$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: I8fAQrIBL5VbwyWQRSbFbtTPrdO3YZAun+w4Ig/2nzI= Subject key identifier: 34:EC:EF:9B:EE:CF:AB:41:15:CB:94:D2:0A:7D:24:44:8F:E0:AA:7E Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 13D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 13C6 Signing time: Thu 16 Apr 2026 16:53:00 +0000 Manifest this update: Thu 16 Apr 2026 16:53:00 +0000 Manifest next update: Thu 23 Apr 2026 16:53:00 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: 4dz1F9p0cyW0cxPJXJthZOXGddH0kcy64V/hy4GUzV0=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: RPjXeL3Zl8P6QkaRaUeCd76+wyQHC30Y9Dr1jaF8lPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5073 (0x13d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Apr 16 16:53:00 2026 GMT Not After : Apr 23 16:53:00 2026 GMT Subject: CN=69e113ec-4dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:61:0a:82:3b:02:9a:5c:1d:7f:e4:a9:ce:67: 91:95:5b:c2:31:cc:17:9b:09:78:7d:1e:db:95:de: f1:e6:81:67:03:fe:28:b1:68:f0:34:9d:a4:cf:ad: 8f:d7:9a:61:70:aa:66:73:84:03:66:36:12:10:f1: 28:5e:13:e7:03:bb:6e:cf:0a:6d:c0:58:cc:25:42: 54:a4:7e:bc:0e:4f:bc:30:60:60:c4:f6:ae:51:4f: 41:10:59:ff:ac:a2:10:98:2d:a5:e4:3d:89:72:82: 82:50:2e:51:ed:5c:83:d9:ad:51:cf:0e:c3:17:65: 0b:c1:13:02:cc:a7:26:eb:a8:fb:6f:8f:88:c2:57: ef:3a:ee:7c:c7:96:7c:0c:77:ac:8e:da:7f:74:6c: 14:8e:03:b2:b1:cd:88:2c:93:4d:de:34:ef:5a:82: 00:7e:06:77:b8:be:2e:b2:4a:d2:15:b0:1c:5e:1b: a4:2e:a4:7b:d3:b5:ea:4b:27:0c:21:70:70:e5:a5: e4:7f:75:89:be:de:de:15:89:05:9e:b2:63:f5:12: 0d:29:19:09:71:8f:c7:ee:55:47:dc:b9:66:38:b2: f7:50:2c:3f:ca:3a:d1:04:35:aa:49:40:be:df:d8: 53:3a:6a:3e:51:8c:ca:59:4c:3d:52:80:10:f1:cb: c5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:EC:EF:9B:EE:CF:AB:41:15:CB:94:D2:0A:7D:24:44:8F:E0:AA:7E X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:47:f9:f0:3d:ab:06:c9:8a:0c:06:32:49:40:e9:c5:71:8f: c5:77:a6:88:ba:2e:c8:52:2c:93:ad:2e:6b:ea:2b:b2:31:92: eb:fe:2a:3a:4c:b1:5a:44:f8:86:6c:6d:96:36:cd:d1:fd:c1: 8f:e5:5e:9e:2d:25:42:95:b7:65:4d:b4:a3:f5:99:06:27:11: 0f:a6:da:98:f0:6a:8b:4b:64:a8:96:ea:be:65:ee:17:e3:10: 2b:08:3e:68:e9:d1:33:bb:79:ce:9e:e8:c6:69:3e:65:e6:e7: 76:f9:82:37:62:ce:35:ca:7d:51:28:f1:12:11:4b:69:08:e1: e5:61:13:a8:73:34:1c:73:47:87:9c:6e:e7:92:b1:65:e9:74: 60:08:ce:ca:fe:5b:a4:2a:73:43:b5:d0:98:dc:12:76:c3:52: f4:1c:a3:a6:68:e9:fd:76:41:ae:b7:a7:67:83:fa:6f:02:38: c3:62:c4:04:f9:c3:bc:db:66:a8:d1:47:92:cb:30:d4:c8:6b: f9:00:0d:d9:88:e0:2b:00:1d:2e:98:e2:70:ae:14:e7:1a:85: e6:67:24:9d:66:be:14:88:6a:cb:75:4d:89:25:8d:80:c2:82: f1:e7:4e:9a:99:03:c3:ce:fd:8e:07:c5:0d:fc:db:84:83:ff: b7:0f:e8:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjYwNDE2MTY1MzAwWhcNMjYwNDIzMTY1MzAwWjAYMRYwFAYD VQQDEw02OWUxMTNlYy00ZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mEKgjsCmlwdf+SpzmeRlVvCMcwXmwl4fR7bld7x5oFnA/4osWjwNJ2kz62P 15phcKpmc4QDZjYSEPEoXhPnA7tuzwptwFjMJUJUpH68Dk+8MGBgxPauUU9BEFn/ rKIQmC2l5D2JcoKCUC5R7VyD2a1Rzw7DF2ULwRMCzKcm66j7b4+IwlfvOu58x5Z8 DHesjtp/dGwUjgOysc2ILJNN3jTvWoIAfgZ3uL4uskrSFbAcXhukLqR707XqSycM IXBw5aXkf3WJvt7eFYkFnrJj9RINKRkJcY/H7lVH3LlmOLL3UCw/yjrRBDWqSUC+ 39hTOmo+UYzKWUw9UoAQ8cvF0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDTs75vu z6tBFcuU0gp9JESP4Kp+MB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT0f58D2rBsmKDAYySUDpxXGPxXemiLouyFIsk60ua+orsjGS6/4qOkyxWkT4 hmxtljbN0f3Bj+Veni0lQpW3ZU20o/WZBicRD6bamPBqi0tkqJbqvmXuF+MQKwg+ aOnRM7t5zp7oxmk+ZebndvmCN2LONcp9USjxEhFLaQjh5WETqHM0HHNHh5xu55Kx Zel0YAjOyv5bpCpzQ7XQmNwSdsNS9Byjpmjp/XZBrrenZ4P6bwI4w2LEBPnDvNtm qNFHkssw1Mhr+QAN2YjgKwAdLpjicK4U5xqF5mcknWa+FIhqy3VNiSWNgMKC8edO mpkDw879jgfFDfzbhIP/tw/o9w== -----END CERTIFICATE-----Generated at Sat Apr 18 00:07:47 2026 by rpki-client