$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.mft File: kbKJkWte97NoabO6gQwkWzZOQ8A.mft (raw, json) Hash identifier: pbqEX7bBZqVu/pZ2og/j0KO1GCiUd7rGmJwp7cTrWjs= Subject key identifier: 50:64:48:DC:42:B1:2D:2B:0A:A3:74:C8:F0:F1:B3:05:86:5C:3E:58 Authority key identifier: 91:B2:89:91:6B:5E:F7:B3:68:69:B3:BA:81:0C:24:5B:36:4E:43:C0 Certificate issuer: /CN=A91B2D56/serialNumber=91B289916B5EF7B36869B3BA810C245B364E43C0 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kbKJkWte97NoabO6gQwkWzZOQ8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.mft Manifest number: 38 Signing time: Sun 01 Mar 2026 09:57:39 +0000 Manifest this update: Sun 01 Mar 2026 09:57:38 +0000 Manifest next update: Sun 08 Mar 2026 09:57:38 +0000 Files and hashes: 1: kbKJkWte97NoabO6gQwkWzZOQ8A.crl (hash: lfir/vn+roMBbY4Bn/bhe2DCf7sU8ojUcPuM5pTnYJs=) 2: 436251B0C52311F0A1118818C4F9AE02.roa (hash: HfEZG4t3DF1Mxy+ybb6Jvu5Sd5lj1h6Aq1UoSU2rExQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.crl rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kbKJkWte97NoabO6gQwkWzZOQ8A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D56, serialNumber=91B289916B5EF7B36869B3BA810C245B364E43C0 Validity Not Before: Mar 1 09:57:38 2026 GMT Not After : Mar 8 09:57:38 2026 GMT Subject: CN=69a40d92-593b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:48:65:4f:8b:9b:96:41:52:0a:18:cc:1b:22: f6:88:8c:a4:df:c4:10:06:3b:6d:d8:8b:3f:f8:a0: 5a:ff:74:2a:b8:2a:45:2f:7a:ae:a5:a7:17:11:90: f7:e2:68:af:82:ba:f7:6b:15:26:9a:d1:ed:45:4e: a6:8c:fc:7e:5f:1d:90:7e:66:1c:d5:ee:87:2d:7d: b2:08:0e:79:77:86:6d:d3:bd:76:41:33:82:93:94: 51:9f:78:9e:3e:b4:5c:43:14:2b:21:a2:91:ff:cb: e0:0d:fd:b7:36:fd:7d:94:3f:44:b9:9a:91:47:c9: e8:7e:92:ab:b5:2c:32:34:fe:f0:da:3f:10:42:13: d1:5a:72:fe:fb:00:3c:6e:40:ff:1d:a1:24:32:03: 45:f0:09:6e:04:ef:f2:94:ff:95:79:04:06:c9:21: a2:b9:e1:04:17:5b:36:ea:ea:17:cf:9f:1d:d8:c1: 26:01:46:d9:a2:0f:6d:10:d8:c4:07:ad:00:9b:34: 30:d6:30:5d:66:36:e6:83:70:db:a6:27:f3:db:6c: 04:e6:94:cf:55:0e:39:d0:3e:3b:a5:2a:cf:91:85: 34:8c:07:9a:00:e2:5a:a7:36:b9:3e:d9:bc:ff:ea: e6:64:e5:ce:6a:4f:e0:c0:f4:06:42:e3:9c:d0:d6: 1e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:64:48:DC:42:B1:2D:2B:0A:A3:74:C8:F0:F1:B3:05:86:5C:3E:58 X509v3 Authority Key Identifier: keyid:91:B2:89:91:6B:5E:F7:B3:68:69:B3:BA:81:0C:24:5B:36:4E:43:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kbKJkWte97NoabO6gQwkWzZOQ8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D56/EDBBDFD8C52211F087C7B217C4F9AE02/kbKJkWte97NoabO6gQwkWzZOQ8A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:3a:fb:28:d9:99:85:77:d7:6b:22:5d:71:8e:8a:6f:7a:31: 