$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: D6EwaXGBop56XKqkHLDi5koc29GNi/Pom11wYCKSDsM= Subject key identifier: 9E:AF:C3:1F:FB:59:AA:BE:08:3A:0E:93:31:A9:5D:16:C7:C3:57:E9 Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 0421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 0419 Signing time: Mon 02 Mar 2026 02:59:48 +0000 Manifest this update: Mon 02 Mar 2026 02:59:45 +0000 Manifest next update: Mon 09 Mar 2026 02:59:45 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: aIsvNH5ljDPPP5U72NC05ArwhYfH+oC8Ced9RZDVizE=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 0n2WFP3OGMlXX26nzPcGgu1jYPaSSjw1YClglsZ8Waw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Mar 2 02:59:45 2026 GMT Not After : Mar 9 02:59:45 2026 GMT Subject: CN=69a4fd24-0b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f8:ec:45:29:16:7f:55:07:72:82:f4:aa:2a: 99:7b:bb:c0:74:c6:d7:b9:a6:ca:27:da:77:53:a0: 34:ad:db:4c:fd:0f:91:1a:a3:e7:a3:1b:3a:a9:13: 56:73:d6:c3:a4:72:c6:ad:72:7a:4c:50:e3:64:1e: 1d:8d:b1:2f:f9:1f:d0:be:0a:30:3b:fe:66:18:79: f0:c7:88:bc:3f:dd:75:57:e8:db:9d:f2:eb:f3:96: 3a:56:9d:fb:11:8e:dc:0e:27:3b:06:da:db:7a:aa: 58:1b:94:ed:9f:0d:c6:a2:8c:4d:7d:10:87:14:05: 78:b7:f1:00:09:84:d6:07:63:00:40:c6:8d:7e:0e: 70:18:af:e1:93:a0:9d:7a:76:d8:ad:45:5e:7f:01: ec:d3:ca:4c:19:72:b4:3b:c6:64:cd:06:88:b6:27: 8a:05:2d:fb:c3:ea:e2:50:7a:bc:03:94:34:e5:e4: fd:16:5f:61:0c:c0:d2:42:f4:0b:7d:77:b0:64:7b: 3a:56:5f:a5:d1:fe:13:de:53:ec:3d:af:81:2e:26: 18:4f:ec:c0:14:3e:29:0e:99:3c:bb:90:2d:c0:20: 60:ed:cd:e9:86:84:a1:58:5d:2a:cc:27:3b:9b:e7: 88:c2:f7:91:dd:01:6b:20:06:4b:ab:65:56:79:81: f5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:AF:C3:1F:FB:59:AA:BE:08:3A:0E:93:31:A9:5D:16:C7:C3:57:E9 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:3b:12:c2:74:7b:15:54:7a:10:59:60:9b:ba:49:21:c5:03: 2a:01:46:20:59:40:ee:56:fe:26:c5:8a:da:f2:37:15:0c:4a: db:fa:96:03:ab:aa:10:27:6b:ab:12:fb:d3:da:94:b3:33:18: 98:b8:60:f0:e8:c1:aa:6b:b2:dd:7b:ad:67:a1:95:43:d7:36: f8:e9:37:07:a6:7f:00:61:6d:1e:37:48:ee:ad:c3:2e:6e:4d: 32:1c:f1:b6:e4:8c:72:7e:8f:05:dd:b8:75:e4:ae:a1:a9:2c: b4:0f:85:bb:81:29:4b:e2:e4:23:90:bc:c1:db:e3:b0:fe:e9: 98:3a:33:9f:f8:a7:e4:a1:7f:31:42:40:54:01:09:2d:aa:52: ed:f7:77:99:66:56:3b:d2:e1:79:70:1a:12:a9:6e:22:44:6b: b1:fe:48:23:fb:2e:d8:78:26:be:c5:43:69:91:0c:a5:9e:6c: 04:f1:f9:2c:43:a8:fc:79:cf:a5:85:de:2e:6d:53:45:22:91: 2b:78:1d:e9:d7:00:88:26:ab:03:8b:0c:44:4b:6b:3f:30:63: 3a:07:bb:94:e6:62:64:42:fd:e4:c1:f6:46:e1:6e:3e:76:54: db:23:28:b0:5c:9d:70:de:fe:12:49:8d:91:60:3c:b3:bd:85: 5a:64:99:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjYwMzAyMDI1OTQ1WhcNMjYwMzA5MDI1OTQ1WjAYMRYwFAYD VQQDEw02OWE0ZmQyNC0wYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/jsRSkWf1UHcoL0qiqZe7vAdMbXuabKJ9p3U6A0rdtM/Q+RGqPnoxs6qRNW c9bDpHLGrXJ6TFDjZB4djbEv+R/QvgowO/5mGHnwx4i8P911V+jbnfLr85Y6Vp37 EY7cDic7BtrbeqpYG5Ttnw3GooxNfRCHFAV4t/EACYTWB2MAQMaNfg5wGK/hk6Cd enbYrUVefwHs08pMGXK0O8ZkzQaItieKBS37w+riUHq8A5Q05eT9Fl9hDMDSQvQL fXewZHs6Vl+l0f4T3lPsPa+BLiYYT+zAFD4pDpk8u5AtwCBg7c3phoShWF0qzCc7 m+eIwveR3QFrIAZLq2VWeYH1dwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ6vwx/7 Waq+CDoOkzGpXRbHw1fpMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAezsSwnR7FVR6EFlgm7pJIcUDKgFGIFlA7lb+JsWK2vI3FQxK2/qWA6uqECdr qxL709qUszMYmLhg8OjBqmuy3XutZ6GVQ9c2+Ok3B6Z/AGFtHjdI7q3DLm5NMhzx tuSMcn6PBd24deSuoakstA+Fu4EpS+LkI5C8wdvjsP7pmDozn/in5KF/MUJAVAEJ LapS7fd3mWZWO9LheXAaEqluIkRrsf5II/su2HgmvsVDaZEMpZ5sBPH5LEOo/HnP pYXeLm1TRSKRK3gd6dcAiCarA4sMREtrPzBjOge7lOZiZEL95MH2RuFuPnZU2yMo sFydcN7+EkmNkWA8s72FWmSZmA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:55 2026 by rpki-client