$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: SdoZf1JW9YqQBrzKcTlFGjkMFT/oZZHV1af52fzQV0k= Subject key identifier: A5:AE:58:87:7F:B2:8B:6A:08:22:08:D5:D6:30:7D:32:69:F2:DD:A6 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 10B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 109C Signing time: Thu 16 Apr 2026 17:16:57 +0000 Manifest this update: Thu 16 Apr 2026 17:16:56 +0000 Manifest next update: Thu 23 Apr 2026 17:16:56 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: 7d8L+4lXEf2fkxRcOT3iJY76fc5V7fwyTUbre/1c97c=) 2: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: vMIdusdjtj9hlcGq2gI+hsj/mLp2lRpI2Yrz/QIdsz8=) 3: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: xjuxHTm+G9he/JFBNF/J7ScezC0X5PCaznrRtGeATtQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4273 (0x10b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Apr 16 17:16:56 2026 GMT Not After : Apr 23 17:16:56 2026 GMT Subject: CN=69e11989-163e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2f:6e:09:dc:5c:97:ad:5a:ec:8d:45:c6:cd: 3d:91:35:04:c5:d9:61:58:85:e5:0c:c2:ba:8b:0f: 70:7e:f2:56:ef:6b:2a:bd:11:d0:fa:f9:92:99:4e: 4a:84:80:bf:f0:47:69:df:58:e4:ee:cf:28:df:92: b7:b4:d6:1a:91:13:70:46:c7:fe:d2:33:32:41:4a: da:ac:43:57:21:68:59:24:93:be:fd:3d:b5:fd:4f: 96:9a:38:8b:76:f1:de:11:3a:24:65:1f:ae:af:d5: 00:98:17:17:80:09:07:c5:d9:c0:94:b0:75:87:30: 47:bb:8c:ab:02:e9:ef:47:70:a8:05:84:b7:93:93: 20:9d:c5:4c:41:09:86:c0:10:c0:c2:af:02:1b:25: ef:3e:0e:76:17:02:46:d5:a5:11:8a:ce:fc:35:1e: 33:f9:4f:79:ff:4f:06:bc:58:c3:55:eb:0c:42:78: a0:1b:04:40:41:67:fe:e8:7c:cb:e9:f0:f6:60:74: 04:91:e7:75:2d:4c:b6:f6:64:6e:1b:4a:86:6a:d6: df:7c:60:dc:0f:79:0c:08:1f:dc:ab:85:50:cd:93: 84:c6:70:cf:8f:50:b8:dd:3e:0c:db:82:15:49:4f: e8:1a:a9:db:b9:78:a5:83:75:49:a6:81:fb:c5:84: 0f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AE:58:87:7F:B2:8B:6A:08:22:08:D5:D6:30:7D:32:69:F2:DD:A6 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:26:2b:5b:3d:f4:2a:2a:dd:a5:33:83:f7:c9:29:9a:eb:fe: bf:0e:91:ee:2b:4a:97:4a:c9:24:65:b3:e6:54:73:64:89:97: 93:72:76:00:16:b4:1e:51:1b:02:36:04:44:90:b4:07:ea:e1: fc:8b:bf:a5:2e:6e:2b:fa:bf:03:d7:0b:d1:2b:fc:39:02:a0: 3b:4e:12:8a:b1:85:2d:b5:71:5d:dd:33:68:6f:65:ac:2a:36: 4b:b0:00:be:35:d8:06:e5:28:7b:8e:bd:ea:44:17:f7:ad:b4: 74:fb:fa:83:1e:f2:a6:79:af:af:a1:cc:cc:98:1f:3e:0d:65: 34:e5:ee:21:e4:42:68:51:00:b8:58:94:47:94:1e:0d:06:09: 3a:2d:82:46:f4:b6:ee:a9:83:a8:88:a3:6e:3e:6c:55:2a:a2: cd:84:5a:bc:52:93:76:57:c6:20:c6:e7:06:5e:dd:b9:58:5e: 4c:ba:74:66:e2:85:01:a4:9c:af:e2:39:74:42:65:e2:ca:da: 28:88:60:f9:1c:22:ad:d6:4e:b1:a7:71:50:d2:ad:28:3d:af: 38:f3:00:a6:06:bf:bd:58:1f:a0:d3:86:e5:b1:b5:3e:ab:2f: 27:8a:0a:10:7c:0d:ec:a7:53:b3:8b:49:66:8d:08:cd:34:04: 36:26:1d:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICELEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjYwNDE2MTcxNjU2WhcNMjYwNDIzMTcxNjU2WjAYMRYwFAYD VQQDEw02OWUxMTk4OS0xNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqy9uCdxcl61a7I1Fxs09kTUExdlhWIXlDMK6iw9wfvJW72sqvRHQ+vmSmU5K hIC/8Edp31jk7s8o35K3tNYakRNwRsf+0jMyQUrarENXIWhZJJO+/T21/U+WmjiL dvHeETokZR+ur9UAmBcXgAkHxdnAlLB1hzBHu4yrAunvR3CoBYS3k5MgncVMQQmG wBDAwq8CGyXvPg52FwJG1aURis78NR4z+U95/08GvFjDVesMQnigGwRAQWf+6HzL 6fD2YHQEked1LUy29mRuG0qGatbffGDcD3kMCB/cq4VQzZOExnDPj1C43T4M24IV SU/oGqnbuXilg3VJpoH7xYQP2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKWuWId/ sotqCCII1dYwfTJp8t2mMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARSYrWz30KirdpTOD98kpmuv+vw6R7itKl0rJJGWz5lRzZImXk3J2ABa0HlEb AjYERJC0B+rh/Iu/pS5uK/q/A9cL0Sv8OQKgO04SirGFLbVxXd0zaG9lrCo2S7AA vjXYBuUoe4696kQX9620dPv6gx7ypnmvr6HMzJgfPg1lNOXuIeRCaFEAuFiUR5Qe DQYJOi2CRvS27qmDqIijbj5sVSqizYRavFKTdlfGIMbnBl7duVheTLp0ZuKFAaSc r+I5dEJl4sraKIhg+RwirdZOsadxUNKtKD2vOPMApga/vVgfoNOG5bG1PqsvJ4oK EHwN7KdTs4tJZo0IzTQENiYdKQ== -----END CERTIFICATE-----Generated at Fri Apr 17 16:46:10 2026 by rpki-client