47:56:24:a4:ea:06:ad:61:5a:70:16:19:f9:29:17:b1:b4:13: ec:60:7f:b2:bb:b8:f4:90:5f:04:1c:da:e2:2f:b4:40:71:58: 6d:b5:b1:f7:df:b0:b7:3f:86:63:f6:5a:3a:c4:88:4c:ae:7b: 69:d9:bc:fa:28:ba:f1:e7:43:55:87:8e:df:60:c3:84:de:cc: 10:d3:58:73:7a:5b:df:58:2d:53:70:5e:0f:85:40:82:2f:80: 90:c1:f4:10:96:ea:fa:4a:8a:c0:06:fa:f2:a6:c4:f0:91:c9: 23:36:66:a3:18:b0:76:e5:c5:b9:e8:a4:f8:da:4b:c3:ea:a1: bb:d1:8e:cf:42:20:53:8a:70:1b:68:dd:44:1b:7d:14:39:ac: d3:1e:0a:ac:ec:aa:4c:76:5f:8d:9d:79:56:f9:dd:13:e8:97: ac:34:c0:94:d2:db:0b:bb:01:e9:f3:86:00:fe:51:fa:c1:0a: 13:a0:75:15:a4:8b:3e:c6:64:2b:75:06:67:22:ba:eb:e0:3d: 82:12:02:4a:1d:07:8c:17:f9:ab:d4:98:72:b9:9b:33:3c:4e: e7:7e:80:77:f6:bc:fe:c5:5b:d4:b7:2c:df:90:ed:24:0d:23: fb:3e:88:1c -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkQ1NjExMC8GA1UEBRMoOTFCMjg5OTE2QjVFRjdCMzY4NjlCM0JBODEwQzI0NUIz NjRFNDNDMDAeFw0yNjAzMDEwOTU3MzhaFw0yNjAzMDgwOTU3MzhaMBgxFjAUBgNV BAMTDTY5YTQwZDkyLTU5M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiSGVPi5uWQVIKGMwbIvaIjKTfxBAGO23Yiz/4oFr/dCq4KkUveq6lpxcRkPfi aK+CuvdrFSaa0e1FTqaM/H5fHZB+ZhzV7octfbIIDnl3hm3TvXZBM4KTlFGfeJ4+ tFxDFCshopH/y+AN/bc2/X2UP0S5mpFHyeh+kqu1LDI0/vDaPxBCE9Facv77ADxu QP8doSQyA0XwCW4E7/KU/5V5BAbJIaK54QQXWzbq6hfPnx3YwSYBRtmiD20Q2MQH rQCbNDDWMF1mNuaDcNumJ/PbbATmlM9VDjnQPjulKs+RhTSMB5oA4lqnNrk+2bz/ 6uZk5c5qT+DA9AZC45zQ1h5tAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUUGRI3EKx LSsKo3TI8PGzBYZcPlgwHwYDVR0jBBgwFoAUkbKJkWte97NoabO6gQwkWzZOQ8Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRDU2L0VEQkJERkQ4QzUy MjExRjA4N0M3QjIxN0M0RjlBRTAyL2tiS0prV3RlOTdOb2FiTzZnUXdrV3paT1E4 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva2JLSmtXdGU5N05vYWJPNmdRd2tXelpPUThBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RDU2L0VEQkJERkQ4QzUyMjExRjA4N0M3QjIxN0M0RjlBRTAyL2tiS0prV3RlOTdO b2FiTzZnUXdrV3paT1E4QS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCGOvso2ZmFd9drIl1xjopvejFHViSk6gatYVpwFhn5KRextBPsYH+yu7j0kF8E HNriL7RAcVhttbH337C3P4Zj9lo6xIhMrntp2bz6KLrx50NVh47fYMOE3swQ01hz elvfWC1TcF4PhUCCL4CQwfQQlur6SorABvrypsTwkckjNmajGLB25cW56KT42kvD 6qG70Y7PQiBTinAbaN1EG30UOazTHgqs7KpMdl+NnXlW+d0T6JesNMCU0tsLuwHp 84YA/lH6wQoToHUVpIs+xmQrdQZnIrrr4D2CEgJKHQeMF/mr1JhyuZszPE7nfoB3 9rz+xVvUtyzfkO0kDSP7Pogc -----END CERTIFICATE-----Generated at Mon Mar 2 13:41:54 2026 by rpki-client