$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: TdC7PiivZUqFT9iTBszVSfu3UNmEZkoP29VktsKlwMc= Subject key identifier: 27:E5:4C:C2:B4:BA:6F:48:FD:FD:8F:04:1E:46:1C:55:A3:55:38:83 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 1259 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 124D Signing time: Sat 28 Feb 2026 17:11:06 +0000 Manifest this update: Sat 28 Feb 2026 17:11:05 +0000 Manifest next update: Sat 07 Mar 2026 17:11:05 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: DYg4yAOMLnVkNaEx3JjPLhrOSsO1cjYTCrDC2+6yTU8=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: BFzxkw6Jl6Lyrixu4gWs2v/y+sObxx8rIEhHM4ZupXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:11:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4697 (0x1259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Feb 28 17:11:05 2026 GMT Not After : Mar 7 17:11:05 2026 GMT Subject: CN=69a321aa-0537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9e:91:e3:b6:8b:c6:cb:6f:f8:a4:00:31:c8: f1:15:47:8d:ac:5d:26:16:e3:a2:54:81:3a:8f:14: b9:7c:b4:55:c7:f8:fc:1b:64:48:0a:ba:fa:3a:c4: 41:79:1c:58:0b:40:5b:74:4a:2a:cd:47:c6:30:e1: 5a:68:a5:9a:bd:95:e5:c8:fa:e8:a9:fa:fd:29:bb: d8:ce:94:2a:b8:06:9d:57:3f:78:d5:2a:46:7d:40: ef:4f:8b:6b:c9:90:ee:02:74:70:32:63:a8:cb:3b: 97:f4:ac:f0:a2:32:d4:34:6b:c7:12:4b:68:48:b3: 39:2a:5f:63:dc:9c:67:42:3b:ea:40:95:84:90:b6: 14:0c:8b:f3:3b:dc:cf:72:26:f2:dc:73:74:9a:a8: be:16:6a:11:00:d7:95:b3:f5:73:5e:da:b8:36:21: b3:74:e5:56:9b:56:61:14:11:65:8b:b1:f8:28:9d: fe:b5:14:47:2a:0c:cd:ca:52:d5:36:91:7c:77:f5: 2d:86:5b:ae:90:a0:96:7d:49:c3:b4:98:83:15:7e: c8:8b:2b:43:55:d7:7e:a2:5f:26:3f:e2:52:4b:45: db:9f:37:34:22:a7:8c:78:50:b7:1c:c6:f7:61:32: 71:cc:d7:97:75:9f:1c:cf:6b:f0:a0:9a:c7:70:34: bd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E5:4C:C2:B4:BA:6F:48:FD:FD:8F:04:1E:46:1C:55:A3:55:38:83 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:77:5a:49:8a:95:71:a3:23:1c:0d:7f:65:ad:bc:fa:9e:98: 4b:3c:a9:4c:d2:2e:77:71:02:21:67:52:b2:ff:61:2a:8b:5b: 1b:35:e6:3e:f4:a3:61:c3:dc:94:48:b1:d1:a2:c8:0a:89:76: 46:2d:f4:8e:48:db:09:42:44:d0:d2:da:d6:fc:47:92:be:98: 91:6c:f9:4a:74:25:3e:f2:cb:3b:14:81:a5:81:6c:9f:3e:9a: 9f:20:f2:c1:ab:3d:3b:ec:5e:36:37:2f:6b:2c:e3:0b:07:b0: 8a:10:63:cf:d2:73:36:58:31:4d:80:eb:58:69:3d:ab:b8:a2: 14:dc:93:51:3b:c4:97:92:3b:a4:36:b4:25:2c:b7:e2:b1:32: 66:ac:5b:45:65:b2:9c:0e:d1:a6:5f:b8:bb:e0:61:23:e8:56: 21:fd:79:b6:fa:7b:bc:d2:08:df:01:b9:e2:57:3b:d5:97:7d: 87:9b:62:81:6f:e6:ad:f1:23:0b:97:bd:4b:ec:1a:e6:5e:43: 28:49:66:ca:06:dd:73:f6:99:8d:46:b4:fb:19:78:aa:e2:dd: a7:8a:94:4d:5f:a3:b6:5b:31:1a:c6:2d:b9:b5:30:05:89:0d: e6:50:5f:7d:69:da:d8:a1:c1:fc:b7:3f:de:54:f3:6e:e0:2f: 82:94:f8:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICElkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjYwMjI4MTcxMTA1WhcNMjYwMzA3MTcxMTA1WjAYMRYwFAYD VQQDDA02OWEzMjFhYS0wNTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0p6R47aLxstv+KQAMcjxFUeNrF0mFuOiVIE6jxS5fLRVx/j8G2RICrr6OsRB eRxYC0BbdEoqzUfGMOFaaKWavZXlyProqfr9KbvYzpQquAadVz941SpGfUDvT4tr yZDuAnRwMmOoyzuX9KzwojLUNGvHEktoSLM5Kl9j3JxnQjvqQJWEkLYUDIvzO9zP ciby3HN0mqi+FmoRANeVs/VzXtq4NiGzdOVWm1ZhFBFli7H4KJ3+tRRHKgzNylLV NpF8d/UthluukKCWfUnDtJiDFX7IiytDVdd+ol8mP+JSS0Xbnzc0IqeMeFC3HMb3 YTJxzNeXdZ8cz2vwoJrHcDS9NQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCflTMK0 um9I/f2PBB5GHFWjVTiDMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh3daSYqVcaMjHA1/Za28+p6YSzypTNIud3ECIWdSsv9hKotbGzXmPvSjYcPc lEix0aLICol2Ri30jkjbCUJE0NLa1vxHkr6YkWz5SnQlPvLLOxSBpYFsnz6anyDy was9O+xeNjcvayzjCwewihBjz9JzNlgxTYDrWGk9q7iiFNyTUTvEl5I7pDa0JSy3 4rEyZqxbRWWynA7Rpl+4u+BhI+hWIf15tvp7vNII3wG54lc71Zd9h5tigW/mrfEj C5e9S+wa5l5DKElmygbdc/aZjUa0+xl4quLdp4qUTV+jtlsxGsYtubUwBYkN5lBf fWna2KHB/Lc/3lTzbuAvgpT42g== -----END CERTIFICATE-----Generated at Sun Mar 1 22:48:15 2026 by rpki-client