$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: rkqDJMClnSHuP9tlsd9aIiI0LXwEa6Th8YwON5RuExo= Subject key identifier: 07:93:4D:DD:FE:A0:3B:C9:91:45:82:C7:41:DA:6E:AE:9A:93:FC:4B Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: 0138 Signing time: Mon 02 Mar 2026 00:59:05 +0000 Manifest this update: Mon 02 Mar 2026 00:59:01 +0000 Manifest next update: Mon 09 Mar 2026 00:59:01 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: MftkPCQx8FGQ4JzzG8tnJukYadWEdeJ5ekOFYTF6h2E=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: AmuO5Mz7Oe3J6VbUWmMhACa7zZVIB8sI5+X4h7QzjH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Mar 2 00:59:01 2026 GMT Not After : Mar 9 00:59:01 2026 GMT Subject: CN=69a4e0d9-e2a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e1:49:79:0c:bd:d0:de:96:21:8e:3e:9b:50: 5d:4c:a3:10:19:b8:5a:4c:27:3d:be:2e:1d:df:ff: b3:10:62:47:64:d1:6e:92:0f:cf:f6:98:54:1a:13: 26:c4:aa:96:e3:93:41:2c:2d:66:10:70:45:47:38: a8:46:0e:2e:63:37:68:1f:47:fd:2c:b7:2f:21:aa: 1a:ae:4d:68:cd:e8:97:c4:02:e4:c9:a4:be:00:5e: 1d:88:9b:0d:c7:4a:41:32:2a:db:5e:e0:e3:55:72: 14:55:48:af:70:d8:03:d2:49:88:9a:a6:dd:fa:1b: ad:eb:30:47:5b:5d:21:aa:bf:b2:d2:34:80:d3:c9: 37:95:de:31:8c:9a:73:20:af:b6:9d:cc:19:a5:ed: 3c:16:0a:ee:6b:f1:42:a2:41:92:f4:c7:a9:2e:66: 98:10:e2:3b:b9:55:89:e8:47:ec:e7:80:19:67:81: 6e:2f:33:3e:4b:6e:69:6f:b6:d5:5d:51:ab:3e:61: 26:fe:73:99:8e:ea:be:b6:ff:db:27:fe:53:b0:33: 5f:8a:df:9a:cc:ba:cd:4f:90:cd:fa:61:55:40:77: ed:c7:f8:6f:42:71:28:a4:aa:c3:06:1b:e6:63:8f: 07:c5:a1:1e:2d:f9:bd:82:c6:09:89:60:1e:fc:87: 25:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:93:4D:DD:FE:A0:3B:C9:91:45:82:C7:41:DA:6E:AE:9A:93:FC:4B X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:99:14:88:36:e0:a4:83:98:da:c9:20:74:76:21:ca:c7:b4: ef:61:ba:50:1b:ce:4f:f6:6d:40:4f:2a:0f:9d:0a:6e:6a:ee: cb:51:a1:47:7d:2f:f0:7b:81:91:f9:c2:a0:61:c8:bb:9d:fd: 1d:17:db:fa:36:53:ba:48:f1:f8:35:89:f2:f4:79:cf:9f:81: a9:0a:ee:67:3d:ea:0b:1d:68:19:cd:f9:e3:13:26:1b:4a:82: 40:a4:34:c1:3e:1d:30:75:7a:af:4d:92:18:d9:f7:33:25:43: 85:b7:4c:e8:ab:39:48:35:75:65:ca:33:ac:f0:42:16:27:41: 53:ec:48:a6:fc:b3:46:e9:51:fa:ba:82:7c:de:d6:78:6d:ac: ba:59:8b:26:0f:4b:97:ec:1c:f7:f3:bf:03:48:25:b6:cf:4f: 2a:cb:0a:d5:0c:21:f9:65:a6:97:3f:56:33:24:14:46:9c:6f: 9d:17:b9:5a:90:b7:9d:de:51:7a:c3:d6:77:48:9d:c3:b0:5f: e8:9c:66:40:7c:84:f9:8a:ca:a0:c0:56:87:3d:43:45:fa:f8: 51:d5:ca:89:2b:c2:bd:c4:6d:57:fb:f9:3d:85:b1:dd:db:db: 34:ac:a5:12:fd:e6:9f:9b:23:20:ec:54:a8:9b:b4:0a:b6:68: 44:37:ac:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjYwMzAyMDA1OTAxWhcNMjYwMzA5MDA1OTAxWjAYMRYwFAYD VQQDEw02OWE0ZTBkOS1lMmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuFJeQy90N6WIY4+m1BdTKMQGbhaTCc9vi4d3/+zEGJHZNFukg/P9phUGhMm xKqW45NBLC1mEHBFRzioRg4uYzdoH0f9LLcvIaoark1ozeiXxALkyaS+AF4diJsN x0pBMirbXuDjVXIUVUivcNgD0kmImqbd+hut6zBHW10hqr+y0jSA08k3ld4xjJpz IK+2ncwZpe08Fgrua/FCokGS9MepLmaYEOI7uVWJ6Efs54AZZ4FuLzM+S25pb7bV XVGrPmEm/nOZjuq+tv/bJ/5TsDNfit+azLrNT5DN+mFVQHftx/hvQnEopKrDBhvm Y48HxaEeLfm9gsYJiWAe/IclhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAeTTd3+ oDvJkUWCx0Habq6ak/xLMB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApJkUiDbgpIOY2skgdHYhyse072G6UBvOT/ZtQE8qD50Kbmruy1GhR30v8HuB kfnCoGHIu539HRfb+jZTukjx+DWJ8vR5z5+BqQruZz3qCx1oGc354xMmG0qCQKQ0 wT4dMHV6r02SGNn3MyVDhbdM6Ks5SDV1ZcozrPBCFidBU+xIpvyzRulR+rqCfN7W eG2sulmLJg9Ll+wc9/O/A0glts9PKssK1Qwh+WWmlz9WMyQURpxvnRe5WpC3nd5R esPWd0idw7Bf6JxmQHyE+YrKoMBWhz1DRfr4UdXKiSvCvcRtV/v5PYWx3dvbNKyl Ev3mn5sjIOxUqJu0CrZoRDesKw== -----END CERTIFICATE-----Generated at Mon Mar 2 09:46:49 2026 by rpki-client