$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: g6D//fm/NjvGIq+yaXLiOjzH8y3fpYTmTZnP1IX9bus= Subject key identifier: 70:B6:82:6F:7E:8B:A1:FD:BA:CE:2D:B3:69:2A:1E:D2:E9:9F:42:73 Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 0439 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 0431 Signing time: Fri 17 Apr 2026 00:14:59 +0000 Manifest this update: Fri 17 Apr 2026 00:14:59 +0000 Manifest next update: Fri 24 Apr 2026 00:14:59 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: kSBcG3iBgtZia/gXjBAAkZgDl9j+HYCXWJ1TgNp/n2o=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 0n2WFP3OGMlXX26nzPcGgu1jYPaSSjw1YClglsZ8Waw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Apr 17 00:14:59 2026 GMT Not After : Apr 24 00:14:59 2026 GMT Subject: CN=69e17b83-7f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:73:7b:2b:e5:68:dc:db:c5:7c:f1:63:a0:86: 95:f5:f0:9d:00:ba:b0:db:e8:d1:f3:ad:dc:b1:d0: 9a:96:fa:6b:88:7b:88:26:67:8e:5f:ed:d5:9e:e5: 52:fc:8e:89:c1:f7:cf:d7:14:f7:9f:8b:f2:5a:dc: 23:ec:7f:23:c6:c6:61:bc:92:af:9a:d9:0d:5b:30: ce:b8:40:5b:87:e1:91:61:6f:9c:47:49:62:0d:2a: 0d:7b:b3:5f:b0:42:f5:10:36:34:14:14:e9:a9:41: 2b:2c:30:7d:27:22:c8:b9:aa:fb:4b:32:2f:0d:fe: 41:5c:2c:5b:75:b6:97:85:17:35:08:41:d7:31:13: 13:85:56:a7:0d:6b:f0:83:33:b1:1a:8d:c1:79:df: 9b:05:c8:62:10:4f:e5:ab:59:03:24:3e:75:b7:30: 34:c1:ec:eb:63:ad:a1:40:0e:d7:fe:3e:70:7e:77: 0c:67:2a:d8:a4:e2:0e:90:10:1a:3c:cb:a9:cf:c9: af:60:30:8f:78:ff:9d:e7:7e:08:3d:11:e9:c2:5c: 10:88:6d:f3:35:50:d9:a9:94:2e:fe:6c:ec:e6:97: 30:04:51:12:d8:4b:2a:db:bb:89:82:4f:83:73:c8: bf:10:c9:0b:4c:b8:81:35:d0:ca:ea:fd:ac:ed:98: e3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B6:82:6F:7E:8B:A1:FD:BA:CE:2D:B3:69:2A:1E:D2:E9:9F:42:73 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:09:4c:4f:65:72:bc:31:81:ac:7e:d8:df:a6:5c:63:04:47: fd:4a:43:6d:6c:2d:77:45:b8:0a:3d:e5:82:4e:eb:04:83:02: 38:a4:07:9d:ee:75:98:80:ce:29:de:f5:1b:e1:4c:e6:d6:24: 1c:b1:79:ca:0a:7d:d0:11:5f:69:14:dd:fe:c6:55:1d:d4:9c: b4:42:72:f8:2e:fb:c6:d2:38:5d:fe:e8:0c:fa:31:f5:93:80: 61:d9:75:c7:1f:29:25:87:c3:40:44:91:5e:57:c7:35:cb:5d: 1a:b5:fc:fd:97:03:2b:4c:eb:f1:26:6a:c2:75:b6:32:f8:79: 61:bd:7f:72:b3:e5:d6:a5:c0:78:5d:19:31:e7:2c:3c:56:13: 1b:e3:f4:57:f4:a6:96:4d:8f:e1:2c:9c:45:b8:e1:29:5f:01: 98:3f:e7:17:33:b5:d9:4e:a0:4e:42:85:19:e0:98:5e:1c:ce: f5:b7:e8:2e:0b:88:c0:f6:73:6c:85:27:f9:d5:93:f8:34:af: bd:50:c5:15:df:2b:c9:c4:a3:5b:76:d2:a7:a6:b5:b7:49:90: ea:f7:7d:dc:f6:c8:2d:b4:7e:27:97:53:06:5c:7a:ff:e1:5d: 8d:9c:75:d4:f8:18:09:9a:94:50:3d:15:75:ac:ab:07:a2:cb: ad:bc:01:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjYwNDE3MDAxNDU5WhcNMjYwNDI0MDAxNDU5WjAYMRYwFAYD VQQDEw02OWUxN2I4My03ZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHN7K+Vo3NvFfPFjoIaV9fCdALqw2+jR863csdCalvpriHuIJmeOX+3VnuVS /I6JwffP1xT3n4vyWtwj7H8jxsZhvJKvmtkNWzDOuEBbh+GRYW+cR0liDSoNe7Nf sEL1EDY0FBTpqUErLDB9JyLIuar7SzIvDf5BXCxbdbaXhRc1CEHXMRMThVanDWvw gzOxGo3Bed+bBchiEE/lq1kDJD51tzA0wezrY62hQA7X/j5wfncMZyrYpOIOkBAa PMupz8mvYDCPeP+d534IPRHpwlwQiG3zNVDZqZQu/mzs5pcwBFES2Esq27uJgk+D c8i/EMkLTLiBNdDK6v2s7ZjjZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHC2gm9+ i6H9us4ts2kqHtLpn0JzMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArQlMT2VyvDGBrH7Y36ZcYwRH/UpDbWwtd0W4Cj3lgk7rBIMCOKQHne51mIDO Kd71G+FM5tYkHLF5ygp90BFfaRTd/sZVHdSctEJy+C77xtI4Xf7oDPox9ZOAYdl1 xx8pJYfDQESRXlfHNctdGrX8/ZcDK0zr8SZqwnW2Mvh5Yb1/crPl1qXAeF0ZMecs PFYTG+P0V/Smlk2P4SycRbjhKV8BmD/nFzO12U6gTkKFGeCYXhzO9bfoLguIwPZz bIUn+dWT+DSvvVDFFd8rycSjW3bSp6a1t0mQ6vd93PbILbR+J5dTBlx6/+FdjZx1 1PgYCZqUUD0VdayrB6LLrbwBIQ== -----END CERTIFICATE-----Generated at Fri Apr 17 06:55:03 2026 by rpki-client