$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: W0V+YlTC7CkC6wPrNSMUaCPd5dZIWtC4HNZXtntCp78= Subject key identifier: B2:FD:FA:73:29:14:B3:E2:C2:8E:83:47:00:DF:ED:04:E8:EC:1D:E3 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 0141 Signing time: Sun 19 Apr 2026 04:54:58 +0000 Manifest this update: Sun 19 Apr 2026 04:54:57 +0000 Manifest next update: Sun 26 Apr 2026 04:54:57 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: p1fOEtNqXN/9EzxddEhKFG226d/VnELMwKorqCBRQGo=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: /ju6tAC2YvQK9Mt9Ug1vYucEJYF6/PAoDqUqSoXsrZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Apr 19 04:54:57 2026 GMT Not After : Apr 26 04:54:57 2026 GMT Subject: CN=69e46021-be89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0c:80:ed:5c:77:5d:66:ee:0e:ae:65:00:cc: 57:45:74:94:b5:a8:dd:78:6c:62:80:68:a1:da:ee: 11:10:65:3c:13:e3:8d:23:3b:66:44:bc:ed:79:3f: 87:11:57:f8:38:f4:6b:3f:e9:5a:bb:ef:76:d8:7a: a7:0e:22:ee:7a:b3:4b:7f:9e:2f:c6:a4:a3:9a:84: 1a:b1:10:25:5b:dc:06:8f:21:8f:98:e2:46:0e:ae: c5:d8:3c:ee:51:f9:e4:70:77:8d:7a:d9:c0:09:61: 94:b2:d4:b1:41:3c:c6:bc:fa:73:7b:fb:49:bf:34: 27:e3:5e:80:51:39:6d:40:de:d3:05:51:a1:71:6c: f3:bd:ce:64:7a:dc:71:70:86:88:0a:b2:56:cb:1c: 04:d5:14:83:c7:56:f8:35:a1:4f:a4:72:10:6c:be: 9d:7b:ab:bc:a8:bd:d1:95:72:17:b9:ed:72:59:11: 5a:51:84:4f:5c:28:3c:44:ce:53:bb:2e:d8:e8:a1: aa:ac:2a:71:b4:8f:f5:1b:99:21:5c:62:fc:17:3a: 2e:b9:09:41:27:a3:69:48:24:d7:37:0b:4e:3a:cb: 37:7f:d7:db:a8:07:15:1f:53:5b:13:56:c4:8e:6b: be:c2:0e:af:32:5d:a7:ad:77:db:41:b0:15:a3:f7: cb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FD:FA:73:29:14:B3:E2:C2:8E:83:47:00:DF:ED:04:E8:EC:1D:E3 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:2e:7f:eb:37:7a:ca:5e:4c:38:82:0c:36:d6:c3:99:2e:0d: 88:f7:9a:f6:2b:c2:aa:e1:d2:c6:42:80:4e:50:1a:8d:fb:28: 59:58:bd:41:49:81:69:8e:79:98:16:3f:c1:3a:72:ff:0c:5c: 8c:de:c6:b2:61:fa:9d:04:e6:70:cf:42:b6:11:08:86:5e:bd: b8:e8:e3:e2:ea:58:64:49:a4:5b:2b:5c:f5:60:c0:70:75:33: 15:97:fe:6a:b3:eb:79:17:81:af:1b:63:f0:cd:93:96:e9:a3: 1e:44:a5:5e:c7:1a:4e:25:5f:a7:23:a1:81:d9:99:b9:44:f4: 0b:dc:2b:35:5c:49:2c:e7:5b:98:93:14:80:d3:3a:3a:45:20: 87:e0:4b:01:f3:c4:0b:3f:63:83:cc:02:8e:ad:b9:3d:b4:6d: 15:75:19:8b:46:af:8c:1f:3b:54:71:99:4d:cc:ea:19:5a:05: c1:2b:a9:51:d5:a6:ef:a1:13:9a:84:b7:5d:b0:32:ee:7a:4e: 88:37:1f:6f:50:65:6f:ca:81:23:38:9a:fb:a2:a8:56:7d:b0: 34:37:f1:19:01:74:67:7f:d1:7f:61:31:d6:b8:8f:ad:2e:b0: 24:f3:f5:bd:30:1f:60:3d:60:97:99:51:bb:bb:f2:9a:b9:2f: d1:56:4c:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjYwNDE5MDQ1NDU3WhcNMjYwNDI2MDQ1NDU3WjAYMRYwFAYD VQQDEw02OWU0NjAyMS1iZTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAyA7Vx3XWbuDq5lAMxXRXSUtajdeGxigGih2u4REGU8E+ONIztmRLzteT+H EVf4OPRrP+lau+922HqnDiLuerNLf54vxqSjmoQasRAlW9wGjyGPmOJGDq7F2Dzu UfnkcHeNetnACWGUstSxQTzGvPpze/tJvzQn416AUTltQN7TBVGhcWzzvc5ketxx cIaICrJWyxwE1RSDx1b4NaFPpHIQbL6de6u8qL3RlXIXue1yWRFaUYRPXCg8RM5T uy7Y6KGqrCpxtI/1G5khXGL8FzouuQlBJ6NpSCTXNwtOOss3f9fbqAcVH1NbE1bE jmu+wg6vMl2nrXfbQbAVo/fLDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLL9+nMp FLPiwo6DRwDf7QTo7B3jMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArC5/6zd6yl5MOIIMNtbDmS4NiPea9ivCquHSxkKATlAajfsoWVi9QUmBaY55 mBY/wTpy/wxcjN7GsmH6nQTmcM9CthEIhl69uOjj4upYZEmkWytc9WDAcHUzFZf+ arPreReBrxtj8M2TlumjHkSlXscaTiVfpyOhgdmZuUT0C9wrNVxJLOdbmJMUgNM6 OkUgh+BLAfPECz9jg8wCjq25PbRtFXUZi0avjB87VHGZTczqGVoFwSupUdWm76ET moS3XbAy7npOiDcfb1Blb8qBIzia+6KoVn2wNDfxGQF0Z3/Rf2Ex1riPrS6wJPP1 vTAfYD1gl5lRu7vymrkv0VZMnA== -----END CERTIFICATE-----Generated at Sun Apr 19 11:35:30 2026 by rpki-client