$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: iBNX4AaSkkbdGSUgU4HxDVu1u/cRfS+OQUpVfWY6uTU= Subject key identifier: 89:9D:02:E1:E3:9D:B6:12:2D:71:FF:CB:20:DD:3B:76:B0:0E:AB:32 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0795 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 0789 Signing time: Thu 16 Apr 2026 21:27:19 +0000 Manifest this update: Thu 16 Apr 2026 21:27:19 +0000 Manifest next update: Thu 23 Apr 2026 21:27:19 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: 7OZ/kkM/6mUXiiBpdbrColz5kge/nDq+4fwq/MvM+u8=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: aBoUkT3XfOno4ZFpM1LCowGFp8BTgYEHGaCNCAbFWpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Apr 16 21:27:19 2026 GMT Not After : Apr 23 21:27:19 2026 GMT Subject: CN=69e15437-1f14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fd:b9:da:06:a8:0b:24:7b:cb:1e:44:d4:6d: e7:e4:20:73:43:25:8c:53:09:a9:88:c5:79:d4:e0: 46:cc:c9:b3:7a:33:f0:e0:f7:69:48:f0:9b:8e:ea: 88:3f:34:63:84:ab:b2:34:f9:ce:78:42:fe:82:16: a2:a9:36:0f:f1:82:be:ee:0b:24:25:35:fd:c0:c1: 33:43:8d:32:30:6c:f0:7c:f0:d2:25:c2:28:e7:6e: 9e:84:93:64:c7:17:48:ed:f9:4f:42:2e:85:47:80: 6a:8a:3d:f3:b6:ba:ff:4c:c3:42:67:a9:42:65:f6: be:52:56:4c:c5:35:31:35:d0:20:44:93:eb:a6:00: cd:85:77:89:4d:5e:d1:10:a6:03:30:af:b6:19:82: 13:94:17:45:17:30:06:f5:df:67:4f:51:91:c5:85: 6e:90:27:84:e2:24:cc:a1:f3:7f:63:55:eb:b9:79: 28:e5:33:24:81:92:39:ae:92:37:88:bd:d0:c6:94: b8:80:d8:0b:0b:9d:a8:73:a2:e4:cf:f8:26:83:54: 51:00:79:68:30:49:12:21:05:c6:13:25:9b:e5:68: 45:73:d2:de:9e:50:bb:31:1e:e8:16:8d:df:29:ab: 3d:e2:be:b2:e8:9b:8b:7c:c0:9c:18:5e:ba:e5:6b: 17:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:9D:02:E1:E3:9D:B6:12:2D:71:FF:CB:20:DD:3B:76:B0:0E:AB:32 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:55:a0:41:76:c7:cf:dd:34:65:d3:20:e0:40:57:7d:12:20: 02:39:c5:c8:b1:e1:1c:ce:88:d4:7c:ec:30:a7:ba:97:95:b6: 81:20:71:50:e7:e9:76:ca:24:c2:31:e3:f3:b7:c2:7a:26:47: 58:6d:a3:c7:e1:ad:53:25:b5:f2:92:ea:79:9b:12:50:a4:fc: 0a:f4:2e:f3:cc:55:4d:6b:c5:79:d5:7b:94:8f:1c:62:ea:d8: 02:c0:c4:c2:e3:d2:1a:11:53:31:7c:79:d5:9d:b2:c9:91:32: 50:42:16:70:55:f8:5b:39:6b:36:d9:db:6f:b2:24:8f:b7:8a: 0e:94:5b:9c:8d:9c:cc:67:b2:5f:a4:36:ed:dd:fc:5e:ba:2c: a9:8f:9c:c3:b5:a4:25:8b:c9:38:72:3f:fd:a0:40:70:51:ce: d9:77:07:b8:77:0a:88:61:29:b0:d3:14:c9:0d:4f:76:9d:76: af:a1:c3:09:6c:c3:a4:aa:17:be:66:7b:a3:1f:7f:e1:c1:16: 21:e3:3b:b2:bf:04:70:1e:2d:dc:25:36:f0:fc:8c:e9:fa:77: c7:dd:7d:14:e7:45:c4:62:1a:37:72:6c:eb:ba:fb:d6:47:21: 33:88:39:01:70:37:63:f0:0a:ea:0e:e9:3e:e5:cd:f6:d9:23: b1:77:cd:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjYwNDE2MjEyNzE5WhcNMjYwNDIzMjEyNzE5WjAYMRYwFAYD VQQDEw02OWUxNTQzNy0xZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/252gaoCyR7yx5E1G3n5CBzQyWMUwmpiMV51OBGzMmzejPw4PdpSPCbjuqI PzRjhKuyNPnOeEL+ghaiqTYP8YK+7gskJTX9wMEzQ40yMGzwfPDSJcIo526ehJNk xxdI7flPQi6FR4Bqij3ztrr/TMNCZ6lCZfa+UlZMxTUxNdAgRJPrpgDNhXeJTV7R EKYDMK+2GYITlBdFFzAG9d9nT1GRxYVukCeE4iTMofN/Y1XruXko5TMkgZI5rpI3 iL3QxpS4gNgLC52oc6Lkz/gmg1RRAHloMEkSIQXGEyWb5WhFc9LenlC7MR7oFo3f Kas94r6y6JuLfMCcGF665WsXDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFImdAuHj nbYSLXH/yyDdO3awDqsyMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjlWgQXbHz900ZdMg4EBXfRIgAjnFyLHhHM6I1HzsMKe6l5W2gSBxUOfpdsok wjHj87fCeiZHWG2jx+GtUyW18pLqeZsSUKT8CvQu88xVTWvFedV7lI8cYurYAsDE wuPSGhFTMXx51Z2yyZEyUEIWcFX4WzlrNtnbb7Ikj7eKDpRbnI2czGeyX6Q27d38 XrosqY+cw7WkJYvJOHI//aBAcFHO2XcHuHcKiGEpsNMUyQ1Pdp12r6HDCWzDpKoX vmZ7ox9/4cEWIeM7sr8EcB4t3CU28PyM6fp3x919FOdFxGIaN3Js67r71kchM4g5 AXA3Y/AK6g7pPuXN9tkjsXfN1A== -----END CERTIFICATE-----Generated at Fri Apr 17 04:21:12 2026 by rpki-client