$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: Ky6UuZc1Ldx1Fn4ARg4mP5EvoDaCB2uQ7/pIwg8w568= Subject key identifier: 08:2D:A2:AA:F7:C5:A8:2B:DF:F7:2A:4E:06:36:54:0A:58:E1:3B:B6 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 1275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 1267 Signing time: Thu 16 Apr 2026 17:01:47 +0000 Manifest this update: Thu 16 Apr 2026 17:01:46 +0000 Manifest next update: Thu 23 Apr 2026 17:01:46 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: tnxAA8X1zqiH30uj3z4fG8wMKgRj+j64RCpfqILNDfo=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: h+tzRhpe2AsXoHJ8CBPjL2tTeLXiRNNuDMYfrMmyPpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4725 (0x1275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Apr 16 17:01:46 2026 GMT Not After : Apr 23 17:01:46 2026 GMT Subject: CN=69e115fb-a769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5e:11:2a:0e:54:88:6c:e0:e8:72:1f:57:eb: 27:07:82:5e:19:13:ae:9d:bf:2d:9a:9e:0a:2f:a4: 00:7c:19:41:66:c5:9f:e9:67:81:d5:0f:ca:25:61: 58:1e:36:21:da:60:99:b2:aa:9d:a1:03:c2:1f:51: 5f:32:3d:1a:83:63:c3:b7:60:41:0f:51:02:91:cb: f4:ec:77:85:d9:b9:8e:46:a0:0e:53:23:eb:bc:d8: 3b:df:f2:29:a9:0c:83:75:f0:78:b9:9d:0d:ee:1d: 67:78:6d:a2:f4:18:64:82:2c:a9:95:f3:40:01:6e: b7:bc:6e:aa:51:db:2d:4a:89:d1:65:89:15:19:6b: 21:4d:e2:12:10:87:55:46:b1:0f:fa:6c:16:2c:82: a2:7f:94:12:54:b1:d4:3d:ec:26:b6:0a:c5:f5:be: 45:a9:06:ed:85:9b:5c:58:28:6f:72:19:8b:46:62: 95:9a:83:30:62:2e:61:a9:12:b8:83:24:8a:84:fe: d1:79:03:ec:6c:6c:34:3c:85:6e:44:7c:8b:01:96: a7:a6:7d:06:a6:2e:75:f9:9a:90:6b:88:44:20:4c: 55:81:80:f9:c6:3c:47:29:77:a3:c1:53:24:b0:6b: 6d:7d:e2:0a:80:ce:b8:4a:a9:a6:a3:73:18:1f:32: 51:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:2D:A2:AA:F7:C5:A8:2B:DF:F7:2A:4E:06:36:54:0A:58:E1:3B:B6 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:bd:c2:e1:13:d9:84:43:d5:4e:6f:33:ea:f6:cc:00:f4:5e: fe:2d:70:17:60:30:ef:36:0e:9e:db:40:89:2c:ad:8e:e6:a4: 9e:a3:d3:fc:ed:90:0f:23:c0:5f:1d:a1:03:06:22:a9:b4:57: 85:9c:8d:a6:be:44:5c:ad:7d:46:dc:10:67:25:2e:18:85:c7: be:5b:a5:ab:02:7e:bb:11:da:79:94:ee:4a:c2:3f:b9:c8:8b: fd:ec:d6:cb:eb:6a:37:cb:f9:91:7c:98:14:98:24:98:9d:40: 56:b6:e3:1d:70:af:b1:66:c4:8b:03:35:ac:60:cf:05:06:e7: f2:bd:c7:aa:4e:7e:fe:ea:11:b3:d6:35:c4:c2:db:2b:50:e4: 3b:be:5a:e6:d9:cb:be:bf:f7:a2:0d:1d:cd:28:78:cb:0d:d6: ae:78:80:f1:1e:2c:37:8a:c3:b1:20:08:52:37:15:38:c0:88: 6a:51:32:b8:49:76:f8:46:9c:2e:0e:0b:84:b4:38:46:25:c8: 41:e6:fc:99:33:13:e0:97:fd:1c:24:4b:0f:38:40:00:67:66: dc:29:fb:f3:72:09:5b:45:fe:11:d1:b5:11:42:c0:16:b0:ef: d4:8f:e4:67:be:1a:d5:cb:65:cd:14:e0:17:bf:b4:f4:15:f7: 71:1a:cf:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjYwNDE2MTcwMTQ2WhcNMjYwNDIzMTcwMTQ2WjAYMRYwFAYD VQQDEw02OWUxMTVmYi1hNzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5F4RKg5UiGzg6HIfV+snB4JeGROunb8tmp4KL6QAfBlBZsWf6WeB1Q/KJWFY HjYh2mCZsqqdoQPCH1FfMj0ag2PDt2BBD1ECkcv07HeF2bmORqAOUyPrvNg73/Ip qQyDdfB4uZ0N7h1neG2i9BhkgiyplfNAAW63vG6qUdstSonRZYkVGWshTeISEIdV RrEP+mwWLIKif5QSVLHUPewmtgrF9b5FqQbthZtcWChvchmLRmKVmoMwYi5hqRK4 gySKhP7ReQPsbGw0PIVuRHyLAZanpn0Gpi51+ZqQa4hEIExVgYD5xjxHKXejwVMk sGttfeIKgM64Sqmmo3MYHzJRjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAgtoqr3 xagr3/cqTgY2VApY4Tu2MB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvL3C4RPZhEPVTm8z6vbMAPRe/i1wF2Aw7zYOnttAiSytjuaknqPT/O2QDyPA Xx2hAwYiqbRXhZyNpr5EXK19RtwQZyUuGIXHvlulqwJ+uxHaeZTuSsI/uciL/ezW y+tqN8v5kXyYFJgkmJ1AVrbjHXCvsWbEiwM1rGDPBQbn8r3Hqk5+/uoRs9Y1xMLb K1DkO75a5tnLvr/3og0dzSh4yw3WrniA8R4sN4rDsSAIUjcVOMCIalEyuEl2+Eac Lg4LhLQ4RiXIQeb8mTMT4Jf9HCRLDzhAAGdm3Cn783IJW0X+EdG1EULAFrDv1I/k Z74a1ctlzRTgF7+09BX3cRrPPQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:35:01 2026 by rpki-client