 3f:f1:f9:46:11:a7:45:c1:0c:74:ec:a2:f9:66:58: 7d:a3:9c:44:70:e8:d3:b0:db:5d:6d:0b:30:d6:6f: 35:d8:b6:7c:2a:61:d4:b5:79:1c:3e:74:a0:b8:80: 26:67:97:44:b6:a5:c5:b2:e3:27:d3:c6:54:c8:e5: 15:08:11:18:76:78:4c:68:3f:95:67:e5:34:a7:0a: da:19:f6:a6:89:c3:c9:85:64:3e:8d:96:da:11:91: b1:c5:ab:9b:9f:66:22:d5:e2:35:48:00:ff:cd:c5: 17:46:ea:d7:71:37:0c:42:4b:76:4c:f0:be:dd:66: a2:b8:4e:fc:e2:1e:65:33:df:f8:7a:95:13:b7:4f: 88:50:7f:ab:74:7f:46:e0:54:52:dc:2f:64:58:1c: 46:0f:cd:27:74:45:19:57:46:87:04:f5:81:59:fa: 97:ce:d9:17:17:27:fd:e9:c0:19:fe:a9:3b:84:52: 6f:d7:b1:7f:ce:e5:81:0a:88:6a:2a:6b:55:68:ef: fe:75:bc:11:2e:90:8d:ab:9b:eb:4c:2e:41:e6:c5: 06:32:b3:a8:4c:fc:47:92:4e:70:07:f8:a7:48:8d: f6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:DA:94:19:A5:64:7E:82:7F:64:12:D9:36:94:7D:0A:1C:FC:9B:77 X509v3 Authority Key Identifier: keyid:91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:32:7e:a3:70:e7:54:fc:ce:fe:23:aa:8a:0d:82:67:5b:50: 4f:3f:e2:f0:31:7e:2b:fb:70:e5:77:62:4d:3f:f7:74:6f:8e: f4:13:c7:9a:39:cc:7f:53:d1:0d:d2:6e:d3:e7:fd:8a:62:b0: b9:98:10:0d:2f:c3:59:fb:81:18:1e:a3:df:ad:24:c8:08:14: f1:a4:42:7e:cc:71:9b:64:ab:c7:d6:00:b9:b6:9a:e2:26:57: 19:f2:fa:a4:2b:f9:b9:af:17:5a:45:ef:5b:b6:e2:0a:29:04: be:4b:dc:2e:f7:6f:41:3b:ba:09:31:7b:c7:a3:d5:f2:0d:24: ed:81:38:76:c4:2d:29:3b:9c:2c:a5:2d:95:a8:59:35:f9:8a: f9:ee:73:5e:15:96:a5:4c:f2:d1:32:8d:a4:61:96:b6:80:e5: 5a:86:37:38:b9:57:e9:46:cd:27:fd:ad:71:a4:47:e0:b1:5f: 79:e3:c9:3c:bc:21:49:1b:b5:1a:32:d8:c7:f9:bc:0b:46:9b: 1c:da:92:77:6c:fc:4c:92:c7:59:b4:57:25:45:b2:7e:fc:26: 80:5e:69:e0:0b:93:29:67:e1:d7:e5:a9:77:9b:78:e4:f1:68: 8b:74:be:2e:37:04:b1:cb:7c:63:1a:40:ea:96:cf:db:be:29: 03:31:fd:8a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE1NzExMC8GA1UEBRMoOTFEQTNBMTc2MzdDRDI5MkNFQTQ2NzBERDEzQTcyRDg2 RUFBMkQ5MTAeFw0yNjAzMDcwODIzMTJaFw0yNjAzMTQwODIzMTJaMBgxFjAUBgNV BAMTDTY5YWJlMDcwLTNmZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3ALlEZeVw1NxVaB6Zzfu/2b0n2VI27GPQGkUSRD/x+UYRp0XBDHTsovlmWH2j nERw6NOw211tCzDWbzXYtnwqYdS1eRw+dKC4gCZnl0S2pcWy4yfTxlTI5RUIERh2 eExoP5Vn5TSnCtoZ9qaJw8mFZD6NltoRkbHFq5ufZiLV4jVIAP/NxRdG6tdxNwxC S3ZM8L7dZqK4TvziHmUz3/h6lRO3T4hQf6t0f0bgVFLcL2RYHEYPzSd0RRlXRocE 9YFZ+pfO2RcXJ/3pwBn+qTuEUm/XsX/O5YEKiGoqa1Vo7/51vBEukI2rm+tMLkHm xQYys6hM/EeSTnAH+KdIjfb1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUC9qUGaVk foJ/ZBLZNpR9Chz8m3cwHwYDVR0jBBgwFoAUkdo6F2N80pLOpGcN0Tpy2G6qLZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTU3LzI1MDgzOEFFMTE0 MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBMT3BHY04wVHB5Mkc2cUxa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2RvNkYyTjgwcExPcEdjTjBUcHkyRzZxTFpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MTU3LzI1MDgzOEFFMTE0MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBM T3BHY04wVHB5Mkc2cUxaRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBpMn6jcOdU/M7+I6qKDYJnW1BPP+LwMX4r+3Dld2JNP/d0b470E8eaOcx/U9EN 0m7T5/2KYrC5mBANL8NZ+4EYHqPfrSTICBTxpEJ+zHGbZKvH1gC5tpriJlcZ8vqk K/m5rxdaRe9btuIKKQS+S9wu929BO7oJMXvHo9XyDSTtgTh2xC0pO5wspS2VqFk1 +Yr57nNeFZalTPLRMo2kYZa2gOVahjc4uVfpRs0n/a1xpEfgsV9548k8vCFJG7Ua MtjH+bwLRpsc2pJ3bPxMksdZtFclRbJ+/CaAXmngC5MpZ+HX5al3m3jk8WiLdL4u NwSxy3xjGkDqls/bvikDMf2K -----END CERTIFICATE-----Generated at Sat Mar 7 14:39:30 2026 by rpki-client