$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: pFfKdJCEmrTXGtzjUhvu/Eoz2a6S8AGQdeM2iOMx7lU= Subject key identifier: C7:BB:51:D1:C9:96:1B:6D:58:A7:FB:CB:1E:D7:0B:3C:6E:1F:66:4E Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 0125 Signing time: Sun 01 Mar 2026 06:40:33 +0000 Manifest this update: Sun 01 Mar 2026 06:40:32 +0000 Manifest next update: Sun 08 Mar 2026 06:40:32 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: TmcMydEnQXEvTYHGfCAbOJ6CfxTEFOhxmzY6WM0G66Y=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: Lm3n9/beTQTSuADhNOkS7uaY8GPI4m4BtlZmRSSiRCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Mar 1 06:40:32 2026 GMT Not After : Mar 8 06:40:32 2026 GMT Subject: CN=69a3df61-b3c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0e:9d:81:70:46:b6:90:87:0c:b9:59:ff:27: 50:23:4d:f6:a9:01:33:d3:71:18:db:df:9c:17:93: 12:08:02:c9:e7:09:af:c4:90:be:92:9e:ad:b7:d3: 0f:54:b5:24:b3:43:3c:47:29:84:93:c9:ce:6b:d5: 26:57:1a:f1:5a:9b:e7:68:a1:c5:07:2c:c3:d6:cf: f5:12:c6:e7:54:a7:e9:19:37:87:28:a8:4b:2d:99: 31:68:bd:29:4f:01:09:1f:7d:91:a9:8e:b2:b7:19: f0:5e:5b:57:42:9b:5a:0e:a3:66:6d:71:4b:20:5d: d9:c5:f2:a4:b6:5b:57:57:82:03:6b:7b:32:72:b8: 4f:f3:5e:4a:a7:cb:b9:cd:1d:ef:bf:b2:45:97:6b: 01:8d:9a:9b:ca:a8:ca:0c:6f:17:b4:49:53:d8:51: 8e:10:bc:be:60:71:1a:d0:a1:09:ae:6a:9f:9b:c5: 5a:22:59:a9:28:18:ee:d8:30:5d:3a:56:75:97:05: b0:64:d5:17:8f:3d:7d:3c:6c:cd:33:f1:9e:e6:af: 50:59:c7:97:93:09:9e:3b:af:e7:f0:7b:4d:ae:85: d9:4f:99:8e:4e:d8:c9:35:cf:88:fa:c7:7b:3a:93: 44:2b:d9:c2:56:b8:bd:6b:a9:43:b7:44:d0:2b:09: fc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:BB:51:D1:C9:96:1B:6D:58:A7:FB:CB:1E:D7:0B:3C:6E:1F:66:4E X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:2b:c4:25:f9:aa:2e:9f:1e:40:ed:09:b3:2e:13:c0:2c:08: 9e:c8:b5:e0:09:49:04:0c:7b:e3:47:93:26:ae:cb:7a:4a:ab: 98:75:7d:5e:16:f4:36:da:7a:b9:5f:0e:d4:f5:99:a6:03:a2: f4:f0:80:5c:cf:f7:1f:f1:f9:ed:86:ac:ef:86:d7:83:c5:b4: ac:87:4e:27:48:09:e2:97:65:45:59:5f:6f:eb:b8:c2:19:7d: 7f:6f:e5:22:cc:d7:9e:77:29:2e:d4:3d:92:3b:14:06:ce:0e: 20:9f:ed:57:41:26:2b:4b:ab:19:a1:52:35:5c:97:06:92:28: c8:2a:f9:24:8a:23:97:42:a6:0e:7d:79:dc:3e:9f:e9:c0:6f: 54:dd:db:2d:7f:e8:36:b8:cc:e3:e9:2b:a9:4c:88:ef:c8:e8: aa:e5:68:22:76:f4:2d:e7:8e:28:64:34:5d:24:18:e4:4e:63: 36:c5:4c:bc:9b:2f:0d:1b:6e:24:7d:5c:2d:ac:79:c9:f1:5a: 91:5b:89:4a:43:70:25:59:a8:cf:86:95:ac:d8:80:b0:88:c4: a4:85:61:bc:48:51:01:88:49:49:34:bb:bd:bb:d3:72:b3:16: 6c:ac:a6:be:36:0f:e6:5b:2c:7f:bb:4c:df:bb:33:ff:f5:7d: c2:e6:5a:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjYwMzAxMDY0MDMyWhcNMjYwMzA4MDY0MDMyWjAYMRYwFAYD VQQDEw02OWEzZGY2MS1iM2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1w6dgXBGtpCHDLlZ/ydQI032qQEz03EY29+cF5MSCALJ5wmvxJC+kp6tt9MP VLUks0M8RymEk8nOa9UmVxrxWpvnaKHFByzD1s/1EsbnVKfpGTeHKKhLLZkxaL0p TwEJH32RqY6ytxnwXltXQptaDqNmbXFLIF3ZxfKktltXV4IDa3sycrhP815Kp8u5 zR3vv7JFl2sBjZqbyqjKDG8XtElT2FGOELy+YHEa0KEJrmqfm8VaIlmpKBju2DBd OlZ1lwWwZNUXjz19PGzNM/Ge5q9QWceXkwmeO6/n8HtNroXZT5mOTtjJNc+I+sd7 OpNEK9nCVri9a6lDt0TQKwn8xwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMe7UdHJ lhttWKf7yx7XCzxuH2ZOMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxCvEJfmqLp8eQO0Jsy4TwCwInsi14AlJBAx740eTJq7LekqrmHV9Xhb0Ntp6 uV8O1PWZpgOi9PCAXM/3H/H57Yas74bXg8W0rIdOJ0gJ4pdlRVlfb+u4whl9f2/l IszXnncpLtQ9kjsUBs4OIJ/tV0EmK0urGaFSNVyXBpIoyCr5JIojl0KmDn153D6f 6cBvVN3bLX/oNrjM4+krqUyI78joquVoInb0LeeOKGQ0XSQY5E5jNsVMvJsvDRtu JH1cLax5yfFakVuJSkNwJVmoz4aVrNiAsIjEpIVhvEhRAYhJSTS7vbvTcrMWbKym vjYP5lssf7tM37sz//V9wuZawQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:24:14 2026 by rpki-client