$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: iRDqhqFgITlxXAXWeOadQPGQdmoGQ0B99EnPbnnNjbc= Subject key identifier: A7:76:B5:6C:4F:8B:27:47:DC:53:A7:2C:43:2B:C3:77:6E:99:90:AA Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0CC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0CA2 Signing time: Mon 02 Mar 2026 00:51:27 +0000 Manifest this update: Mon 02 Mar 2026 00:51:25 +0000 Manifest next update: Mon 09 Mar 2026 00:51:25 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: oRavZiPqz1tC/D40KdvR9anLI5QHW6u7/G57lYb7GLQ=) 2: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: qPZmqhPtG1orNWgO21O3wlBwiZAj4EQWTBy6up25D/I=) 3: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: 0ui+SiQ/c3MRovj/aJJcziARwvWd2KxwKuQ6NFEu4OA=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: OehBxOplI/UOZ/b2d9DDqACV634wRHZsLO+l8ckQwQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3265 (0xcc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Mar 2 00:51:25 2026 GMT Not After : Mar 9 00:51:25 2026 GMT Subject: CN=69a4df0e-7f55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:34:a3:03:06:cd:d7:18:7d:dc:e8:62:18:ce: bb:4d:41:1e:7a:1c:6d:d2:22:57:b0:1f:6a:00:8b: 18:82:eb:95:bf:a0:25:e5:06:25:b4:55:21:c1:8c: e1:ac:8f:1f:1b:fe:10:15:f7:51:4c:aa:74:54:ca: 32:2f:56:3e:f0:1a:81:24:1c:6e:45:c1:cf:f9:b9: af:f4:b1:f2:97:a7:bd:3c:26:56:f2:e5:52:c9:5e: 03:f3:df:a9:d2:02:7d:85:33:b7:2f:4e:e8:b7:7f: 33:5c:8b:76:1f:28:13:5c:f2:4d:9a:d1:3d:22:ef: 25:95:56:97:ea:95:3c:8e:7c:0b:f3:1a:5d:af:b3: b1:00:00:e3:88:90:60:90:8c:a0:09:3e:a4:36:8a: ec:58:76:3a:05:e1:7e:eb:fe:20:b7:32:73:9f:24: 55:9d:fb:c6:24:f9:46:c0:25:af:aa:fe:dd:37:46: 01:ab:e0:7d:c2:9b:e1:77:7f:ad:e8:91:10:0a:27: 6c:09:20:3a:4a:61:27:c8:85:17:51:3e:f3:bb:38: ab:41:be:94:67:d9:47:95:b3:74:a5:3e:b6:93:12: 7b:c2:ac:dd:23:4b:37:0f:4e:c2:19:c3:95:7f:e9: f7:66:01:97:9c:c8:12:65:11:4f:de:b5:86:18:5c: 0f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:76:B5:6C:4F:8B:27:47:DC:53:A7:2C:43:2B:C3:77:6E:99:90:AA X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:da:22:28:b3:38:85:de:c6:92:f2:58:10:20:ad:ca:de:46: d4:5f:11:a4:75:5e:1d:2c:ce:c2:6b:40:af:12:1e:c1:58:93: 63:03:f1:16:c2:23:b4:66:21:0f:e1:b3:fc:69:80:39:05:eb: f2:fa:bc:9e:63:7b:81:b6:99:3c:e4:29:20:f8:f8:c2:56:fa: 09:91:de:78:7d:47:3a:96:8f:04:e7:2a:65:87:b0:f6:bc:c9: 96:1a:12:b7:a5:b3:39:25:b4:28:94:11:58:3e:c1:cf:8f:ea: 2b:f3:ec:73:34:94:60:63:58:ea:4c:89:82:b9:7b:1a:7e:f9: cd:a0:28:be:07:b4:18:43:f9:fc:bd:48:16:47:32:2a:51:c1: b8:16:1b:7e:9f:e3:7e:95:4e:30:13:03:0f:c0:b6:6c:e3:61: 20:44:cd:91:c2:4e:b1:7f:20:9e:1f:44:60:f8:7a:a8:43:1b: 05:ac:00:19:48:aa:44:87:db:f3:8b:3c:86:b4:b7:4e:66:9b: 32:e1:ae:bf:58:28:a9:b0:19:76:fd:a2:a7:47:4a:9b:ae:0c: a3:d7:81:fa:a6:a6:b9:58:f3:96:63:cc:d2:60:d2:04:2e:1c: 6e:ed:ef:1e:d6:aa:3c:34:37:49:1c:f4:d7:e3:87:94:05:7a: 10:96:af:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjYwMzAyMDA1MTI1WhcNMjYwMzA5MDA1MTI1WjAYMRYwFAYD VQQDEw02OWE0ZGYwZS03ZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDSjAwbN1xh93OhiGM67TUEeehxt0iJXsB9qAIsYguuVv6Al5QYltFUhwYzh rI8fG/4QFfdRTKp0VMoyL1Y+8BqBJBxuRcHP+bmv9LHyl6e9PCZW8uVSyV4D89+p 0gJ9hTO3L07ot38zXIt2HygTXPJNmtE9Iu8llVaX6pU8jnwL8xpdr7OxAADjiJBg kIygCT6kNorsWHY6BeF+6/4gtzJznyRVnfvGJPlGwCWvqv7dN0YBq+B9wpvhd3+t 6JEQCidsCSA6SmEnyIUXUT7zuzirQb6UZ9lHlbN0pT62kxJ7wqzdI0s3D07CGcOV f+n3ZgGXnMgSZRFP3rWGGFwPPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKd2tWxP iydH3FOnLEMrw3dumZCqMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABdoiKLM4hd7GkvJYECCtyt5G1F8RpHVeHSzOwmtArxIewViTYwPxFsIjtGYh D+Gz/GmAOQXr8vq8nmN7gbaZPOQpIPj4wlb6CZHeeH1HOpaPBOcqZYew9rzJlhoS t6WzOSW0KJQRWD7Bz4/qK/PsczSUYGNY6kyJgrl7Gn75zaAovge0GEP5/L1IFkcy KlHBuBYbfp/jfpVOMBMDD8C2bONhIETNkcJOsX8gnh9EYPh6qEMbBawAGUiqRIfb 84s8hrS3TmabMuGuv1goqbAZdv2ip0dKm64Mo9eB+qamuVjzlmPM0mDSBC4cbu3v HtaqPDQ3SRz01+OHlAV6EJav7w== -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:21 2026 by rpki-client