$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: lNrqgoOTJ5UIRgMefCfXJ5uMy0rbNYNtUh64xh0SuW8= Subject key identifier: BA:03:4F:6A:97:60:D5:95:99:8A:E2:DA:40:6A:27:CA:FC:58:10:BD Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 0279 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 025D Signing time: Fri 17 Apr 2026 02:11:00 +0000 Manifest this update: Fri 17 Apr 2026 02:10:59 +0000 Manifest next update: Fri 24 Apr 2026 02:10:59 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: rbxMafu1c1+mKUvzEeJfIW+Y0EY6dkh7X5Fd3KIl7qw=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: G5wyunrhNPZHL5dnU3YCTVm9J7AtwfPqbQe5Aa4DplE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Apr 17 02:10:59 2026 GMT Not After : Apr 24 02:10:59 2026 GMT Subject: CN=69e196b4-c642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:30:1a:47:b2:1f:4c:49:52:c7:0f:b8:63:a4: 01:75:71:1f:2e:06:2b:6b:99:68:7c:a8:66:31:3a: 8a:6b:01:ea:66:13:3d:78:82:4b:34:9c:27:9f:66: 98:4f:98:78:31:b5:8c:94:f9:c4:e5:e4:e0:28:8d: 29:66:11:f6:a1:96:3d:ca:e7:c5:4a:d2:e0:23:92: d2:4e:80:6f:70:d8:e6:24:ea:11:b4:65:c2:15:32: 1d:1b:e5:bc:f8:2e:f1:a4:b4:6b:0f:b0:3a:2c:49: 91:31:68:f2:72:18:75:0e:53:cb:bb:49:c8:c0:e0: dc:28:a1:59:fc:73:bd:2c:0e:b7:6c:70:f4:85:01: 0a:8a:29:6b:0d:df:50:e6:50:19:f3:75:2f:a3:15: 18:23:74:ac:e2:a8:2a:8d:53:e9:b0:15:86:ae:8b: 2f:b9:4c:ee:d7:75:ad:4b:87:7e:be:ec:0e:a1:5d: c7:5a:aa:9d:97:74:61:51:3f:1a:86:bf:9a:5e:c1: 8b:b2:11:5c:77:ec:22:23:6f:84:9e:e2:6a:9b:e8: 8f:b9:05:45:15:86:7b:3a:45:06:55:c5:42:5d:47: ac:95:3e:8c:99:42:55:e1:af:26:40:2b:9c:6e:dd: 5c:2b:23:c1:05:2f:31:b8:fe:a1:90:45:26:87:9b: f4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:03:4F:6A:97:60:D5:95:99:8A:E2:DA:40:6A:27:CA:FC:58:10:BD X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f5:78:8c:1e:8a:57:ed:30:a6:68:13:81:f9:21:35:7d:63: b0:7f:a2:c5:1f:bb:47:03:cc:72:b0:6e:ce:cf:f2:25:d9:8a: d9:f7:63:05:31:a3:ee:64:15:63:01:a4:a2:9a:50:9c:d3:bb: 80:a0:3e:dc:fc:fc:d7:de:c3:b6:06:d1:a5:d1:54:30:bd:3f: 45:6e:be:86:21:40:97:25:34:58:21:51:33:da:b5:a9:4c:7c: a2:3e:03:94:1d:8b:d5:45:7e:de:8c:ff:13:ce:19:20:53:c1: 40:47:f1:62:8c:27:62:48:1f:ca:09:9e:fd:02:15:a3:68:12: d2:ca:bb:c9:14:e7:17:61:23:e4:5b:74:36:23:39:df:d8:90: 6f:0a:87:88:b4:55:b9:94:42:99:8e:30:fa:73:d8:07:52:97: fc:44:80:00:dc:cc:5a:cb:cc:68:05:24:f0:b7:85:ba:38:02: 64:48:46:1a:07:e6:d7:d9:c6:8b:c7:7e:bc:57:a1:70:5b:21: 50:4d:55:3e:88:72:4d:be:7a:17:13:54:1c:4e:a0:de:c1:e7: 8c:3b:bd:8d:50:b2:17:08:97:c2:a4:a9:2e:ff:46:48:ed:e3: 61:09:af:0f:21:9f:12:e9:39:20:de:f7:f1:ae:ad:84:7e:54: 3e:32:83:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjYwNDE3MDIxMDU5WhcNMjYwNDI0MDIxMDU5WjAYMRYwFAYD VQQDEw02OWUxOTZiNC1jNjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTAaR7IfTElSxw+4Y6QBdXEfLgYra5lofKhmMTqKawHqZhM9eIJLNJwnn2aY T5h4MbWMlPnE5eTgKI0pZhH2oZY9yufFStLgI5LSToBvcNjmJOoRtGXCFTIdG+W8 +C7xpLRrD7A6LEmRMWjychh1DlPLu0nIwODcKKFZ/HO9LA63bHD0hQEKiilrDd9Q 5lAZ83UvoxUYI3Ss4qgqjVPpsBWGrosvuUzu13WtS4d+vuwOoV3HWqqdl3RhUT8a hr+aXsGLshFcd+wiI2+EnuJqm+iPuQVFFYZ7OkUGVcVCXUeslT6MmUJV4a8mQCuc bt1cKyPBBS8xuP6hkEUmh5v0uwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLoDT2qX YNWVmYri2kBqJ8r8WBC9MB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmfV4jB6KV+0wpmgTgfkhNX1jsH+ixR+7RwPMcrBuzs/yJdmK2fdjBTGj7mQV YwGkoppQnNO7gKA+3Pz8197DtgbRpdFUML0/RW6+hiFAlyU0WCFRM9q1qUx8oj4D lB2L1UV+3oz/E84ZIFPBQEfxYownYkgfygme/QIVo2gS0sq7yRTnF2Ej5Ft0NiM5 39iQbwqHiLRVuZRCmY4w+nPYB1KX/ESAANzMWsvMaAUk8LeFujgCZEhGGgfm19nG i8d+vFehcFshUE1VPohyTb56FxNUHE6g3sHnjDu9jVCyFwiXwqSpLv9GSO3jYQmv DyGfEuk5IN738a6thH5UPjKDgQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:53:07 2026 by rpki-client