$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: UXebZ+ELAWKQ4Trsyl3F1qERbfP+dEBqtBcs5ZbjUBU= Subject key identifier: FD:44:C3:79:AD:C7:6C:74:7E:AC:09:68:63:73:2C:ED:1E:21:95:0E Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: CD Signing time: Fri 17 Apr 2026 06:31:04 +0000 Manifest this update: Fri 17 Apr 2026 06:31:02 +0000 Manifest next update: Fri 24 Apr 2026 06:31:02 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: D/y12VlOWcf1U4kw/mdyocXfw5TX8SlS7K5JHV0TpH8=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: xg+5Kz8DfP64v+0K6uLKgS3hlywm1P1UwcX/Q9P2caM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Apr 17 06:31:02 2026 GMT Not After : Apr 24 06:31:02 2026 GMT Subject: CN=69e1d3a8-b155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:83:f5:03:09:16:b1:4f:65:8e:e2:97:54:8e: 5b:e7:0a:44:c8:20:6c:fb:68:e8:8a:9d:51:ad:8c: b2:eb:64:18:66:01:04:56:41:9d:92:fe:2f:de:ff: e7:52:b5:d2:d9:30:4f:8c:ec:12:01:e0:9e:94:aa: f9:30:06:d3:b3:78:d6:cf:7e:20:b7:f5:6d:05:ec: 99:45:d5:95:88:41:2b:89:44:1f:48:c1:c6:41:27: 10:bc:5a:64:74:e6:1d:a8:97:03:d6:eb:45:4a:b0: 8f:4c:05:91:69:78:a1:6f:1d:52:e5:dd:cd:95:8c: d2:32:8f:cb:5c:be:c8:22:78:77:ae:9f:bc:6d:4c: 66:9e:ff:6e:0e:45:7d:16:28:63:06:53:9c:cd:e0: fb:88:af:cb:93:ea:77:ee:a5:4c:1e:1e:54:38:90: 72:3b:d2:47:2e:10:ea:70:0e:f3:f3:0d:a8:63:92: 4c:35:6c:f1:d5:a4:14:af:4f:a2:1e:9d:1f:17:d1: f6:68:db:d1:3b:3b:60:b5:49:fe:13:32:2b:64:bc: 78:33:3d:6d:11:65:43:04:e8:23:41:44:3f:69:05: e3:d6:8f:ec:ec:25:13:e7:a3:b4:9e:75:31:03:c0: ba:2b:4b:84:fc:88:19:d6:92:93:23:68:ff:4b:69: 84:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:44:C3:79:AD:C7:6C:74:7E:AC:09:68:63:73:2C:ED:1E:21:95:0E X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:10:fa:31:44:c9:03:01:29:81:1f:49:dc:1e:cd:f4:e9:26: e7:56:5f:a6:a6:53:69:3b:8d:c9:06:a9:2d:64:63:2a:a8:50: 38:f5:53:a1:30:a4:fb:97:ec:f0:0b:8c:38:a0:21:a2:bc:8b: 2b:ad:c6:f7:0d:c2:ef:19:2b:f6:47:2c:a1:6d:a4:9c:1b:20: 50:6d:dc:68:08:99:8c:52:dc:07:40:78:47:88:82:52:ba:ef: b5:0b:ff:b5:06:76:d9:33:b0:cd:71:d4:ad:4f:14:4e:31:e3: a6:cc:e1:cc:56:2d:9e:f5:0b:92:c5:ca:58:c8:02:b7:fe:58: 07:20:3c:31:c7:c6:f0:ba:21:d8:0e:48:11:55:03:7e:7b:59: da:75:ae:45:46:2a:fe:18:79:75:71:66:ae:58:e2:ae:f7:82: c5:00:cc:fe:3a:1a:56:8b:3d:aa:57:d6:6c:c4:db:d6:03:cb: a0:73:ea:0a:c2:39:85:5b:c1:0d:e2:df:99:70:48:f8:3a:7b: dc:0c:20:b4:ae:62:c6:26:5e:8a:9c:b9:1a:37:fd:4f:e5:d3: 6d:44:b7:01:87:ef:e4:85:dc:85:fd:51:1b:8b:ff:92:77:5b: 4e:52:9a:c2:dd:c1:17:db:5b:4c:83:d6:1c:c9:11:63:89:d0: 07:da:7c:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyODcxMTAvBgNVBAUTKDJBNDVBNDFENjBFMkYxMDREM0REMzlDODZGMTRCQzU5 MDA4ODNGNEIwHhcNMjYwNDE3MDYzMTAyWhcNMjYwNDI0MDYzMTAyWjAYMRYwFAYD VQQDEw02OWUxZDNhOC1iMTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4P1AwkWsU9ljuKXVI5b5wpEyCBs+2joip1RrYyy62QYZgEEVkGdkv4v3v/n UrXS2TBPjOwSAeCelKr5MAbTs3jWz34gt/VtBeyZRdWViEEriUQfSMHGQScQvFpk dOYdqJcD1utFSrCPTAWRaXihbx1S5d3NlYzSMo/LXL7IInh3rp+8bUxmnv9uDkV9 FihjBlOczeD7iK/Lk+p37qVMHh5UOJByO9JHLhDqcA7z8w2oY5JMNWzx1aQUr0+i Hp0fF9H2aNvROztgtUn+EzIrZLx4Mz1tEWVDBOgjQUQ/aQXj1o/s7CUT56O0nnUx A8C6K0uE/IgZ1pKTI2j/S2mE7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP1Ew3mt x2x0fqwJaGNzLO0eIZUOMB8GA1UdIwQYMBaAFCpFpB1g4vEE0905yG8UvFkAiD9L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI4Ny8zNzI3OEMxNjA0 NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThRVFQzVG5JYnhTOFdRQ0lQ MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI4Ny8zNzI3OEMxNjA0NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThR VFQzVG5JYnhTOFdRQ0lQMHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaBD6MUTJAwEpgR9J3B7N9Okm51ZfpqZTaTuNyQapLWRjKqhQOPVToTCk+5fs 8AuMOKAhoryLK63G9w3C7xkr9kcsoW2knBsgUG3caAiZjFLcB0B4R4iCUrrvtQv/ tQZ22TOwzXHUrU8UTjHjpszhzFYtnvULksXKWMgCt/5YByA8McfG8Loh2A5IEVUD fntZ2nWuRUYq/hh5dXFmrljirveCxQDM/joaVos9qlfWbMTb1gPLoHPqCsI5hVvB DeLfmXBI+Dp73AwgtK5ixiZeipy5Gjf9T+XTbUS3AYfv5IXchf1RG4v/kndbTlKa wt3BF9tbTIPWHMkRY4nQB9p8bw== -----END CERTIFICATE-----Generated at Fri Apr 17 15:39:21 2026 by rpki-client