$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: grSUk6oAQ/fuXKjRdEoLwbZaE7BGGjDQldEGgn6zkIk= Subject key identifier: 6C:C0:B6:56:C9:4B:F9:D3:E5:0A:36:18:0E:CF:2F:5E:51:9D:F8:F8 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: B7 Signing time: Mon 02 Mar 2026 01:11:04 +0000 Manifest this update: Mon 02 Mar 2026 01:11:03 +0000 Manifest next update: Mon 09 Mar 2026 01:11:03 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: +titVB1xtM4aj8vdbPBy5MvNmMnSGrKs0iYKUB0qsxE=) 2: B754B304107A11F19C5931212E3D8C67.roa (hash: X42bQpbtp0QuU2Rc7u3h3Q36DtuhWPyQ8ylGJu3nBJ8=) 3: E658E72CB4A611F08CEAB576C4F9AE02.roa (hash: GxZwvDHfJBJSbzbkszrsfMF/m9l39R3m3cmVTDMbpig=) 4: DA700744185511F09304D972C4F9AE02.roa (hash: esj/3vUrMHPqtCAfRwLH6nR9IZBIZp4+dFrygvFkia0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Mar 2 01:11:03 2026 GMT Not After : Mar 9 01:11:03 2026 GMT Subject: CN=69a4e3a8-34c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:b8:86:38:7f:96:2e:b8:0e:59:66:af:7f:cf: f2:c3:a4:0b:0d:a0:99:5d:0e:97:f7:8e:7d:1d:e2: 77:51:ce:8f:31:e5:a4:83:6b:52:94:97:da:90:94: 2e:ab:fb:d7:dc:43:2b:c5:21:0b:e3:25:f1:40:24: 0f:08:a2:dd:de:82:bb:27:69:7f:9b:3e:65:28:b4: 24:33:f3:1f:b3:44:5c:ba:06:b8:a6:12:59:55:41: e5:fb:d0:02:fc:1e:71:65:d7:f5:da:12:17:9f:51: f7:51:a2:85:c1:57:ff:52:38:56:25:d5:7f:5d:4a: 96:58:c1:92:ef:97:0f:5b:bd:80:a5:7c:12:2d:61: 2b:2c:77:dd:99:99:b9:3f:75:86:79:98:03:c9:31: b0:ca:5f:90:90:ed:37:d4:20:54:08:24:8a:2c:3c: 53:ce:9d:64:79:3a:43:96:07:90:3d:a1:72:cc:c1: c1:23:95:56:92:18:c9:a6:71:5f:29:e9:d0:3b:9d: ce:b3:c4:db:19:8f:45:4c:25:ff:ff:60:5b:4f:f9: 4e:2e:74:6d:8d:ca:04:b2:a6:2c:9e:03:57:5f:4f: b7:8f:f7:52:fa:66:a7:89:5f:c0:76:b9:1f:0b:7d: 93:2f:8d:1f:1a:53:4d:31:6e:11:dc:2f:47:9d:88: 32:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C0:B6:56:C9:4B:F9:D3:E5:0A:36:18:0E:CF:2F:5E:51:9D:F8:F8 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:61:17:52:5b:2d:b2:06:f0:5f:7f:6a:bc:5b:49:ef:ea:71: 21:01:fa:3b:e5:21:c3:c2:9d:51:c4:db:bd:e6:9f:f6:7f:90: c7:16:44:18:a6:f7:88:94:98:6e:32:e9:f9:5c:d7:86:a6:f9: 68:d9:9d:9c:b7:e0:7c:1c:4d:04:b1:31:57:1d:e2:91:1d:28: ff:8c:c7:a1:25:17:4f:f7:25:c2:09:ce:ba:99:80:f4:7b:9d: 44:7d:60:db:fa:79:6f:25:a0:8b:ca:c5:8c:71:86:e1:10:a6: 87:5d:31:a1:04:0f:17:f4:ba:2b:7e:79:2a:0e:c9:de:32:96: 16:2e:74:da:af:78:98:b2:fa:ab:3b:26:18:03:00:9c:d4:a6: e1:75:65:39:e8:bd:63:6e:e3:c2:e5:fe:6e:11:13:35:f6:17: 34:87:2a:ee:f6:93:2f:72:fc:bc:58:fc:8e:d9:ff:f0:2c:c5: 76:e0:30:70:ef:4d:da:e7:e7:e6:cf:5d:d8:50:2e:9f:93:c2: 91:15:0f:95:cf:07:5c:f9:79:cc:fb:f9:da:ca:16:30:e6:a0: 89:47:d4:55:20:1d:cb:40:95:bb:2b:3d:bb:f8:56:74:bc:56: 4f:b3:bd:c5:22:81:21:af:7e:48:49:1a:fd:d5:73:01:f6:ed: dc:69:31:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QjkxMTAvBgNVBAUTKDkxMTc2RDE2OUM0MkYwM0Q5NTI4MkJCQkEyMDRDNEU0 NEQzMUVEMDkwHhcNMjYwMzAyMDExMTAzWhcNMjYwMzA5MDExMTAzWjAYMRYwFAYD VQQDEw02OWE0ZTNhOC0zNGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkLiGOH+WLrgOWWavf8/yw6QLDaCZXQ6X9459HeJ3Uc6PMeWkg2tSlJfakJQu q/vX3EMrxSEL4yXxQCQPCKLd3oK7J2l/mz5lKLQkM/Mfs0Rcuga4phJZVUHl+9AC /B5xZdf12hIXn1H3UaKFwVf/UjhWJdV/XUqWWMGS75cPW72ApXwSLWErLHfdmZm5 P3WGeZgDyTGwyl+QkO031CBUCCSKLDxTzp1keTpDlgeQPaFyzMHBI5VWkhjJpnFf KenQO53Os8TbGY9FTCX//2BbT/lOLnRtjcoEsqYsngNXX0+3j/dS+maniV/Adrkf C32TL40fGlNNMW4R3C9HnYgyKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGzAtlbJ S/nT5Qo2GA7PL15Rnfj4MB8GA1UdIwQYMBaAFJEXbRacQvA9lSgru6IExORNMe0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVCOS81MjAyRDAyODBE RjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhEMlZLQ3U3b2dURTVFMHg3 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVCOS81MjAyRDAyODBERjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhE MlZLQ3U3b2dURTVFMHg3UWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAB2EXUlstsgbwX39qvFtJ7+pxIQH6O+Uhw8KdUcTbveaf9n+QxxZEGKb3iJSY bjLp+VzXhqb5aNmdnLfgfBxNBLExVx3ikR0o/4zHoSUXT/clwgnOupmA9HudRH1g 2/p5byWgi8rFjHGG4RCmh10xoQQPF/S6K355Kg7J3jKWFi502q94mLL6qzsmGAMA nNSm4XVlOei9Y27jwuX+bhETNfYXNIcq7vaTL3L8vFj8jtn/8CzFduAwcO9N2ufn 5s9d2FAun5PCkRUPlc8HXPl5zPv52soWMOagiUfUVSAdy0CVuys9u/hWdLxWT7O9 xSKBIa9+SEka/dVzAfbt3GkxaA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:05:50 2026 by rpki-client