$ rpki-client -vvf rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft File: KcmzN9Z7DxREgXmLTVsNc9eIrys.mft (raw, json) Hash identifier: QhMMrZ02SkBMjsHxkUizfx6FWyb3QhaPc2n8TB4p3Gs= Subject key identifier: BD:72:79:FC:61:75:72:31:77:46:F2:DA:4A:47:C4:B6:EE:31:13:9B Authority key identifier: 29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B Certificate issuer: /CN=A91608B2/serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft Manifest number: A1 Signing time: Sun 19 Apr 2026 06:55:13 +0000 Manifest this update: Sun 19 Apr 2026 06:55:13 +0000 Manifest next update: Sun 26 Apr 2026 06:55:13 +0000 Files and hashes: 1: KcmzN9Z7DxREgXmLTVsNc9eIrys.crl (hash: sImuvvfqRc0GXxlqilAdDL2Y8F/tDmGQfdVowVQoTN4=) 2: 13B4125A4A5311F08B06EF0FC4F9AE02.roa (hash: YZdUm7+WLurwEjDF7nwXv0d6iTCyzNott8Mq+jpg6ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91608B2, serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Validity Not Before: Apr 19 06:55:13 2026 GMT Not After : Apr 26 06:55:13 2026 GMT Subject: CN=69e47c51-c33d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5b:e3:f9:0a:ed:b6:92:6f:5e:49:9d:15:97: ac:ec:59:b0:61:d2:c8:3b:b6:78:8d:0d:21:df:b8: 92:aa:ae:6f:f2:6b:d1:48:c7:25:a0:13:21:66:b5: 93:29:85:a4:62:07:ef:34:ad:f6:6f:b5:c1:33:5c: 38:7d:b1:cf:bc:16:ae:cb:5c:27:16:fd:89:0e:94: 25:bd:ea:e3:fd:88:74:83:16:11:84:27:7f:3e:53: 78:03:6f:e8:85:67:59:3c:86:24:61:23:41:13:4b: ad:32:4d:61:c5:7a:a8:ea:2e:a6:9f:9f:dd:46:65: c9:8b:80:58:da:06:7d:79:00:3c:8a:4a:e7:ad:1d: 40:6a:a6:a9:73:ae:5d:ac:47:b5:99:fc:e3:3e:ba: be:7f:1c:d1:34:24:80:85:4e:8c:a6:c6:e3:c4:15: b9:79:1f:e9:6b:2e:cb:65:40:5d:cf:b0:49:67:bb: 19:75:6f:47:f0:53:0b:2d:f3:fd:d4:12:f2:c0:b1: 5a:31:00:1f:d4:88:7d:71:72:7d:41:63:ac:03:bd: 16:2a:d7:71:6b:f9:e6:4b:67:8a:0a:f8:3e:dd:e6: 79:5f:ee:2c:25:c6:51:81:6a:d2:88:27:11:7b:6a: 45:53:e6:6e:e0:d7:54:ce:fd:a9:fc:03:86:d9:70: 1a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:72:79:FC:61:75:72:31:77:46:F2:DA:4A:47:C4:B6:EE:31:13:9B X509v3 Authority Key Identifier: keyid:29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:03:1a:35:6f:88:8a:78:dd:c0:5b:57:09:53:14:90:e9:63: d0:17:a4:a6:a5:e5:f9:4c:83:57:39:5b:fb:9f:f4:85:f2:61: 2b:63:d6:df:eb:f2:09:b4:6d:cf:63:07:d4:e9:52:b5:26:b9: 13:ff:6c:ef:55:21:7c:cd:88:47:ad:b9:7b:fd:96:bd:da:19: c3:47:ae:69:eb:23:c4:24:69:d3:48:07:fd:f2:df:33:76:83: cc:be:76:50:4c:df:29:18:a8:57:56:d4:b8:be:55:78:f4:28: ce:42:6b:c7:51:04:1c:37:92:0c:a8:9f:bd:a3:07:74:98:e0: 5b:15:c7:1f:8e:73:95:b4:27:57:31:fc:91:bf:54:3c:d5:99: 4e:b4:2f:fd:61:86:ee:ae:2f:21:c2:8d:b5:17:7a:c9:d4:36: b4:74:9d:b8:bb:45:2a:a0:3d:30:43:97:a1:17:94:24:64:3d: bc:6b:cb:cd:b3:73:87:e3:cd:18:97:36:13:b2:35:ee:a3:77: a9:a4:b5:b6:fc:52:44:42:77:ea:49:52:bc:a2:b0:fc:01:b6: c7:c1:75:d9:45:71:93:f3:58:91:6c:a9:79:6b:90:d5:8c:c4: 67:f2:50:fa:04:97:9b:c0:43:db:40:21:ea:09:28:c2:be:88: cf:24:eb:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA4QjIxMTAvBgNVBAUTKDI5QzlCMzM3RDY3QjBGMTQ0NDgxNzk4QjRENUIwRDcz RDc4OEFGMkIwHhcNMjYwNDE5MDY1NTEzWhcNMjYwNDI2MDY1NTEzWjAYMRYwFAYD VQQDEw02OWU0N2M1MS1jMzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Fvj+QrttpJvXkmdFZes7FmwYdLIO7Z4jQ0h37iSqq5v8mvRSMcloBMhZrWT KYWkYgfvNK32b7XBM1w4fbHPvBauy1wnFv2JDpQlverj/Yh0gxYRhCd/PlN4A2/o hWdZPIYkYSNBE0utMk1hxXqo6i6mn5/dRmXJi4BY2gZ9eQA8ikrnrR1Aaqapc65d rEe1mfzjPrq+fxzRNCSAhU6MpsbjxBW5eR/pay7LZUBdz7BJZ7sZdW9H8FMLLfP9 1BLywLFaMQAf1Ih9cXJ9QWOsA70WKtdxa/nmS2eKCvg+3eZ5X+4sJcZRgWrSiCcR e2pFU+Zu4NdUzv2p/AOG2XAaiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL1yefxh dXIxd0by2kpHxLbuMRObMB8GA1UdIwQYMBaAFCnJszfWew8URIF5i01bDXPXiK8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDhCMi9DOTVBNDlBRTRB NTIxMUYwOTg5RDcwMEZDNEY5QUUwMi9LY216TjlaN0R4UkVnWG1MVFZzTmM5ZUly eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tjbXpOOVo3RHhSRWdYbUxUVnNOYzllSXJ5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDhCMi9DOTVBNDlBRTRBNTIxMUYwOTg5RDcwMEZDNEY5QUUwMi9LY216TjlaN0R4 UkVnWG1MVFZzTmM5ZUlyeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVwMaNW+IinjdwFtXCVMUkOlj0BekpqXl+UyDVzlb+5/0hfJhK2PW3+vyCbRt z2MH1OlStSa5E/9s71UhfM2IR625e/2WvdoZw0euaesjxCRp00gH/fLfM3aDzL52 UEzfKRioV1bUuL5VePQozkJrx1EEHDeSDKifvaMHdJjgWxXHH45zlbQnVzH8kb9U PNWZTrQv/WGG7q4vIcKNtRd6ydQ2tHSduLtFKqA9MEOXoReUJGQ9vGvLzbNzh+PN GJc2E7I17qN3qaS1tvxSREJ36klSvKKw/AG2x8F12UVxk/NYkWypeWuQ1YzEZ/JQ +gSXm8BD20Ah6gkowr6IzyTrog== -----END CERTIFICATE-----Generated at Sun Apr 19 10:16:16 2026 by rpki-client