$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft File: KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft (raw, json) Hash identifier: lBucbZdhjQTkw1IVDzrfBpccuJaL82vzTKoFEoajdww= Subject key identifier: 62:88:91:38:CC:34:6F:71:D6:DD:D8:CC:57:D2:2A:A3:DB:DF:8F:AF Authority key identifier: 28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 Certificate issuer: /CN=A915FE9F/serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft Manifest number: AA Signing time: Fri 17 Apr 2026 07:05:33 +0000 Manifest this update: Fri 17 Apr 2026 07:05:32 +0000 Manifest next update: Fri 24 Apr 2026 07:05:32 +0000 Files and hashes: 1: KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl (hash: vVKmvwga/iY1xwDvXW+eA1TI0Dx/wvWwjVrCJQ/0eiU=) 2: BB593434FF3611F08F27381B8BEE528E.roa (hash: Qapce3etNilI3Pu8k6Dr7+sFyVw5LEh0sJqZNNrb7as=) 3: BA44C5C2FF3611F08F27381B8BEE528E.roa (hash: xTRiGomUlvw36ULHa1gsy9cQNKWIJENbJoJ/xOZCR7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE9F, serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Validity Not Before: Apr 17 07:05:32 2026 GMT Not After : Apr 24 07:05:32 2026 GMT Subject: CN=69e1dbbc-5a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a0:20:56:9c:2b:f0:ae:30:37:90:8d:99:3b: f6:35:25:c1:13:b2:ce:99:c6:ac:38:3f:a2:6c:ff: bc:9c:b0:53:2b:42:1c:ca:1d:61:68:9c:1d:8e:c3: e0:af:23:ac:43:fd:96:7d:73:11:b1:33:9b:dc:67: 56:02:46:1c:e2:16:9e:1d:59:4c:95:1a:03:bd:c3: e7:bc:29:e1:b0:d8:47:2f:6e:7d:d1:1e:d6:16:85: 8f:f9:bc:d6:0b:9c:70:93:a2:2d:d1:25:81:29:12: ca:c2:03:72:f9:06:4e:d0:e3:ce:a5:ce:b9:4a:b3: 3d:14:e4:14:54:6f:35:8e:2f:6b:93:94:8d:64:ee: b4:dd:24:51:17:d9:56:68:24:b0:d3:5f:cc:f7:91: a8:43:75:cb:e4:32:d3:a2:d3:f9:13:5a:50:49:f8: 9f:44:4d:16:fb:1b:4d:ff:9b:5d:1d:dd:06:f7:34: 23:d7:09:76:a2:b1:fa:43:6f:11:c5:0e:64:f8:39: 8b:a1:83:e2:91:bb:52:e6:81:41:29:b7:de:56:56: f9:6c:38:de:cf:34:09:b9:a8:b5:ed:b3:41:31:69: 9a:0b:f1:7b:89:76:f1:02:aa:06:17:3d:d4:1d:da: f2:88:44:f8:86:57:1c:c1:9a:95:38:30:47:15:0e: d7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:88:91:38:CC:34:6F:71:D6:DD:D8:CC:57:D2:2A:A3:DB:DF:8F:AF X509v3 Authority Key Identifier: keyid:28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:1a:8c:3b:be:e9:7f:db:2a:67:9b:e3:8d:1c:bf:9d:52:45: 7b:bb:44:1a:58:ca:1e:90:f7:4a:98:30:3c:e9:a4:cf:b2:ee: b0:63:31:46:92:a9:3f:17:1b:07:fa:d8:bf:d8:83:8d:9f:2a: 41:ad:b0:5d:9b:ed:f0:0e:19:9e:d0:78:63:af:2d:4d:b1:22: 53:68:a9:30:b1:6c:53:02:33:c9:24:94:06:1a:16:e1:9f:80: b8:14:61:7e:cb:06:03:6b:c7:82:72:9e:41:50:85:c0:56:00: a7:7b:0b:65:4e:ec:4c:15:94:ad:bd:b0:d4:3e:8c:8e:68:5b: 7c:93:c0:20:7b:00:22:e1:ea:97:33:b9:96:a0:ab:c6:d8:14: 5f:ae:c4:4d:51:a5:fb:0d:a7:6c:fe:fa:6c:70:6c:22:f3:2a: 0b:19:be:16:eb:e0:82:e8:c4:56:10:e9:8f:15:5c:62:0c:ec: 3a:71:e9:d9:59:01:ea:b2:0f:3f:f1:b9:54:56:80:48:00:f4: f7:ff:f0:78:e5:93:59:74:32:95:5c:73:ed:7f:1d:34:29:b6: 93:77:10:d9:b6:95:ed:37:ce:67:1e:50:f7:52:75:f3:ed:01: b9:f3:78:ab:cc:92:ef:c1:8e:8f:f4:5c:97:ee:67:d5:a0:6b: 43:39:85:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFOUYxMTAvBgNVBAUTKDI4REFEOEQ0Q0M2Rjc0MEZBMDAwRDQzNjg2OUFFMEYx NzZFQUU5MzMwHhcNMjYwNDE3MDcwNTMyWhcNMjYwNDI0MDcwNTMyWjAYMRYwFAYD VQQDEw02OWUxZGJiYy01YTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaAgVpwr8K4wN5CNmTv2NSXBE7LOmcasOD+ibP+8nLBTK0Icyh1haJwdjsPg ryOsQ/2WfXMRsTOb3GdWAkYc4haeHVlMlRoDvcPnvCnhsNhHL2590R7WFoWP+bzW C5xwk6It0SWBKRLKwgNy+QZO0OPOpc65SrM9FOQUVG81ji9rk5SNZO603SRRF9lW aCSw01/M95GoQ3XL5DLTotP5E1pQSfifRE0W+xtN/5tdHd0G9zQj1wl2orH6Q28R xQ5k+DmLoYPikbtS5oFBKbfeVlb5bDjezzQJuai17bNBMWmaC/F7iXbxAqoGFz3U HdryiET4hlccwZqVODBHFQ7XPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGKIkTjM NG9x1t3YzFfSKqPb34+vMB8GA1UdIwQYMBaAFCja2NTMb3QPoADUNoaa4PF26ukz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkU5Ri8yMzAyNzEyNDUx NzAxMUYwQjlEQkNCODdDNEY5QUUwMi9LTnJZMU14dmRBLWdBTlEyaHByZzhYYnE2 VE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOclkxTXh2ZEEtZ0FOUTJocHJnOFhicTZUTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkU5Ri8yMzAyNzEyNDUxNzAxMUYwQjlEQkNCODdDNEY5QUUwMi9LTnJZMU14dmRB LWdBTlEyaHByZzhYYnE2VE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlxqMO77pf9sqZ5vjjRy/nVJFe7tEGljKHpD3SpgwPOmkz7LusGMxRpKpPxcb B/rYv9iDjZ8qQa2wXZvt8A4ZntB4Y68tTbEiU2ipMLFsUwIzySSUBhoW4Z+AuBRh fssGA2vHgnKeQVCFwFYAp3sLZU7sTBWUrb2w1D6MjmhbfJPAIHsAIuHqlzO5lqCr xtgUX67ETVGl+w2nbP76bHBsIvMqCxm+FuvggujEVhDpjxVcYgzsOnHp2VkB6rIP P/G5VFaASAD09//weOWTWXQylVxz7X8dNCm2k3cQ2baV7TfOZx5Q91J18+0BufN4 q8yS78GOj/Rcl+5n1aBrQzmFvQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:42:36 2026 by rpki-client