$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: iMLsCDb8lybEGRH901snk6Qs0rnwShYLvkEtpwvH/bA= Subject key identifier: 3D:B2:65:30:D7:50:F2:43:CE:76:69:24:05:24:97:2E:1E:C2:DB:EE Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0CD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0CB1 Signing time: Mon 30 Mar 2026 18:29:48 +0000 Manifest this update: Mon 30 Mar 2026 18:29:48 +0000 Manifest next update: Mon 06 Apr 2026 18:29:47 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: V1VTLKjki98GTHbOuR4GiHHCIUDWH4MLP3aSgFEfj9c=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: 0ui+SiQ/c3MRovj/aJJcziARwvWd2KxwKuQ6NFEu4OA=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: qPZmqhPtG1orNWgO21O3wlBwiZAj4EQWTBy6up25D/I=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: OehBxOplI/UOZ/b2d9DDqACV634wRHZsLO+l8ckQwQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Mar 30 18:29:48 2026 GMT Not After : Apr 6 18:29:47 2026 GMT Subject: CN=69cac11c-2ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7e:84:e1:b0:11:79:fd:39:62:4c:8c:1e:b1: 4a:21:95:b2:d6:97:e9:25:74:53:b1:53:c1:4a:3e: 50:24:18:64:48:9a:65:63:79:cd:06:a6:a0:24:04: cd:4b:8d:08:8b:de:d7:a0:93:07:43:43:fe:29:10: 3e:0e:69:71:b4:3b:31:9f:5c:1a:f9:e2:7d:4b:a8: 99:61:37:49:b4:5a:4e:1d:ab:fc:b5:c7:9b:bd:71: 08:4b:2d:f2:bf:e7:1e:9f:c3:01:3c:ab:f8:4d:58: 61:5a:e3:c4:07:50:dd:2e:d5:db:19:3d:0c:87:f2: 95:e1:f4:3e:5e:54:e5:aa:19:8f:db:a0:96:1e:18: 37:b4:4a:32:75:44:92:7d:40:1c:0f:9d:85:fa:ef: c9:b2:1f:8f:c8:91:e2:b5:7f:82:53:0c:28:a1:86: f6:c8:6a:c7:d9:f2:21:ba:34:27:90:f8:40:10:3e: 2a:00:8d:5c:09:2d:41:e1:d4:c9:3f:1c:2b:d5:d1: d9:39:98:00:b8:c3:92:b1:ef:19:3e:ac:a0:8d:76: fd:a4:20:19:bd:25:7d:be:88:0d:c2:01:42:49:a2: 62:e2:d5:c2:12:7f:15:50:b3:f3:29:f7:6d:d2:91: 0d:72:94:70:32:b9:e7:65:35:25:c1:fc:25:8c:1c: 19:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B2:65:30:D7:50:F2:43:CE:76:69:24:05:24:97:2E:1E:C2:DB:EE X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:7b:37:17:5e:e1:25:70:12:8b:aa:e7:aa:8d:06:bf:7c:fe: de:c4:55:26:01:68:71:c5:96:69:95:8c:76:2e:58:7f:7a:2f: b0:63:00:1d:8d:52:6b:5a:3e:04:8b:94:7f:48:48:45:e3:87: fc:01:c4:48:54:67:28:80:62:7b:ff:ab:77:71:89:53:88:ff: 62:15:c2:0e:10:ca:2a:a7:42:1b:6b:cf:b6:95:b4:2e:3d:b0: 5c:06:52:38:4c:32:c7:db:45:d8:6c:42:28:d1:47:d5:ab:d3: 45:6b:3d:48:a4:5c:ea:6b:c9:31:ba:0d:ac:fc:05:6d:a9:44: 56:f7:d4:b5:f2:7e:b6:78:2f:23:84:61:21:d3:fb:7d:4d:b3: a3:e7:08:0c:a2:62:a0:1d:bb:f5:96:a0:fb:56:ca:c1:48:5f: 1f:b7:5f:d7:e7:03:2e:ab:38:89:30:83:78:5a:0c:15:ff:22: 6f:8c:e5:d3:55:19:51:c4:e6:7c:10:70:44:98:91:e3:57:15: b8:71:1b:c8:88:15:2d:f8:d4:91:f2:d7:bb:2d:07:7a:95:4a: d1:9c:0d:8c:b9:b8:0e:08:4d:8f:10:c6:e9:8b:6c:fc:c5:f1: 35:44:cf:c0:3b:ae:b9:fd:e2:ca:a5:e9:d5:85:3d:59:54:19: 9b:6e:4e:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjYwMzMwMTgyOTQ4WhcNMjYwNDA2MTgyOTQ3WjAYMRYwFAYD VQQDEw02OWNhYzExYy0yYWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5X6E4bARef05YkyMHrFKIZWy1pfpJXRTsVPBSj5QJBhkSJplY3nNBqagJATN S40Ii97XoJMHQ0P+KRA+DmlxtDsxn1wa+eJ9S6iZYTdJtFpOHav8tcebvXEISy3y v+cen8MBPKv4TVhhWuPEB1DdLtXbGT0Mh/KV4fQ+XlTlqhmP26CWHhg3tEoydUSS fUAcD52F+u/Jsh+PyJHitX+CUwwooYb2yGrH2fIhujQnkPhAED4qAI1cCS1B4dTJ Pxwr1dHZOZgAuMOSse8ZPqygjXb9pCAZvSV9vogNwgFCSaJi4tXCEn8VULPzKfdt 0pENcpRwMrnnZTUlwfwljBwZPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD2yZTDX UPJDznZpJAUkly4ewtvuMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ3s3F17hJXASi6rnqo0Gv3z+3sRVJgFoccWWaZWMdi5Yf3ovsGMAHY1Sa1o+ BIuUf0hIReOH/AHESFRnKIBie/+rd3GJU4j/YhXCDhDKKqdCG2vPtpW0Lj2wXAZS OEwyx9tF2GxCKNFH1avTRWs9SKRc6mvJMboNrPwFbalEVvfUtfJ+tngvI4RhIdP7 fU2zo+cIDKJioB279Zag+1bKwUhfH7df1+cDLqs4iTCDeFoMFf8ib4zl01UZUcTm fBBwRJiR41cVuHEbyIgVLfjUkfLXuy0HepVK0ZwNjLm4DghNjxDG6Yts/MXxNUTP wDuuuf3iyqXp1YU9WVQZm25OEw== -----END CERTIFICATE-----Generated at Mon Mar 30 22:50:45 2026 by rpki-client