$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: AW/rc3nH0JgQUBVu8t+cXPOZRkqu51i7ajvmvaQXO9k= Subject key identifier: 2F:25:EA:E6:4F:FC:21:28:FF:0D:4F:61:FA:DB:75:9A:57:C0:EB:FD Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 0131 Signing time: Sat 21 Mar 2026 04:31:04 +0000 Manifest this update: Sat 21 Mar 2026 04:31:03 +0000 Manifest next update: Sat 28 Mar 2026 04:31:03 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: LomISGibUk3Tp3Z8B94+0WUYXaQbxH16opFWkcOnrSI=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: jP6TZWwRFPY1LK/E2kOV63Xfi0StNXGzAgbQFJN0A6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Mar 21 04:31:03 2026 GMT Not After : Mar 28 04:31:03 2026 GMT Subject: CN=69be1f08-6fdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:56:a2:96:0f:f7:b1:9f:67:99:e6:43:1d:d0: 75:bf:c4:81:a3:6d:c5:48:32:0a:ed:b4:b6:bb:94: 25:2c:c9:fb:7b:4d:e4:57:0c:ef:70:48:6e:9d:e4: 62:5a:75:73:0d:64:71:06:72:f5:79:a1:e3:05:15: 84:62:d2:96:80:dd:e3:f8:78:3b:c6:82:b3:26:77: 76:8a:76:d3:3f:79:f8:8b:76:fb:24:39:7f:e8:e2: 55:46:f5:a8:a4:2e:44:a2:82:e8:aa:3f:74:2e:87: 1c:dc:6d:5d:42:f8:dc:75:2a:a0:3e:50:56:7b:5c: a6:f6:2f:15:fc:7a:6d:17:96:cb:26:8e:3b:e0:79: d7:ee:a7:30:e2:7d:3b:7a:8b:62:68:f2:f6:bf:6a: 67:04:d6:05:ce:64:5f:f4:a1:2c:0a:a7:13:fc:91: ae:77:32:35:c6:29:d7:3c:69:49:07:e6:ac:74:19: 2b:50:fd:41:77:fb:e5:13:80:b5:61:3a:fb:a7:e5: 55:e9:bb:5f:78:5b:f7:9f:ac:c0:05:7b:12:3a:82: 1b:a6:1e:2f:f8:16:92:4c:e9:74:62:b2:f8:ea:80: d8:fb:1b:1e:9b:2a:05:03:b3:ff:42:4a:c2:fd:df: 68:c2:b3:cf:4c:4c:e8:08:b6:9c:f3:ed:5a:42:55: d5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:25:EA:E6:4F:FC:21:28:FF:0D:4F:61:FA:DB:75:9A:57:C0:EB:FD X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:32:32:0e:5f:ca:e1:19:55:00:47:a6:c3:12:a0:1d:a1:1b: 13:a2:06:43:89:e5:0f:a9:cd:13:93:86:a4:ec:d7:80:5c:c4: 44:21:95:02:72:b7:b1:6e:ec:e9:63:f5:30:9f:52:d8:40:e7: 3d:09:1d:a1:b2:6d:6a:50:43:8a:67:81:53:05:5a:2e:66:79: 44:90:cb:b1:43:3f:81:cf:25:a8:00:4a:73:52:f2:c7:48:62: fe:5d:e0:bc:92:9c:29:91:84:55:ec:dd:7a:aa:aa:88:c8:fb: 58:c8:69:c5:af:68:59:c8:49:17:44:d7:71:1d:4a:23:90:5c: 54:aa:00:c3:e3:b5:33:a4:f8:05:5c:21:1e:db:0f:ab:06:f3: 31:7a:95:7f:87:95:eb:c5:3e:28:f3:b8:62:2f:54:8c:88:18: 75:9b:6d:4c:ca:6e:0f:8d:86:c1:9e:52:bf:f5:97:17:cf:a2: ab:26:33:a4:40:97:c0:ca:74:6b:27:2a:71:6d:0d:53:cf:8a: 5d:a6:1f:63:c9:70:31:8c:53:7b:c0:5d:2f:d6:3b:3c:a2:14: 9e:d1:53:c4:b6:a8:0d:87:a3:df:35:6c:18:9b:00:83:f9:09: 84:8e:e0:1b:a4:82:2a:2e:9a:70:a4:ba:c7:44:58:b3:37:46: 53:e2:b1:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjYwMzIxMDQzMTAzWhcNMjYwMzI4MDQzMTAzWjAYMRYwFAYD VQQDEw02OWJlMWYwOC02ZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulailg/3sZ9nmeZDHdB1v8SBo23FSDIK7bS2u5QlLMn7e03kVwzvcEhuneRi WnVzDWRxBnL1eaHjBRWEYtKWgN3j+Hg7xoKzJnd2inbTP3n4i3b7JDl/6OJVRvWo pC5EooLoqj90Locc3G1dQvjcdSqgPlBWe1ym9i8V/HptF5bLJo474HnX7qcw4n07 eotiaPL2v2pnBNYFzmRf9KEsCqcT/JGudzI1xinXPGlJB+asdBkrUP1Bd/vlE4C1 YTr7p+VV6btfeFv3n6zABXsSOoIbph4v+BaSTOl0YrL46oDY+xsemyoFA7P/QkrC /d9owrPPTEzoCLac8+1aQlXVCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC8l6uZP /CEo/w1PYfrbdZpXwOv9MB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyjIyDl/K4RlVAEemwxKgHaEbE6IGQ4nlD6nNE5OGpOzXgFzERCGVAnK3sW7s 6WP1MJ9S2EDnPQkdobJtalBDimeBUwVaLmZ5RJDLsUM/gc8lqABKc1Lyx0hi/l3g vJKcKZGEVezdeqqqiMj7WMhpxa9oWchJF0TXcR1KI5BcVKoAw+O1M6T4BVwhHtsP qwbzMXqVf4eV68U+KPO4Yi9UjIgYdZttTMpuD42GwZ5Sv/WXF8+iqyYzpECXwMp0 aycqcW0NU8+KXaYfY8lwMYxTe8BdL9Y7PKIUntFTxLaoDYej3zVsGJsAg/kJhI7g G6SCKi6acKS6x0RYszdGU+Kxrg== -----END CERTIFICATE-----Generated at Sun Mar 22 00:12:10 2026 by rpki-client