$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: vRo9Kb62LTDQi8DMiqjtkdx5Yxdd3SL1ZcsSWONIQyQ= Subject key identifier: 65:1B:00:D2:D7:74:8A:00:6E:8A:A8:B9:09:24:FA:5F:F7:78:29:CB Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 0117 Signing time: Sun 01 Mar 2026 06:54:21 +0000 Manifest this update: Sun 01 Mar 2026 06:54:21 +0000 Manifest next update: Sun 08 Mar 2026 06:54:21 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: h7yKlPcXScQFtZnNRgEoOZS7Y6oxMlFJdmNRDFGBhhc=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: EkH7NGdtLzD6VnZqtvPSOcqvmB0pZ+aCYQgXfVmLWFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Mar 1 06:54:21 2026 GMT Not After : Mar 8 06:54:21 2026 GMT Subject: CN=69a3e29d-b2e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:19:b7:d7:4e:d6:31:0c:7f:85:55:a9:93:b6: 0a:22:7e:15:15:1b:80:88:7b:0c:d7:4f:a3:80:63: 06:fb:d5:30:64:e3:53:c1:27:a4:1f:01:9c:f0:c5: 68:3b:b1:01:45:da:e5:34:58:cc:a7:71:a6:1a:46: 10:74:d7:53:d3:7e:ac:15:18:6a:c5:6f:60:f3:a4: d2:13:de:7f:e4:14:bc:62:11:06:cd:89:45:27:ba: 15:47:e2:61:e2:23:56:2f:58:62:5d:2a:e8:d6:30: 64:41:af:53:77:f1:7c:4d:d5:fd:98:9e:ba:da:20: aa:86:45:5e:d1:de:35:67:4e:85:a7:83:21:0f:8a: ad:64:76:98:60:f2:d0:36:0e:4e:e6:2d:b2:48:d2: d1:63:03:72:5a:7b:f2:ce:e4:08:aa:73:17:5c:13: c3:e8:02:79:4e:90:4d:5c:91:c9:2d:0a:41:c9:10: e6:80:90:c9:e6:e6:ab:91:2f:fb:ba:c5:bf:1a:db: fa:ad:de:7e:ee:2d:b6:f7:98:0a:c8:8d:05:2b:0b: b2:53:71:ea:55:06:07:2e:36:cb:f8:73:75:27:f9: 09:63:dc:7c:83:ba:e1:1b:c9:fb:55:d7:ba:92:24: 8a:54:a5:4c:a4:a2:9b:8f:e5:dd:86:67:6f:fb:d5: 43:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:1B:00:D2:D7:74:8A:00:6E:8A:A8:B9:09:24:FA:5F:F7:78:29:CB X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:2a:b1:cd:6c:49:99:ab:b6:24:86:1d:23:5e:c4:82:ac:bb: c8:90:f9:f4:2a:79:9e:1c:2e:45:1c:03:56:0d:b6:cf:4c:19: 96:1b:d3:5a:a3:09:33:43:0b:23:3d:13:93:81:7a:cf:4a:2c: e1:62:db:6c:3d:b7:8c:b7:e2:e3:1a:89:90:9f:14:39:70:df: 78:f8:0f:32:fe:a7:62:3b:6b:c7:98:35:4a:65:1d:12:bc:78: 41:62:1f:3f:61:b7:99:7a:95:39:0d:52:83:fb:41:d5:54:77: 69:b5:dd:1e:42:86:2f:b9:73:09:45:bb:74:ca:46:c6:b2:85: 4b:af:ec:2d:bf:42:9a:53:52:5c:2e:97:41:84:71:d8:20:9c: dd:02:fa:02:ee:01:91:78:90:7f:14:bc:ae:00:3f:a0:2f:d7: 5d:b1:28:f6:80:a5:5b:45:26:9e:c5:37:17:89:a5:02:3c:05: 59:8e:7b:82:24:0a:17:c0:0f:7a:ac:c4:66:8e:e6:a9:62:ef: 7c:61:1a:6d:c3:82:1c:9d:8e:4f:87:8b:7f:9d:12:f3:95:44: ec:a7:6c:50:00:19:60:d5:4c:79:b8:5d:bb:76:2a:59:4a:32: 59:1a:5e:13:74:ca:11:63:1e:69:c6:27:09:42:76:16:38:ef: 79:5e:82:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjYwMzAxMDY1NDIxWhcNMjYwMzA4MDY1NDIxWjAYMRYwFAYD VQQDEw02OWEzZTI5ZC1iMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hm3107WMQx/hVWpk7YKIn4VFRuAiHsM10+jgGMG+9UwZONTwSekHwGc8MVo O7EBRdrlNFjMp3GmGkYQdNdT036sFRhqxW9g86TSE95/5BS8YhEGzYlFJ7oVR+Jh 4iNWL1hiXSro1jBkQa9Td/F8TdX9mJ662iCqhkVe0d41Z06Fp4MhD4qtZHaYYPLQ Ng5O5i2ySNLRYwNyWnvyzuQIqnMXXBPD6AJ5TpBNXJHJLQpByRDmgJDJ5uarkS/7 usW/Gtv6rd5+7i2295gKyI0FKwuyU3HqVQYHLjbL+HN1J/kJY9x8g7rhG8n7Vde6 kiSKVKVMpKKbj+Xdhmdv+9VDQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGUbANLX dIoAboqouQkk+l/3eCnLMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmiqxzWxJmau2JIYdI17Egqy7yJD59Cp5nhwuRRwDVg22z0wZlhvTWqMJM0ML Iz0Tk4F6z0os4WLbbD23jLfi4xqJkJ8UOXDfePgPMv6nYjtrx5g1SmUdErx4QWIf P2G3mXqVOQ1Sg/tB1VR3abXdHkKGL7lzCUW7dMpGxrKFS6/sLb9CmlNSXC6XQYRx 2CCc3QL6Au4BkXiQfxS8rgA/oC/XXbEo9oClW0UmnsU3F4mlAjwFWY57giQKF8AP eqzEZo7mqWLvfGEabcOCHJ2OT4eLf50S85VE7KdsUAAZYNVMebhdu3YqWUoyWRpe E3TKEWMeacYnCUJ2FjjveV6CPg== -----END CERTIFICATE-----Generated at Mon Mar 2 02:32:45 2026 by rpki-client