$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: gLawZZbuUM52IBNl8C4d/A82oKmFxWCsDgQWWI54c7A= Subject key identifier: DE:6B:E8:99:CB:9E:07:48:B3:78:1F:61:24:89:7C:B7:5C:90:5B:53 Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: 0131 Signing time: Sun 01 Mar 2026 06:35:27 +0000 Manifest this update: Sun 01 Mar 2026 06:35:26 +0000 Manifest next update: Sun 08 Mar 2026 06:35:26 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: DYsfbqsrJVoJfTrEoIODmLlWEvzOcPDNL2uzjRtBSPw=) 2: AB61CD86D51811F09422126CC4F9AE02.roa (hash: DNYYD1qhZgeoz9EHaAuF+a1hE8ZqrXuBI6M/ZwD1fD8=) 3: AAF88862D51811F0B469126CC4F9AE02.roa (hash: 9rsF5J70Klw5DKV3FQ8sVc1/GZi9hGE+u4uR6zxHJHw=) 4: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: QteYiqxagttieW0gH2HjsmgjmoFz+n9ylxq8eEuUcDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Mar 1 06:35:26 2026 GMT Not After : Mar 8 06:35:26 2026 GMT Subject: CN=69a3de2e-efd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a7:8f:12:df:92:ce:1c:f6:02:66:6a:27:4e: 52:68:a0:b1:0f:af:dc:cd:d4:1c:33:d5:86:2a:71: fa:e4:61:18:c3:40:21:00:b9:1a:db:75:91:84:7a: 77:f5:35:77:ef:c3:82:83:87:f7:26:b5:6e:22:6b: 80:5c:3b:7d:38:31:95:78:09:36:de:21:46:e6:b7: 3c:eb:d5:b6:27:21:d4:7d:ec:ac:86:c8:53:2c:70: ef:6b:3a:6f:b9:30:7e:cf:91:5d:ee:21:66:f0:4f: 61:88:ed:74:8a:47:8f:1b:b9:84:89:df:3a:e4:93: 52:12:23:36:23:0d:6d:05:37:d2:1e:fb:16:3e:76: a6:ef:84:d3:19:f2:d9:99:98:3a:24:99:11:7f:4e: 68:85:6f:3b:35:66:99:c2:fb:b5:a4:fa:c4:a9:af: 77:28:67:75:79:13:ed:7a:27:79:11:8f:f3:59:ac: 21:4a:7d:c8:8d:48:3d:b4:e4:21:e9:9c:a9:22:ec: 4e:97:69:93:ea:99:1e:fd:f9:36:f8:4d:e4:23:10: 64:db:44:d9:bc:4f:b0:64:ed:7e:44:ec:b6:bc:d7: a6:36:a9:bf:ef:fc:05:cc:71:1a:43:82:82:2a:10: 64:43:67:4b:35:73:71:6e:74:dc:44:44:48:15:cd: 08:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6B:E8:99:CB:9E:07:48:B3:78:1F:61:24:89:7C:B7:5C:90:5B:53 X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:47:cb:76:ae:30:dd:8e:02:80:76:b2:9e:4b:5f:11:9d:da: 56:e4:e6:9d:ca:8c:4c:29:15:d5:a1:96:d1:44:bc:1a:e6:09: e6:72:33:e4:1f:3c:df:67:48:b0:67:b9:bf:67:ed:7c:2d:f4: 60:9c:48:4c:b6:52:d4:f4:65:d4:6c:fc:e9:0c:3d:59:c6:c3: 95:67:e6:48:05:7c:85:e8:23:3b:02:99:1f:c8:6d:e2:bf:a5: 61:a8:84:25:8d:69:10:da:41:b7:0c:d9:f5:b7:11:c4:20:aa: 16:57:57:68:61:7d:08:01:ff:e3:e2:62:0a:b7:f6:00:1c:67: ce:81:28:20:e1:b5:19:58:33:c0:cb:13:d0:b1:41:20:56:c4: 70:45:94:36:15:9f:a0:ff:8f:94:0c:2b:48:ca:fe:a2:26:6f: 1e:82:49:d5:57:8c:74:ce:5b:38:6c:d6:8a:8e:47:10:07:3b: 6e:4b:7c:cd:b9:bb:80:75:45:a9:11:07:32:9a:97:72:61:19: a3:34:c3:cc:d5:05:bf:63:6b:cc:fa:a2:6f:f9:00:be:7c:df: 76:d7:7e:b2:9f:af:34:78:6f:68:46:79:e9:d8:73:f4:41:cc: cc:22:c3:0f:ce:54:c6:50:ca:09:19:98:f0:58:b4:32:fd:53: 9e:87:26:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjYwMzAxMDYzNTI2WhcNMjYwMzA4MDYzNTI2WjAYMRYwFAYD VQQDEw02OWEzZGUyZS1lZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6ePEt+Szhz2AmZqJ05SaKCxD6/czdQcM9WGKnH65GEYw0AhALka23WRhHp3 9TV378OCg4f3JrVuImuAXDt9ODGVeAk23iFG5rc869W2JyHUfeyshshTLHDvazpv uTB+z5Fd7iFm8E9hiO10ikePG7mEid865JNSEiM2Iw1tBTfSHvsWPnam74TTGfLZ mZg6JJkRf05ohW87NWaZwvu1pPrEqa93KGd1eRPteid5EY/zWawhSn3IjUg9tOQh 6ZypIuxOl2mT6pke/fk2+E3kIxBk20TZvE+wZO1+ROy2vNemNqm/7/wFzHEaQ4KC KhBkQ2dLNXNxbnTcRERIFc0IYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN5r6JnL ngdIs3gfYSSJfLdckFtTMB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc0fLdq4w3Y4CgHaynktfEZ3aVuTmncqMTCkV1aGW0US8GuYJ5nIz5B8832dI sGe5v2ftfC30YJxITLZS1PRl1Gz86Qw9WcbDlWfmSAV8hegjOwKZH8ht4r+lYaiE JY1pENpBtwzZ9bcRxCCqFldXaGF9CAH/4+JiCrf2ABxnzoEoIOG1GVgzwMsT0LFB IFbEcEWUNhWfoP+PlAwrSMr+oiZvHoJJ1VeMdM5bOGzWio5HEAc7bkt8zbm7gHVF qREHMpqXcmEZozTDzNUFv2NrzPqib/kAvnzfdtd+sp+vNHhvaEZ56dhz9EHMzCLD D85UxlDKCRmY8Fi0Mv1TnocmTA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:14:49 2026 by rpki-client