$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: VG4pADWtju8UtiBe8X0Uzj+DtnpBP8Jp3uedcVUc4Ns= Subject key identifier: 09:85:75:EA:04:5C:6F:5E:62:50:AD:C8:E6:1C:6A:D0:F7:CA:B5:3D Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: 01AB Signing time: Fri 17 Apr 2026 03:45:13 +0000 Manifest this update: Fri 17 Apr 2026 03:45:13 +0000 Manifest next update: Fri 24 Apr 2026 03:45:13 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: zD/1yJRPE24gpgyM81NeVm5G7YskQv4zyXsE6Y3DLwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: Apr 17 03:45:13 2026 GMT Not After : Apr 24 03:45:13 2026 GMT Subject: CN=69e1acc9-933f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e1:20:3b:5d:0e:36:d7:d1:75:63:9b:25:d0: d5:93:3a:fd:35:15:94:07:34:b0:46:1d:bf:3f:80: 6b:cf:07:86:99:e0:d9:ba:d1:c5:36:0c:89:98:4a: ff:06:57:40:52:a5:3f:3c:64:b5:41:10:69:8f:bd: d1:1b:9d:e6:4b:0b:aa:1a:a2:ac:79:51:05:0f:5b: b6:ea:89:07:e4:f2:4e:4b:23:22:62:42:67:12:15: 19:b3:42:dd:32:3d:2f:73:3c:85:1d:ef:22:0a:47: 78:f6:7d:3b:94:26:e1:d1:26:96:45:4d:9c:27:57: 0e:31:33:97:eb:04:f8:75:8e:f0:41:3b:ae:54:01: 76:92:8b:0e:23:50:54:a8:8c:e8:a5:11:7b:64:83: f1:cf:d2:78:25:ba:5a:ab:92:73:14:09:e5:73:e9: 1e:c2:f4:ec:12:fb:c2:59:03:55:0e:e1:e3:2a:ca: c9:e7:a0:49:02:60:6b:d4:4e:b3:8b:6d:f4:fe:70: 79:1c:a8:ae:4c:d7:10:94:34:bd:90:c0:f5:84:2f: b5:99:f5:e1:d4:df:c1:7b:95:56:9c:cb:f6:9f:e1: 00:22:b5:fa:92:f0:e5:6c:e7:78:40:14:3b:37:92: a2:25:60:53:ff:5b:1f:0c:f0:86:ec:67:45:4b:d3: b8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:85:75:EA:04:5C:6F:5E:62:50:AD:C8:E6:1C:6A:D0:F7:CA:B5:3D X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:14:94:07:af:94:81:bc:c6:01:cf:6f:08:d4:b5:d0:ea:45: 74:20:3a:73:d6:2b:70:43:98:4b:61:1c:ff:0f:08:7c:d9:5e: a1:94:9b:62:97:fe:67:2b:55:8f:e9:60:ae:98:7b:40:3c:06: 7f:31:89:51:64:b8:5b:b3:8f:1f:e5:6f:49:98:78:d2:56:55: e7:47:02:61:96:96:dd:0d:7b:58:bf:0f:5f:66:cb:e5:2a:18: 23:53:67:5d:23:bd:09:4f:32:58:fe:2a:cd:89:c9:b6:7c:d8: eb:81:ca:eb:32:be:4f:66:0c:a0:dc:3a:7c:89:3b:c6:7b:d6: 25:7d:86:34:7d:0b:56:25:91:6f:b7:fe:5d:3b:b5:54:3c:60: 99:c5:33:fa:dc:9b:2e:1e:08:7d:9c:12:34:0f:15:b8:14:c1: 4b:cd:21:23:57:e0:1f:a0:6d:f6:17:2a:70:53:24:57:bf:1d: 08:94:30:bb:20:71:c6:ae:be:b3:0e:7c:d6:c1:fa:a5:5e:42: 85:e6:f8:6a:6e:e9:19:e7:18:26:b0:53:1b:cc:3a:18:61:79: 78:b1:80:77:54:40:3e:77:42:f1:2e:0b:db:fa:c3:8c:ef:b3: d7:48:45:39:a3:af:1b:de:23:fa:2b:52:8d:c8:ed:d4:3f:08: ff:ea:89:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjYwNDE3MDM0NTEzWhcNMjYwNDI0MDM0NTEzWjAYMRYwFAYD VQQDEw02OWUxYWNjOS05MzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruEgO10ONtfRdWObJdDVkzr9NRWUBzSwRh2/P4BrzweGmeDZutHFNgyJmEr/ BldAUqU/PGS1QRBpj73RG53mSwuqGqKseVEFD1u26okH5PJOSyMiYkJnEhUZs0Ld Mj0vczyFHe8iCkd49n07lCbh0SaWRU2cJ1cOMTOX6wT4dY7wQTuuVAF2kosOI1BU qIzopRF7ZIPxz9J4Jbpaq5JzFAnlc+kewvTsEvvCWQNVDuHjKsrJ56BJAmBr1E6z i230/nB5HKiuTNcQlDS9kMD1hC+1mfXh1N/Be5VWnMv2n+EAIrX6kvDlbOd4QBQ7 N5KiJWBT/1sfDPCG7GdFS9O4EQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAmFdeoE XG9eYlCtyOYcatD3yrU9MB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcRSUB6+UgbzGAc9vCNS10OpFdCA6c9YrcEOYS2Ec/w8IfNleoZSbYpf+ZytV j+lgrph7QDwGfzGJUWS4W7OPH+VvSZh40lZV50cCYZaW3Q17WL8PX2bL5SoYI1Nn XSO9CU8yWP4qzYnJtnzY64HK6zK+T2YMoNw6fIk7xnvWJX2GNH0LViWRb7f+XTu1 VDxgmcUz+tybLh4IfZwSNA8VuBTBS80hI1fgH6Bt9hcqcFMkV78dCJQwuyBxxq6+ sw581sH6pV5Cheb4am7pGecYJrBTG8w6GGF5eLGAd1RAPndC8S4L2/rDjO+z10hF OaOvG94j+itSjcjt1D8I/+qJNg== -----END CERTIFICATE-----Generated at Fri Apr 17 09:24:28 2026 by rpki-client