$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: 3gaYSVy5GgADE/QPRaZPKxtAig9QhWUlVsliVU6S+t8= Subject key identifier: 19:89:E7:09:15:0B:18:D6:B2:38:F7:8A:76:9B:10:1B:81:70:32:6B Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01D7 Signing time: Sun 01 Mar 2026 23:28:40 +0000 Manifest this update: Sun 01 Mar 2026 23:28:39 +0000 Manifest next update: Sun 08 Mar 2026 23:28:39 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: 7otfxZApB68FSVm68fvdRKhEzSeydXqltgMAluOaiA4=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: CEGrzyVX/R9nXXUQAan2KcsnSM9ycrOqX5vVxIScejc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Mar 1 23:28:39 2026 GMT Not After : Mar 8 23:28:39 2026 GMT Subject: CN=69a4cba8-e68a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:57:f2:50:dd:e0:15:3a:47:ea:a4:ee:06:aa: 7d:ba:38:09:16:3b:ce:2e:e1:13:77:84:6c:5c:b7: 9a:94:a7:d6:f4:3a:ef:91:0c:25:ea:3a:f4:5d:c6: f0:4b:82:e0:d8:6c:d6:51:c5:3b:2d:8a:e5:4f:d3: 3a:ae:b1:c7:25:ec:78:d8:d5:79:08:5a:8e:82:b6: 81:b3:b1:76:e1:86:c8:67:4b:89:a2:b0:88:fe:0f: cf:23:bd:ce:3a:f7:cc:4d:cf:2a:b6:50:6a:4a:ca: 2a:d2:db:57:c5:67:93:7f:6b:d1:44:4e:a9:b8:36: b8:e9:ea:3d:2d:94:82:58:79:c3:bd:ed:25:e0:2b: 18:4b:52:77:86:86:79:c0:e4:dc:a2:78:2c:85:6a: e1:0b:74:53:40:85:57:29:8e:59:89:1f:15:ad:14: 91:b9:64:34:2b:21:fa:9e:85:fb:b1:01:e3:fe:e7: ba:cc:e6:84:65:29:b0:f0:21:9d:17:61:1d:ef:53: 20:d3:43:4d:e6:47:3c:19:73:d2:3c:f7:48:f3:94: db:64:d0:43:36:7d:04:d1:b1:67:cc:5d:f4:fb:fc: ba:8a:ce:d6:d6:62:9e:a1:45:a7:54:63:3d:80:9c: ba:a2:ec:a9:8e:60:3b:b2:87:a3:f8:dd:3a:c8:93: 00:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:89:E7:09:15:0B:18:D6:B2:38:F7:8A:76:9B:10:1B:81:70:32:6B X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:eb:66:4c:03:c1:f6:14:f6:7f:99:a7:25:0e:e2:43:a4:3e: c4:86:be:ae:a0:cb:b7:7c:fb:96:46:8c:a7:51:e9:b3:18:28: 03:78:af:a3:33:d0:e2:83:e1:84:e0:85:b9:70:23:84:1d:fe: 18:35:df:ca:65:39:3c:f7:04:04:af:f3:ed:f2:a9:0b:37:e9: 2e:1a:e1:38:c1:42:3d:c2:9a:f8:cf:c5:d3:a2:f9:53:1a:ee: 50:a1:3a:5d:ee:ea:d6:8c:2e:cc:df:69:9c:57:90:cb:ae:f9: c4:f5:7e:69:7a:c0:fa:1b:ac:b9:73:6d:75:bb:d2:e0:7e:a2: 02:90:46:0c:d9:9d:0b:15:e9:02:31:80:fe:32:46:03:4f:61: 42:7b:12:34:2b:34:91:9c:35:17:d7:c9:20:a0:d0:ac:10:7b: 66:d8:b2:64:55:f3:e7:61:b8:69:3b:79:2b:87:61:3e:1e:fd: f9:44:56:74:27:b2:46:13:79:00:81:9d:f0:e8:e1:12:40:08: df:60:c5:04:32:45:c3:a5:65:7d:22:58:5a:2c:c1:8d:f7:79: 13:f1:99:2c:63:63:80:bd:aa:02:34:6a:39:60:0b:65:bd:c3: bb:ab:ba:15:75:6b:8b:99:b2:cb:f9:51:58:4f:08:ff:67:97: 23:0d:db:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjYwMzAxMjMyODM5WhcNMjYwMzA4MjMyODM5WjAYMRYwFAYD VQQDEw02OWE0Y2JhOC1lNjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylfyUN3gFTpH6qTuBqp9ujgJFjvOLuETd4RsXLealKfW9DrvkQwl6jr0Xcbw S4Lg2GzWUcU7LYrlT9M6rrHHJex42NV5CFqOgraBs7F24YbIZ0uJorCI/g/PI73O OvfMTc8qtlBqSsoq0ttXxWeTf2vRRE6puDa46eo9LZSCWHnDve0l4CsYS1J3hoZ5 wOTcongshWrhC3RTQIVXKY5ZiR8VrRSRuWQ0KyH6noX7sQHj/ue6zOaEZSmw8CGd F2Ed71Mg00NN5kc8GXPSPPdI85TbZNBDNn0E0bFnzF30+/y6is7W1mKeoUWnVGM9 gJy6ouypjmA7soej+N06yJMA3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBmJ5wkV CxjWsjj3inabEBuBcDJrMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb+tmTAPB9hT2f5mnJQ7iQ6Q+xIa+rqDLt3z7lkaMp1HpsxgoA3ivozPQ4oPh hOCFuXAjhB3+GDXfymU5PPcEBK/z7fKpCzfpLhrhOMFCPcKa+M/F06L5UxruUKE6 Xe7q1owuzN9pnFeQy675xPV+aXrA+husuXNtdbvS4H6iApBGDNmdCxXpAjGA/jJG A09hQnsSNCs0kZw1F9fJIKDQrBB7ZtiyZFXz52G4aTt5K4dhPh79+URWdCeyRhN5 AIGd8OjhEkAI32DFBDJFw6VlfSJYWizBjfd5E/GZLGNjgL2qAjRqOWALZb3Du6u6 FXVri5myy/lRWE8I/2eXIw3bgQ== -----END CERTIFICATE-----Generated at Mon Mar 2 07:26:28 2026 by rpki-client