$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft File: KYEeHbBovbur-3q2lfhYmL1hjGk.mft (raw, json) Hash identifier: P24giQzer9x/vSh2cXKo0uQj5PVNpNZrHuT4xRXdJpg= Subject key identifier: 29:3C:D1:E5:A3:D7:30:51:D2:A4:A9:CD:8C:1F:45:7A:84:F7:9F:EA Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft Manifest number: 01DA Signing time: Fri 17 Apr 2026 03:17:06 +0000 Manifest this update: Fri 17 Apr 2026 03:17:05 +0000 Manifest next update: Fri 24 Apr 2026 03:17:05 +0000 Files and hashes: 1: KYEeHbBovbur-3q2lfhYmL1hjGk.crl (hash: D3WzwrgAH+XZTikBQP5zkjZs+halhkd5fZg28FsfVhk=) 2: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (hash: JE3YkqQWW9mSMDDOp1/CYkJud9Wxp8btHEMRgajpDV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: Apr 17 03:17:05 2026 GMT Not After : Apr 24 03:17:05 2026 GMT Subject: CN=69e1a631-4392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6b:f0:70:62:e6:e9:1a:a6:4b:94:43:57:2c: ba:05:13:c0:f4:15:14:1c:46:e4:59:19:2f:92:cd: 4d:c2:fe:2b:45:2a:6b:1e:ab:b0:2b:6a:af:ca:23: f4:eb:77:93:18:92:e7:90:c4:92:f1:e1:6d:ec:de: d6:83:c3:7b:5b:10:67:01:00:67:2b:42:80:78:28: c2:05:45:e1:89:77:30:ac:5f:94:99:40:9d:3c:e7: 7f:e2:ae:43:65:77:dd:12:7d:19:f8:86:fe:b3:08: cd:1f:91:48:41:55:a4:02:1b:9c:8e:ce:50:7e:c6: cd:89:eb:ce:6a:54:d8:9f:71:68:a8:3f:d6:02:cb: 87:f7:1a:38:98:f2:ac:01:f5:77:42:2c:68:83:0f: 36:71:99:29:bc:38:1c:67:8a:02:88:4b:3e:ac:fd: 2a:f8:86:18:7a:ef:08:33:c6:f0:77:a4:04:04:62: 18:64:f1:49:ed:af:88:b1:a1:41:0b:b1:49:e2:2b: 62:84:c6:fd:1c:c4:0c:0b:3f:82:f5:f3:d8:ae:5a: fb:4b:08:52:a1:cb:7c:34:8a:42:42:03:ca:ad:51: f0:f9:85:f4:6f:f9:bf:86:b6:c9:30:b1:59:3d:29: 10:02:db:1b:14:62:bb:1a:1c:e3:ad:b0:1c:05:31: b7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3C:D1:E5:A3:D7:30:51:D2:A4:A9:CD:8C:1F:45:7A:84:F7:9F:EA X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:9d:d5:02:41:96:d1:2e:ca:01:15:03:e5:4b:a2:75:8f:84: 1a:ce:ce:c0:e1:01:95:ed:2a:8b:52:4d:11:41:05:1b:88:7d: 0f:61:8e:da:07:f6:b0:29:77:04:97:ff:cf:4e:a5:40:54:3d: bf:3b:9f:e5:95:58:3a:4b:4f:5e:cc:97:54:f1:39:8c:58:3a: f4:2e:1e:3f:d3:31:c4:88:01:eb:f8:af:64:53:52:4d:87:d4: ab:6f:fe:9a:36:aa:e1:a9:9b:1a:25:97:95:ba:49:77:de:f7: 75:91:fc:ea:9f:d8:c2:d1:45:83:4f:4f:b1:c4:76:12:19:15: b0:26:6e:d8:3d:eb:4d:c7:ea:3d:b3:0d:c5:d1:75:aa:68:df: d6:00:dc:66:3a:00:38:e0:5b:53:b7:4a:6d:7b:c7:76:1e:4d: 8a:40:f5:fa:11:1a:9a:a8:6a:02:c4:2b:12:3b:13:c7:14:ce: aa:fa:ab:7e:96:e7:22:0f:06:05:ca:ac:5a:2b:fe:33:c7:57: 36:35:1b:50:08:03:07:f0:cb:8b:87:ac:3a:db:2f:ac:9d:82: ee:21:ad:5a:97:1a:82:ed:e8:ef:51:74:12:fe:c7:f1:c9:eb: 69:a9:84:01:83:d3:8c:1a:91:99:13:9b:c3:1a:f3:62:3e:4d: bc:33:54:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjYwNDE3MDMxNzA1WhcNMjYwNDI0MDMxNzA1WjAYMRYwFAYD VQQDEw02OWUxYTYzMS00MzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52vwcGLm6RqmS5RDVyy6BRPA9BUUHEbkWRkvks1Nwv4rRSprHquwK2qvyiP0 63eTGJLnkMSS8eFt7N7Wg8N7WxBnAQBnK0KAeCjCBUXhiXcwrF+UmUCdPOd/4q5D ZXfdEn0Z+Ib+swjNH5FIQVWkAhucjs5QfsbNievOalTYn3FoqD/WAsuH9xo4mPKs AfV3Qixogw82cZkpvDgcZ4oCiEs+rP0q+IYYeu8IM8bwd6QEBGIYZPFJ7a+IsaFB C7FJ4itihMb9HMQMCz+C9fPYrlr7SwhSoct8NIpCQgPKrVHw+YX0b/m/hrbJMLFZ PSkQAtsbFGK7GhzjrbAcBTG3OQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCk80eWj 1zBR0qSpzYwfRXqE95/qMB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MENBRS83QzY0NEVFNjZBNzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3Zi dXItM3EybGZoWW1MMWhqR2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApp3VAkGW0S7KARUD5UuidY+EGs7OwOEBle0qi1JNEUEFG4h9D2GO2gf2sCl3 BJf/z06lQFQ9vzuf5ZVYOktPXsyXVPE5jFg69C4eP9MxxIgB6/ivZFNSTYfUq2/+ mjaq4ambGiWXlbpJd973dZH86p/YwtFFg09PscR2EhkVsCZu2D3rTcfqPbMNxdF1 qmjf1gDcZjoAOOBbU7dKbXvHdh5NikD1+hEamqhqAsQrEjsTxxTOqvqrfpbnIg8G BcqsWiv+M8dXNjUbUAgDB/DLi4esOtsvrJ2C7iGtWpcagu3o71F0Ev7H8cnraamE AYPTjBqRmRObwxrzYj5NvDNUqQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:38:25 2026 by rpki-client