$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: jzipHmfc/Cb2cilIrEPa8XztydWOLVNBzoN0GAGLDVE= Subject key identifier: FD:42:A0:D0:74:8F:DD:4B:5F:2D:BE:89:E0:95:03:D1:71:EB:74:92 Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 01F3 Signing time: Fri 17 Apr 2026 02:58:35 +0000 Manifest this update: Fri 17 Apr 2026 02:58:34 +0000 Manifest next update: Fri 24 Apr 2026 02:58:34 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: 7nLgc/woxL2GQOz5IrMXH71aXmGIHr6ymWsoIJ6ZgqY=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: Lf5S48RM+H6jGhhi+lkOyHY5YBcAJOA0fAYnMQrcmBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Apr 17 02:58:34 2026 GMT Not After : Apr 24 02:58:34 2026 GMT Subject: CN=69e1a1da-748a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a1:6f:25:4c:0f:69:9c:02:c1:bd:f0:fe:52: f0:d6:87:81:18:a0:43:55:f7:19:21:79:81:d3:c1: 2b:fa:a7:b3:20:0b:32:82:4c:6f:3c:89:fa:5a:a4: ee:00:9d:8e:da:69:4e:42:82:43:0c:30:40:4c:e5: 47:e6:a1:a8:29:4c:fa:ac:de:5e:b0:b1:f2:4c:63: 5e:30:68:db:20:4f:2b:1d:9f:1a:ae:4a:e7:7d:21: 8d:81:40:57:c4:c3:5d:0f:14:d2:91:de:c3:03:42: c4:e7:83:96:51:8f:d9:25:2b:80:5e:75:99:ed:32: 1f:21:56:d1:09:34:73:11:e8:8e:fb:25:18:27:4b: 77:7a:ed:52:e1:fa:51:f9:b1:e6:f5:15:a4:b0:37: 58:9b:91:ef:05:b0:60:74:18:17:26:f7:b3:07:e6: a9:21:d4:48:75:5b:a3:ab:19:08:a2:1e:ca:49:35: fb:02:19:a2:09:9d:55:e3:ba:50:c2:60:fd:72:f9: d5:32:ed:a3:0c:fe:be:fd:a3:7e:19:a7:45:7e:f6: ab:9f:dd:17:8a:7d:31:2b:bb:18:30:7a:9c:c1:5d: f1:da:c0:4b:89:3f:5a:88:ff:e6:5a:8c:43:b2:ef: 54:f2:1a:94:eb:b2:ac:1d:d6:fe:7d:6b:60:57:f5: bf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:42:A0:D0:74:8F:DD:4B:5F:2D:BE:89:E0:95:03:D1:71:EB:74:92 X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:16:89:f9:8a:d0:d1:f4:2b:ac:06:1d:59:d7:d6:3a:8b:7a: f5:99:60:1b:d6:42:f4:84:04:60:13:41:6d:2f:34:26:fb:24: ae:fe:4a:92:3e:ac:3a:2d:ff:c9:71:79:b0:5a:71:5f:af:87: 7c:68:5a:c4:d0:99:c5:cf:af:36:a4:e4:fa:ef:b3:9e:68:ee: c7:e1:0a:71:aa:a5:e7:8b:4d:2c:08:8f:dd:03:4c:aa:2b:b8: b8:c9:20:97:07:02:06:0b:39:66:fe:07:38:51:81:51:b5:b8: 62:03:a3:54:b4:6c:21:7e:d4:c5:2f:fa:5a:77:fa:13:1e:73: 8e:2b:9b:f8:75:9f:c7:a3:cd:43:c5:84:02:de:7d:13:c6:fb: 37:d9:12:73:63:d0:03:2b:24:42:63:8a:b9:df:f7:29:34:09: ff:ac:1a:6d:f3:d0:73:a2:9b:f6:87:38:7d:49:dc:90:a9:25: ba:59:09:f6:0c:5c:f5:d1:27:79:e3:e3:10:62:8c:06:57:b5: 4b:8e:d7:12:33:7a:ef:2c:4b:50:e2:f4:2e:f1:31:bd:73:52: 46:10:97:8c:03:6d:6a:6d:ff:2e:ba:10:e4:8d:41:10:4d:53: c2:93:50:a7:77:5a:59:68:83:84:1d:4d:e7:d9:18:c4:5a:59: 38:75:c3:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjYwNDE3MDI1ODM0WhcNMjYwNDI0MDI1ODM0WjAYMRYwFAYD VQQDEw02OWUxYTFkYS03NDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6FvJUwPaZwCwb3w/lLw1oeBGKBDVfcZIXmB08Er+qezIAsygkxvPIn6WqTu AJ2O2mlOQoJDDDBATOVH5qGoKUz6rN5esLHyTGNeMGjbIE8rHZ8arkrnfSGNgUBX xMNdDxTSkd7DA0LE54OWUY/ZJSuAXnWZ7TIfIVbRCTRzEeiO+yUYJ0t3eu1S4fpR +bHm9RWksDdYm5HvBbBgdBgXJvezB+apIdRIdVujqxkIoh7KSTX7AhmiCZ1V47pQ wmD9cvnVMu2jDP6+/aN+GadFfvarn90Xin0xK7sYMHqcwV3x2sBLiT9aiP/mWoxD su9U8hqU67KsHdb+fWtgV/W/GwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP1CoNB0 j91LXy2+ieCVA9Fx63SSMB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAghaJ+YrQ0fQrrAYdWdfWOot69ZlgG9ZC9IQEYBNBbS80Jvskrv5Kkj6sOi3/ yXF5sFpxX6+HfGhaxNCZxc+vNqTk+u+znmjux+EKcaql54tNLAiP3QNMqiu4uMkg lwcCBgs5Zv4HOFGBUbW4YgOjVLRsIX7UxS/6Wnf6Ex5zjiub+HWfx6PNQ8WEAt59 E8b7N9kSc2PQAyskQmOKud/3KTQJ/6wabfPQc6Kb9oc4fUnckKklulkJ9gxc9dEn eePjEGKMBle1S47XEjN67yxLUOL0LvExvXNSRhCXjANtam3/LroQ5I1BEE1TwpNQ p3daWWiDhB1N59kYxFpZOHXDCw== -----END CERTIFICATE-----Generated at Fri Apr 17 10:31:11 2026 by rpki-client