$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: BI6UpiNE4FCCHtDX6xTOzTquYW+Asndlo0JJeSwbHEQ= Subject key identifier: 66:B6:11:C6:7C:C2:8A:48:A6:16:05:E7:01:E5:1B:CF:42:39:C1:85 Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 06DA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 06D3 Signing time: Thu 16 Apr 2026 21:54:20 +0000 Manifest this update: Thu 16 Apr 2026 21:54:20 +0000 Manifest next update: Thu 23 Apr 2026 21:54:20 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: SmwVPnKQ7AVoehc6CijctjMYu92RBg7cS9Rf+53TIlU=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: l4uYU+uPf8JPateYFt5+JYWdyGHASfl72ELVvU8+Sso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Apr 16 21:54:20 2026 GMT Not After : Apr 23 21:54:20 2026 GMT Subject: CN=69e15a8c-5005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:70:7b:06:4a:d3:09:14:60:dc:56:14:e2:2b: 07:55:6a:49:84:1a:9d:6f:23:e8:69:64:11:d1:63: 26:f3:1e:c1:80:ed:99:2d:56:f4:cf:64:c3:47:20: 59:b5:96:3b:68:ad:0e:fe:a5:d2:0c:d0:b4:b5:f0: 50:62:73:f8:e4:20:0b:a9:4d:fa:c8:a4:26:20:74: 4b:3b:60:34:10:a7:6e:e3:6e:ab:31:b5:cc:cc:90: 31:f6:f0:38:ae:03:be:e0:4f:0d:07:de:18:39:7c: b3:7b:88:00:e5:7f:c2:88:c7:62:8e:0d:db:5a:21: 3f:37:03:fc:53:28:56:6f:d2:3b:ee:6d:64:e2:c4: cf:8a:ec:a5:d4:0e:7b:4c:1e:69:a3:5e:1a:b1:98: b2:6a:d6:0f:b7:09:16:1e:f0:60:2a:50:64:19:81: 10:d7:86:22:ac:d4:cd:45:74:ab:13:ba:15:5f:fa: d7:e4:be:c2:a0:e4:14:14:57:33:c3:eb:07:c6:ac: 45:a3:82:17:54:bf:72:d6:02:d7:df:5f:60:fd:b0: 1d:34:1c:49:10:ba:af:c8:b2:33:cb:3a:d5:00:1b: 4a:54:c5:3f:5a:01:01:78:06:8d:09:60:30:20:e8: 62:1d:93:79:7f:ab:72:a9:ee:2c:a3:df:24:7e:d1: 93:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B6:11:C6:7C:C2:8A:48:A6:16:05:E7:01:E5:1B:CF:42:39:C1:85 X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:a1:ae:44:4f:55:8a:d0:b6:1d:76:2f:5e:27:ca:b9:d3:10: e5:68:03:ef:df:ae:ae:04:e2:95:3f:e1:b1:b0:f6:df:1c:e1: d1:3b:de:c8:72:ab:17:1d:3f:00:68:ea:2c:05:99:9d:32:f1: 8e:99:b7:61:dd:56:28:85:23:2a:e8:80:24:ca:5a:78:79:d7: 0e:62:ef:23:8d:59:ad:20:3c:b9:e9:3f:83:e8:63:ec:e6:61: 35:28:7c:20:28:20:9c:7f:85:33:da:16:cc:69:ce:67:1f:da: dd:0b:b9:1a:09:57:8d:c6:d6:ec:39:7b:38:69:7f:29:43:65: 00:73:14:c3:fd:9f:a2:0e:76:01:5d:cb:8a:61:27:03:a5:61: 99:59:f9:85:c0:72:92:5b:1c:7e:c5:12:b0:0b:11:2f:6c:e2: 32:49:b9:e5:5c:ee:89:be:3a:6c:7d:d5:9e:9f:8c:11:12:8e: 99:1c:e9:a6:92:e7:fd:35:92:9c:45:1c:c1:8c:df:25:be:8b: ec:7d:43:dc:de:8b:39:2d:42:c5:7a:3f:68:8b:0e:3d:41:7d: 0f:36:e5:c4:44:2d:1a:07:c2:0b:07:5e:7d:0a:cf:7d:50:5f: 85:92:36:05:be:9a:93:bc:f4:f8:09:2d:d7:37:58:72:b5:27: 3c:01:b6:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjYwNDE2MjE1NDIwWhcNMjYwNDIzMjE1NDIwWjAYMRYwFAYD VQQDEw02OWUxNWE4Yy01MDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXB7BkrTCRRg3FYU4isHVWpJhBqdbyPoaWQR0WMm8x7BgO2ZLVb0z2TDRyBZ tZY7aK0O/qXSDNC0tfBQYnP45CALqU36yKQmIHRLO2A0EKdu426rMbXMzJAx9vA4 rgO+4E8NB94YOXyze4gA5X/CiMdijg3bWiE/NwP8UyhWb9I77m1k4sTPiuyl1A57 TB5po14asZiyatYPtwkWHvBgKlBkGYEQ14YirNTNRXSrE7oVX/rX5L7CoOQUFFcz w+sHxqxFo4IXVL9y1gLX319g/bAdNBxJELqvyLIzyzrVABtKVMU/WgEBeAaNCWAw IOhiHZN5f6tyqe4so98kftGTlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGa2EcZ8 wopIphYF5wHlG89COcGFMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIaGuRE9VitC2HXYvXifKudMQ5WgD79+urgTilT/hsbD23xzh0TveyHKrFx0/ AGjqLAWZnTLxjpm3Yd1WKIUjKuiAJMpaeHnXDmLvI41ZrSA8uek/g+hj7OZhNSh8 ICggnH+FM9oWzGnOZx/a3Qu5GglXjcbW7Dl7OGl/KUNlAHMUw/2fog52AV3LimEn A6VhmVn5hcByklscfsUSsAsRL2ziMkm55Vzuib46bH3Vnp+MERKOmRzpppLn/TWS nEUcwYzfJb6L7H1D3N6LOS1CxXo/aIsOPUF9DzblxEQtGgfCCwdefQrPfVBfhZI2 Bb6ak7z0+Akt1zdYcrUnPAG28w== -----END CERTIFICATE-----Generated at Fri Apr 17 04:06:42 2026 by rpki-client