$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: BheK6o8ZVI5uR8t75O01Gt7LmORB+sC7XU3B+8FtEaA= Subject key identifier: DB:10:BE:80:D6:DE:21:CF:EE:19:DA:7B:A6:25:A2:38:62:06:08:82 Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: 01E0 Signing time: Sun 01 Mar 2026 04:23:47 +0000 Manifest this update: Sun 01 Mar 2026 04:23:47 +0000 Manifest next update: Sun 08 Mar 2026 04:23:47 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: +DVEZLqmpgJnQhlaCt5k9qw8lJ/SFKmYb3n0mC0/Uzk=) 2: 4AB01838FF1D11F0816C691B85EE528E.roa (hash: UQFMWxL2bkV098Pm4LmO7rDQlWciXRa0iUdwXk6/mHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Mar 1 04:23:47 2026 GMT Not After : Mar 8 04:23:47 2026 GMT Subject: CN=69a3bf53-a43b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d3:cd:72:65:91:78:48:8a:c6:b8:c8:59:7e: 1a:12:70:fc:96:78:4c:23:b1:ff:d8:cf:b3:f4:8f: 17:5a:57:77:19:f3:9d:df:f7:db:42:4a:00:e0:93: 31:d6:8d:d1:96:87:72:22:c5:f0:70:19:bf:85:7a: e0:07:38:d3:e3:87:d4:5b:48:67:6a:4a:06:4b:fd: 5f:95:5f:fb:cd:fc:95:0f:ec:0b:d0:54:80:cf:5e: aa:95:a8:aa:bf:0d:90:0a:e6:9f:c5:37:54:42:ec: f6:53:fe:83:4c:bc:7a:51:ff:2a:45:cc:36:09:ac: 12:ed:e0:04:85:d9:f0:d6:0e:9f:ba:fc:c3:72:b2: 00:30:8e:27:69:06:fa:f7:f8:7f:5d:79:9e:34:64: 3b:19:a2:4f:f1:fd:dd:8b:39:fd:e6:21:16:03:6a: 02:86:93:9d:a6:cd:da:52:e0:c3:5d:c9:1b:e5:1a: 7c:fa:c4:7e:46:16:c4:d9:3b:07:9b:10:43:2a:9f: c3:ed:45:66:0a:7e:ec:8a:88:6b:f6:5d:84:14:84: 07:63:ad:94:43:aa:c4:91:39:4d:e7:47:54:78:2b: cd:6e:9e:b7:e3:c5:e2:b2:fc:c3:e4:1c:89:fc:bc: ff:36:38:89:9f:69:b4:d0:1f:32:d0:7f:5a:08:ae: 87:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:10:BE:80:D6:DE:21:CF:EE:19:DA:7B:A6:25:A2:38:62:06:08:82 X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:64:2f:fd:94:b7:40:c6:7e:c2:df:bc:7b:b8:89:6d:64:31: 8e:ae:96:64:63:61:96:80:e2:67:38:1c:1e:f1:c3:c0:c3:9f: f9:d5:28:b0:8d:aa:5c:d4:43:85:5b:08:f1:16:dc:59:2a:00: 3a:66:37:bf:b2:01:55:30:6d:87:13:20:c6:84:13:ed:eb:7b: eb:af:01:0b:3e:31:6c:5b:57:69:2c:21:c4:db:81:aa:72:ec: c7:df:a5:d6:ad:71:91:fb:a2:e3:2b:42:9b:3a:47:76:ee:89: 6b:df:90:6e:d0:e0:5d:a4:e3:e2:03:42:f8:e9:5f:f2:68:5e: 51:11:e1:f0:e0:8c:3a:4d:80:76:39:50:a1:9a:24:73:ee:e5: 34:93:8b:41:f3:8c:9c:4d:90:ec:ec:75:75:f0:32:a0:ae:7c: c1:62:ef:ae:95:e3:ff:47:a4:16:c6:64:e9:50:7f:22:8c:15: 69:f6:c2:ed:8e:2a:d1:22:3b:a7:b8:06:7c:8c:16:b8:f0:be: 83:3f:41:61:e5:c0:1c:18:79:ad:ce:35:6b:1a:f9:b1:cf:89: 93:f4:73:ba:d1:fa:03:68:f4:ab:23:96:60:82:18:fc:30:26: 62:d9:7b:49:bb:f1:b8:51:81:f7:e5:e1:59:55:cd:14:97:31: 27:6a:37:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjYwMzAxMDQyMzQ3WhcNMjYwMzA4MDQyMzQ3WjAYMRYwFAYD VQQDDA02OWEzYmY1My1hNDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9PNcmWReEiKxrjIWX4aEnD8lnhMI7H/2M+z9I8XWld3GfOd3/fbQkoA4JMx 1o3RlodyIsXwcBm/hXrgBzjT44fUW0hnakoGS/1flV/7zfyVD+wL0FSAz16qlaiq vw2QCuafxTdUQuz2U/6DTLx6Uf8qRcw2CawS7eAEhdnw1g6fuvzDcrIAMI4naQb6 9/h/XXmeNGQ7GaJP8f3dizn95iEWA2oChpOdps3aUuDDXckb5Rp8+sR+RhbE2TsH mxBDKp/D7UVmCn7siohr9l2EFIQHY62UQ6rEkTlN50dUeCvNbp6348XisvzD5ByJ /Lz/NjiJn2m00B8y0H9aCK6HLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNsQvoDW 3iHP7hnae6YlojhiBgiCMB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtGQv/ZS3QMZ+wt+8e7iJbWQxjq6WZGNhloDiZzgcHvHDwMOf+dUosI2qXNRD hVsI8RbcWSoAOmY3v7IBVTBthxMgxoQT7et7668BCz4xbFtXaSwhxNuBqnLsx9+l 1q1xkfui4ytCmzpHdu6Ja9+QbtDgXaTj4gNC+Olf8mheURHh8OCMOk2AdjlQoZok c+7lNJOLQfOMnE2Q7Ox1dfAyoK58wWLvrpXj/0ekFsZk6VB/IowVafbC7Y4q0SI7 p7gGfIwWuPC+gz9BYeXAHBh5rc41axr5sc+Jk/RzutH6A2j0qyOWYIIY/DAmYtl7 SbvxuFGB9+XhWVXNFJcxJ2o3mg== -----END CERTIFICATE-----Generated at Sun Mar 1 21:08:38 2026 by rpki-client