$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: tacajZNXWExE9/hLc2Md0MHoAH4HwSOhKg80X9V4Xj8= Subject key identifier: 27:14:C0:C5:91:6E:7B:FA:0B:9B:73:63:24:94:B2:BA:FD:57:22:18 Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: F0 Signing time: Fri 17 Apr 2026 06:02:17 +0000 Manifest this update: Fri 17 Apr 2026 06:02:16 +0000 Manifest next update: Fri 24 Apr 2026 06:02:16 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: BQOXmltknccKiBFHmi910+1M/ESVrb9C1vlyWaj/zQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Apr 17 06:02:16 2026 GMT Not After : Apr 24 06:02:16 2026 GMT Subject: CN=69e1cce9-aa96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cb:b7:ec:4a:24:72:e2:09:bd:4f:d6:50:9a: f3:f5:0a:67:a7:f0:16:c6:55:da:eb:b1:10:11:5f: 3f:48:69:48:90:4b:64:73:0b:a3:d9:f9:0b:95:70: 1b:96:50:e2:fb:f0:a7:cf:a1:1b:54:33:8d:05:30: 47:3f:db:cd:4a:b8:ff:39:a2:06:fe:fd:9e:b6:43: f3:74:60:9e:4a:fb:99:28:59:3b:89:d6:84:c0:4b: b8:80:ce:3d:e9:18:75:b6:2f:d6:9c:c4:be:57:27: 29:a0:d3:04:93:40:98:33:ad:b2:0d:f1:f2:a7:b0: 0a:19:ae:9d:ae:1f:a1:db:b0:7b:40:1f:2b:56:4d: 67:78:bb:68:46:88:30:b3:ca:c7:ce:51:18:81:c3: 6d:53:7e:8e:93:3f:df:55:fb:bf:f7:93:2e:ec:05: 60:bb:50:75:c2:dd:b3:11:ca:ce:63:cf:5b:36:09: 1f:52:75:62:32:31:55:38:56:48:b3:32:6d:aa:d2: 0a:3e:0f:10:1b:f3:02:4c:f0:ae:f2:c1:bf:5b:18: eb:40:bb:a7:2d:02:2b:40:f9:9a:cd:28:fa:e2:20: e3:10:fb:68:61:3d:ce:d5:bb:88:8c:af:3a:02:e6: 86:a5:09:08:68:54:5b:af:7b:fc:b1:d2:55:8f:37: 23:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:14:C0:C5:91:6E:7B:FA:0B:9B:73:63:24:94:B2:BA:FD:57:22:18 X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:50:bf:80:db:d5:f9:fe:68:30:cc:4d:97:a7:38:4a:48:39: 40:49:1e:d1:ff:80:d3:df:ad:ea:4f:25:14:d5:a9:93:31:6b: c5:51:8c:af:c1:20:71:8d:76:6e:2c:93:a5:c1:1a:cd:70:70: 84:20:d5:18:d5:5a:4b:33:01:fa:6a:ed:c9:79:70:e3:e4:33: 28:cc:fc:89:b9:8b:f2:b7:96:08:65:af:ff:63:2d:15:87:08: c5:40:ca:5e:13:db:5d:42:49:3d:59:17:53:81:a7:47:d2:f0: a0:6a:18:84:68:43:37:d5:30:c6:6f:23:35:44:f3:19:29:ec: dc:85:cb:13:6d:23:53:05:bc:47:69:95:ff:7e:ad:42:31:f0: 78:f8:b8:42:f1:55:b4:99:8a:c6:a1:26:c0:2b:52:66:dd:32: 36:cf:1a:5b:8c:a9:9c:06:22:a1:ae:2d:ea:fc:26:2a:a5:c4: 1a:84:4a:55:52:d5:b8:23:4e:b3:8a:58:dd:91:d8:25:db:9b: 07:f0:40:d0:44:36:20:f8:f4:80:78:a5:eb:78:66:3a:6a:fb: 2a:9e:a7:cb:a5:ba:f7:88:8f:31:53:27:6d:af:27:ce:9f:4c: 68:a1:2a:c4:0b:34:4f:78:bd:7a:59:33:f9:ef:54:b7:27:4a: af:f3:d1:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzNzcxMTAvBgNVBAUTKDkwODBEQjUwRkYwQjc0M0ZGQTMyQjc5RDBERDVDMzE5 MDIxRDZFMjQwHhcNMjYwNDE3MDYwMjE2WhcNMjYwNDI0MDYwMjE2WjAYMRYwFAYD VQQDEw02OWUxY2NlOS1hYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcu37EokcuIJvU/WUJrz9Qpnp/AWxlXa67EQEV8/SGlIkEtkcwuj2fkLlXAb llDi+/Cnz6EbVDONBTBHP9vNSrj/OaIG/v2etkPzdGCeSvuZKFk7idaEwEu4gM49 6Rh1ti/WnMS+VycpoNMEk0CYM62yDfHyp7AKGa6drh+h27B7QB8rVk1neLtoRogw s8rHzlEYgcNtU36Okz/fVfu/95Mu7AVgu1B1wt2zEcrOY89bNgkfUnViMjFVOFZI szJtqtIKPg8QG/MCTPCu8sG/WxjrQLunLQIrQPmazSj64iDjEPtoYT3O1buIjK86 AuaGpQkIaFRbr3v8sdJVjzcjaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCcUwMWR bnv6C5tzYySUsrr9VyIYMB8GA1UdIwQYMBaAFJCA21D/C3Q/+jK3nQ3VwxkCHW4k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTM3Ny9GM0M0NEE3OEND NTgxMUVGOTk5ODVEODZDNEY5QUUwMi9rSURiVVA4TGREXzZNcmVkRGRYREdRSWRi aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTM3Ny9GM0M0NEE3OENDNTgxMUVGOTk5ODVEODZDNEY5QUUwMi9rSURiVVA4TGRE XzZNcmVkRGRYREdRSWRiaVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwlC/gNvV+f5oMMxNl6c4Skg5QEke0f+A09+t6k8lFNWpkzFrxVGMr8EgcY12 biyTpcEazXBwhCDVGNVaSzMB+mrtyXlw4+QzKMz8ibmL8reWCGWv/2MtFYcIxUDK XhPbXUJJPVkXU4GnR9LwoGoYhGhDN9Uwxm8jNUTzGSns3IXLE20jUwW8R2mV/36t QjHwePi4QvFVtJmKxqEmwCtSZt0yNs8aW4ypnAYioa4t6vwmKqXEGoRKVVLVuCNO s4pY3ZHYJdubB/BA0EQ2IPj0gHil63hmOmr7Kp6ny6W694iPMVMnba8nzp9MaKEq xAs0T3i9elkz+e9UtydKr/PRLQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:02:21 2026 by rpki-client