$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: AcObHSeRYusF1hTV4GRH9lEZ56aMHkx7lajbyPoLQ2A= Subject key identifier: B1:24:4E:87:03:8A:53:92:8E:0C:03:27:23:B5:D7:9E:18:BA:CD:26 Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 01BE Signing time: Fri 17 Apr 2026 03:37:19 +0000 Manifest this update: Fri 17 Apr 2026 03:37:19 +0000 Manifest next update: Fri 24 Apr 2026 03:37:19 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: UxbOVJHvGAJJTckUZWCjTGc3vVXdHe9msK6JjibODJI=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: Y7CBsuQt9HIpYcN19tybRAYJs+zswt16vqxj5J0HE2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Apr 17 03:37:19 2026 GMT Not After : Apr 24 03:37:19 2026 GMT Subject: CN=69e1aaef-2374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:15:14:ca:14:d3:4f:a4:f5:6f:2c:72:b7:d4: 03:b7:3e:65:8f:02:a2:07:78:4b:dc:57:18:c5:8b: bc:ac:ee:b7:9b:25:da:c0:14:28:c2:32:8f:00:a6: f4:99:90:dc:0c:4a:db:97:00:8f:7e:b4:80:06:a7: 07:f9:4c:ed:09:6f:58:79:ee:2b:a2:48:17:cc:bb: 40:a8:62:2b:62:99:e6:f4:6a:a2:b6:1c:d9:5c:8b: bf:18:94:a6:58:40:bc:58:a7:5e:bb:e4:ed:1f:16: 94:d6:8e:85:db:63:ac:33:b1:86:8c:dc:50:ca:d6: 6d:b8:d1:02:fa:a4:3a:f7:af:1f:46:d9:72:41:f6: c0:42:88:b6:2e:8d:b5:b6:06:01:8a:60:11:4f:e7: 50:fe:a4:d0:57:be:ac:83:e9:34:6b:bd:fc:bf:c9: d5:3d:b7:a1:65:0d:35:13:eb:a7:15:87:03:92:d5: a6:06:59:1e:6a:33:20:40:e0:50:bb:f8:dc:df:34: bb:b7:ed:5d:29:a5:04:1d:ff:db:5a:3b:1b:ec:4f: 28:01:98:7b:db:ee:d0:d6:b1:88:fd:3f:ac:c2:18: c5:f7:e6:0b:ff:af:e7:08:80:51:9d:77:d4:97:3c: 89:91:24:56:4f:48:7e:97:7a:d0:b8:61:ee:ab:76: 4b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:24:4E:87:03:8A:53:92:8E:0C:03:27:23:B5:D7:9E:18:BA:CD:26 X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:61:ce:d6:0e:a2:e4:9d:93:a6:12:1e:fe:5e:c2:b1:7f:35: 1f:8e:f3:7d:02:ad:0a:f6:75:49:05:10:6f:21:0d:af:c9:91: c0:44:41:93:5e:2e:ed:06:ea:5d:b5:22:99:e3:bd:80:71:23: 2d:77:4e:c7:ef:4f:46:55:48:d3:bf:27:05:25:90:5d:da:fb: d2:5a:2e:c1:13:64:3c:81:8f:41:c6:fb:5d:c1:1d:b5:7f:a0: 20:cf:03:ca:36:1e:e7:ff:10:f3:6e:38:43:d1:72:b1:03:75: a4:11:95:f9:4e:79:c5:11:ac:68:17:bd:45:9f:69:06:fd:20: eb:74:00:14:f0:02:19:8f:3c:1e:97:02:c6:0b:0a:3e:6a:cc: 6f:cb:e6:b3:58:0b:96:e9:dc:8c:4f:6b:0c:35:cd:90:67:11: c3:a5:73:58:04:74:83:92:e7:64:03:0b:5b:c6:0f:a4:d4:8e: dc:d4:8d:4a:bb:9d:f1:e7:38:c8:59:70:74:7d:4f:f4:26:b6: 8f:8d:32:be:01:f3:e8:94:48:24:7e:43:61:35:e4:71:0a:6a: 77:48:c1:07:70:ad:7a:7c:fa:77:d7:7f:9e:d9:87:c0:9e:4b: 32:09:6e:0c:f7:7e:e3:ab:fe:f2:dd:d3:42:a7:82:b1:ad:9d: 04:51:6a:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjYwNDE3MDMzNzE5WhcNMjYwNDI0MDMzNzE5WjAYMRYwFAYD VQQDEw02OWUxYWFlZi0yMzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphUUyhTTT6T1byxyt9QDtz5ljwKiB3hL3FcYxYu8rO63myXawBQowjKPAKb0 mZDcDErblwCPfrSABqcH+UztCW9Yee4rokgXzLtAqGIrYpnm9GqithzZXIu/GJSm WEC8WKdeu+TtHxaU1o6F22OsM7GGjNxQytZtuNEC+qQ6968fRtlyQfbAQoi2Lo21 tgYBimART+dQ/qTQV76sg+k0a738v8nVPbehZQ01E+unFYcDktWmBlkeajMgQOBQ u/jc3zS7t+1dKaUEHf/bWjsb7E8oAZh72+7Q1rGI/T+swhjF9+YL/6/nCIBRnXfU lzyJkSRWT0h+l3rQuGHuq3ZLvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLEkTocD ilOSjgwDJyO1154Yus0mMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdWHO1g6i5J2TphIe/l7CsX81H47zfQKtCvZ1SQUQbyENr8mRwERBk14u7Qbq XbUimeO9gHEjLXdOx+9PRlVI078nBSWQXdr70louwRNkPIGPQcb7XcEdtX+gIM8D yjYe5/8Q8244Q9FysQN1pBGV+U55xRGsaBe9RZ9pBv0g63QAFPACGY88HpcCxgsK PmrMb8vms1gLluncjE9rDDXNkGcRw6VzWAR0g5LnZAMLW8YPpNSO3NSNSrud8ec4 yFlwdH1P9Ca2j40yvgHz6JRIJH5DYTXkcQpqd0jBB3Ctenz6d9d/ntmHwJ5LMglu DPd+46v+8t3TQqeCsa2dBFFqHg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:58:21 2026 by rpki-client