$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: 59pOjZdW4nVFhSBqCnlI0Slhm8ZXgTrdQ2u3qxN9IGM= Subject key identifier: C2:8B:B8:0B:DF:9D:D3:0F:88:B8:1F:49:C5:0F:57:1A:22:5F:8F:48 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 01CC Signing time: Sun 01 Mar 2026 04:23:35 +0000 Manifest this update: Sun 01 Mar 2026 04:23:35 +0000 Manifest next update: Sun 08 Mar 2026 04:23:35 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: kYz1ixGV/rRv0p09kHcOndiV6tZyLQDkQdMGTwNFuDU=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: BXgvpIKBLGyFXlTbrcn5D97Cd/AVN/R0856bn7qg3E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Mar 1 04:23:35 2026 GMT Not After : Mar 8 04:23:35 2026 GMT Subject: CN=69a3bf47-f265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1f:1d:31:01:4a:06:25:82:d8:cd:bd:f9:19: 2d:dd:26:2f:dc:ff:42:93:85:a1:51:b9:57:ac:0c: a4:d9:8d:c4:39:27:18:e8:58:a6:0f:51:e0:2f:f8: 1d:6c:2f:48:f4:6e:4b:e4:71:e5:03:59:52:02:85: bf:30:29:55:76:86:2a:1c:49:20:bf:91:cd:28:9c: 4c:6a:22:22:2a:7e:53:c0:d3:98:3d:13:8a:5a:1f: 51:6b:3a:0e:6b:63:fb:a7:fb:f8:7e:3e:4f:c8:a5: 50:4c:f9:54:f2:ec:44:9b:dc:be:a2:0a:03:fa:44: f5:fd:9f:25:9d:ab:77:fb:c4:8c:1b:2b:93:47:82: dc:d3:07:49:5f:0b:a4:e0:96:e9:3b:a2:cd:ea:15: be:14:5f:77:54:c1:f7:82:35:2d:27:af:66:cc:8b: ed:6e:30:cc:ad:c4:af:d1:12:ba:3f:4b:a7:62:3a: 1b:e2:88:c9:65:12:73:bf:6b:49:2a:b0:f3:8a:ad: 89:73:1b:40:4d:f3:4b:8f:57:e1:0a:5d:ab:a6:a5: 69:0f:49:15:5d:4c:44:0c:bf:fb:b9:bc:c9:d7:67: 29:a8:1c:00:99:dd:ed:77:b9:0b:0e:e0:7f:c7:af: d7:62:0f:86:a0:f6:34:6c:c5:ab:1c:c7:2a:ab:8b: 5b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8B:B8:0B:DF:9D:D3:0F:88:B8:1F:49:C5:0F:57:1A:22:5F:8F:48 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:17:cc:a8:1d:81:b4:36:72:53:1e:7e:18:6d:45:03:05:5f: ad:ae:11:12:bc:a5:eb:02:1f:2e:ef:b3:ef:b3:68:91:c6:53: cb:e7:c0:4a:c3:8e:05:92:4c:ba:46:70:16:25:c0:bc:e4:bc: e9:5c:a7:d5:99:d5:15:47:ed:38:2d:a4:6e:52:30:70:36:45: 8d:39:81:61:e2:e4:9d:61:5e:df:7c:89:ee:47:f7:57:9e:63: 31:53:6f:59:66:7a:64:4f:80:4e:cd:48:fa:43:8b:fb:c8:75: cd:c8:6d:ed:39:8e:5c:87:d3:b6:02:aa:5a:bb:c7:29:0c:86: 72:68:22:9f:65:3f:e6:a2:d9:c9:b0:a5:d0:2e:81:d8:80:24: db:ad:23:94:b6:48:a2:b2:4e:d8:9f:11:da:2d:b1:c2:6f:c4: 34:fa:53:e4:a0:c5:7d:9f:fd:92:57:a6:ad:d0:21:37:b2:ae: 81:0a:f3:b8:10:a0:80:64:89:8f:f9:6e:55:08:d5:50:e3:05: fc:36:69:21:42:d5:25:98:83:8d:cf:1e:b8:43:ec:d1:41:17: fa:87:a0:16:45:2a:6c:91:14:9d:cc:54:5d:e7:f1:f2:14:dc: b8:f9:30:ae:92:2e:8f:c4:57:fb:c4:09:af:f5:42:cb:38:2a: f1:34:59:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjYwMzAxMDQyMzM1WhcNMjYwMzA4MDQyMzM1WjAYMRYwFAYD VQQDDA02OWEzYmY0Ny1mMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsh8dMQFKBiWC2M29+Rkt3SYv3P9Ck4WhUblXrAyk2Y3EOScY6FimD1HgL/gd bC9I9G5L5HHlA1lSAoW/MClVdoYqHEkgv5HNKJxMaiIiKn5TwNOYPROKWh9RazoO a2P7p/v4fj5PyKVQTPlU8uxEm9y+ogoD+kT1/Z8lnat3+8SMGyuTR4Lc0wdJXwuk 4JbpO6LN6hW+FF93VMH3gjUtJ69mzIvtbjDMrcSv0RK6P0unYjob4ojJZRJzv2tJ KrDziq2JcxtATfNLj1fhCl2rpqVpD0kVXUxEDL/7ubzJ12cpqBwAmd3td7kLDuB/ x6/XYg+GoPY0bMWrHMcqq4tbXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMKLuAvf ndMPiLgfScUPVxoiX49IMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKhfMqB2BtDZyUx5+GG1FAwVfra4REryl6wIfLu+z77NokcZTy+fASsOOBZJM ukZwFiXAvOS86Vyn1ZnVFUftOC2kblIwcDZFjTmBYeLknWFe33yJ7kf3V55jMVNv WWZ6ZE+ATs1I+kOL+8h1zcht7TmOXIfTtgKqWrvHKQyGcmgin2U/5qLZybCl0C6B 2IAk260jlLZIorJO2J8R2i2xwm/ENPpT5KDFfZ/9klemrdAhN7KugQrzuBCggGSJ j/luVQjVUOMF/DZpIULVJZiDjc8euEPs0UEX+oegFkUqbJEUncxUXefx8hTcuPkw rpIuj8RX+8QJr/VCyzgq8TRZ9w== -----END CERTIFICATE-----Generated at Sun Mar 1 20:36:20 2026 by rpki-client