$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: lkLfUVcPFKHUpZntSOENd2njAA7Qt6E+YvW1lzpjLwc= Subject key identifier: E1:D7:A3:EC:FD:63:C4:83:A6:1B:95:3B:1C:7E:6A:AA:0E:2A:5D:A7 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 07E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 07CE Signing time: Sat 18 Apr 2026 21:18:33 +0000 Manifest this update: Sat 18 Apr 2026 21:18:32 +0000 Manifest next update: Sat 25 Apr 2026 21:18:32 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: kt+OqoWmUN4TVjCQN7E3//ArJ9BZE+N2HpHjNUpM59Q=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: 2CcUX8OCn1/fmWn37MNKtyhofnamXBuWgD+4aT2Pu3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 21:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2024 (0x7e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Apr 18 21:18:32 2026 GMT Not After : Apr 25 21:18:32 2026 GMT Subject: CN=69e3f529-c480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:9a:31:06:6c:7e:3e:9f:4a:76:e2:05:ef:ef: 33:2b:b9:dc:ec:15:d8:f3:8b:dd:4c:0c:b4:c2:6d: 11:6f:35:a5:30:4f:dc:40:7e:f8:ac:16:1a:a1:60: 09:bc:64:31:dc:8e:72:4d:76:7b:58:fe:c2:93:65: a2:36:58:39:cd:d8:40:40:79:06:68:d0:0e:b3:af: 9c:b9:29:bb:fd:9f:fb:ad:31:23:5b:d2:0c:a4:7a: 3f:07:e2:a3:fb:f6:9f:c1:fc:1f:71:d7:f3:35:d2: 20:1c:bd:2d:bb:8a:ec:32:47:33:d8:9a:7c:1f:c8: f4:6c:e1:4d:ad:24:8b:49:bf:c1:9e:ca:d2:10:7f: fc:94:b4:4a:7c:21:8a:88:58:1d:ff:f6:cf:46:6b: 9f:89:58:14:bf:1c:57:79:fb:15:e1:af:80:37:f8: fa:1c:02:d4:60:60:24:9d:70:61:70:85:9e:d4:ec: 24:74:97:2d:f2:31:0d:74:34:41:da:4f:9b:4f:99: 05:29:d1:4d:ff:ce:0b:f0:27:5d:ec:cf:63:41:fa: 47:c4:af:46:de:48:13:3a:0c:bc:ef:ce:84:9c:40: 3e:4b:84:71:a9:8f:98:b4:ca:cd:da:8a:5f:89:08: a4:d9:69:80:1d:3b:31:07:75:ba:a1:97:5a:c2:5a: e3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D7:A3:EC:FD:63:C4:83:A6:1B:95:3B:1C:7E:6A:AA:0E:2A:5D:A7 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:5c:60:1c:f9:38:4c:ff:67:a2:d9:36:0d:e8:8d:50:c7:99: bd:83:e4:ee:52:1c:29:0a:0c:b0:54:1f:7c:05:45:3e:79:74: 33:cd:98:31:0b:50:e1:f9:66:f3:26:05:d3:45:8a:17:6a:72: 9c:44:56:6a:0f:fe:72:47:83:f1:7e:9a:b3:1b:46:58:f4:c2: bc:e8:3d:a5:f5:df:e1:e5:ec:7c:db:b7:2a:29:b3:21:a3:f5: 7f:7d:df:02:cd:ee:ca:20:3f:c4:e6:ab:cb:5f:10:18:19:d1: 16:2b:65:5d:2e:2a:5a:11:9b:c0:76:99:d5:3f:8a:ed:75:ab: 74:bc:2d:6b:22:75:dc:44:22:fb:3d:27:21:a0:c3:89:22:0a: 78:11:a8:71:9f:ec:32:51:d2:e7:57:75:16:da:6d:d6:08:7d: 68:29:59:11:ad:21:4c:cb:f6:09:41:c8:aa:9d:2a:d5:a3:19: 79:5a:b1:e0:3e:44:95:19:3b:3b:39:b9:bb:73:4c:2c:f3:49: a4:62:9c:1a:b7:ae:5d:db:c1:be:e5:a4:40:69:ae:68:b5:6f: ab:bc:5a:ca:2b:b3:2b:de:8d:4c:76:5e:c6:0d:c5:48:f6:0e: 90:10:9c:f0:b3:9e:fe:08:aa:0e:e7:66:d7:16:0d:e2:12:fe: 7e:5b:89:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjYwNDE4MjExODMyWhcNMjYwNDI1MjExODMyWjAYMRYwFAYD VQQDEw02OWUzZjUyOS1jNDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh5oxBmx+Pp9KduIF7+8zK7nc7BXY84vdTAy0wm0RbzWlME/cQH74rBYaoWAJ vGQx3I5yTXZ7WP7Ck2WiNlg5zdhAQHkGaNAOs6+cuSm7/Z/7rTEjW9IMpHo/B+Kj +/afwfwfcdfzNdIgHL0tu4rsMkcz2Jp8H8j0bOFNrSSLSb/BnsrSEH/8lLRKfCGK iFgd//bPRmufiVgUvxxXefsV4a+AN/j6HALUYGAknXBhcIWe1OwkdJct8jENdDRB 2k+bT5kFKdFN/84L8Cdd7M9jQfpHxK9G3kgTOgy8786EnEA+S4RxqY+YtMrN2opf iQik2WmAHTsxB3W6oZdawlrjlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOHXo+z9 Y8SDphuVOxx+aqoOKl2nMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjlxgHPk4TP9notk2DeiNUMeZvYPk7lIcKQoMsFQffAVFPnl0M82YMQtQ4flm 8yYF00WKF2pynERWag/+ckeD8X6asxtGWPTCvOg9pfXf4eXsfNu3KimzIaP1f33f As3uyiA/xOary18QGBnRFitlXS4qWhGbwHaZ1T+K7XWrdLwtayJ13EQi+z0nIaDD iSIKeBGocZ/sMlHS51d1Ftpt1gh9aClZEa0hTMv2CUHIqp0q1aMZeVqx4D5ElRk7 Ozm5u3NMLPNJpGKcGreuXdvBvuWkQGmuaLVvq7xayiuzK96NTHZexg3FSPYOkBCc 8LOe/giqDudm1xYN4hL+fluJog== -----END CERTIFICATE-----Generated at Sun Apr 19 11:32:06 2026 by rpki-client