$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft File: kN_cE0DUTo_iVh19jeSe71QGEII.mft (raw, json) Hash identifier: 0GF+K6HQMcX7gHdbMs2kWoOBAGGZkYV539eW8ZHZaMY= Subject key identifier: 65:E5:3B:FD:9B:86:9A:1E:AC:7B:6D:81:F3:89:D4:6E:B4:65:32:5B Authority key identifier: 90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 Certificate issuer: /CN=A91C9C05/serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Certificate serial: 352E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft Manifest number: 352C Signing time: Sat 18 Apr 2026 15:14:43 +0000 Manifest this update: Sat 18 Apr 2026 15:14:43 +0000 Manifest next update: Sat 25 Apr 2026 15:14:43 +0000 Files and hashes: 1: kN_cE0DUTo_iVh19jeSe71QGEII.crl (hash: qnqfIHKe+mlRd/Ky4X18YkqYdWjBXmzW+H7XSLt0bl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 15:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13614 (0x352e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C05, serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Validity Not Before: Apr 18 15:14:43 2026 GMT Not After : Apr 25 15:14:43 2026 GMT Subject: CN=69e39fe3-7919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4e:03:38:4c:6d:61:23:f7:8c:53:16:a0:8c: 9c:22:35:96:0e:ab:b7:ab:a7:af:e4:14:33:0b:5d: f4:a3:6e:41:ca:73:6f:5b:6d:dd:b4:13:22:3a:64: e3:40:3d:8f:c8:09:94:60:df:53:5f:83:40:53:17: bb:22:8f:f5:c2:2d:ca:06:b4:0f:3c:51:f7:cf:28: 86:3d:78:30:07:68:14:73:d5:d2:60:93:49:c0:18: a4:6d:41:f6:42:c9:61:3b:64:1a:a9:ba:ff:92:99: 9b:5e:0b:28:e1:7d:fe:dd:2f:b7:6e:f0:3a:01:6c: 5a:ed:06:2a:d1:9c:a3:06:a6:3c:05:eb:08:8a:6f: 1e:1e:f4:cb:56:58:5d:a1:71:0d:cb:c5:38:13:bc: 59:c8:c4:db:82:c4:5d:81:c0:6c:ac:8f:f0:28:ba: a0:44:08:c5:0b:d4:29:1b:72:f7:5e:ec:9b:a4:9c: 20:f2:77:c9:9f:38:a9:a1:d9:20:4b:0f:22:80:71: 4f:53:7e:df:fc:c5:3a:a2:f8:9c:18:62:ff:a6:fe: 9b:1c:6c:6f:52:a5:66:3d:63:cf:09:69:a2:1b:fd: 3a:e3:f5:b8:93:25:dd:20:19:41:24:cb:97:40:10: 02:22:e1:80:31:75:30:87:71:8d:a8:48:94:c0:7f: 90:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E5:3B:FD:9B:86:9A:1E:AC:7B:6D:81:F3:89:D4:6E:B4:65:32:5B X509v3 Authority Key Identifier: keyid:90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:dd:c1:bb:6b:d0:aa:f3:23:ff:3f:5d:3a:15:74:4e:02:30: 34:b1:84:be:c2:e0:63:82:c6:3a:a0:56:0e:42:50:45:d2:8d: 5e:58:b4:16:4b:41:27:fa:72:a5:42:e8:3a:cb:43:b3:86:16: 81:ec:c3:4d:12:89:1c:6d:67:e1:3b:6a:e2:d5:d3:07:89:fd: df:9d:21:9c:cc:a1:58:24:94:7e:3d:f9:c9:9d:68:46:b5:3d: 7d:66:0c:3c:9b:eb:d5:90:e3:08:00:e6:85:7c:8e:57:a3:83: 4d:a0:6b:91:9c:ce:2c:45:7f:83:f4:82:a5:cc:7d:b8:38:9e: e1:b2:63:6d:83:a3:95:be:44:5d:ce:bd:bf:88:3c:11:28:49: 4a:7f:b9:b8:22:59:8e:ee:a0:da:08:76:f0:4b:13:68:38:95: b4:f5:51:f9:88:0f:e3:f4:bd:00:86:59:f2:7e:26:12:bc:ae: 04:10:2f:ba:dc:f4:fc:6e:aa:da:d4:51:64:03:69:c6:ff:e4: 70:df:24:3e:d3:78:f2:67:57:be:a7:73:4c:33:89:26:c0:a4: b5:98:a8:10:4e:5c:f1:f0:0b:21:f6:d0:9f:61:4a:35:03:d5: df:a1:90:89:39:e6:84:57:06:bf:e6:3e:44:69:df:81:8f:f7: 9b:0c:46:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDUxMTAvBgNVBAUTKDkwREZEQzEzNDBENDRFOEZFMjU2MUQ3RDhERTQ5RUVG NTQwNjEwODIwHhcNMjYwNDE4MTUxNDQzWhcNMjYwNDI1MTUxNDQzWjAYMRYwFAYD VQQDEw02OWUzOWZlMy03OTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArk4DOExtYSP3jFMWoIycIjWWDqu3q6ev5BQzC130o25BynNvW23dtBMiOmTj QD2PyAmUYN9TX4NAUxe7Io/1wi3KBrQPPFH3zyiGPXgwB2gUc9XSYJNJwBikbUH2 QslhO2Qaqbr/kpmbXgso4X3+3S+3bvA6AWxa7QYq0ZyjBqY8BesIim8eHvTLVlhd oXENy8U4E7xZyMTbgsRdgcBsrI/wKLqgRAjFC9QpG3L3XuybpJwg8nfJnzipodkg Sw8igHFPU37f/MU6ovicGGL/pv6bHGxvUqVmPWPPCWmiG/064/W4kyXdIBlBJMuX QBACIuGAMXUwh3GNqEiUwH+QtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGXlO/2b hpoerHttgfOJ1G60ZTJbMB8GA1UdIwQYMBaAFJDf3BNA1E6P4lYdfY3knu9UBhCC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwNS9FOUQ5QTAyMjFE QUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRvX2lWaDE5amVTZTcxUUdF SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOX2NFMERVVG9faVZoMTlqZVNlNzFRR0VJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwNS9FOUQ5QTAyMjFEQUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRv X2lWaDE5amVTZTcxUUdFSUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhd3Bu2vQqvMj/z9dOhV0TgIwNLGEvsLgY4LGOqBWDkJQRdKNXli0FktBJ/py pULoOstDs4YWgezDTRKJHG1n4Ttq4tXTB4n9350hnMyhWCSUfj35yZ1oRrU9fWYM PJvr1ZDjCADmhXyOV6ODTaBrkZzOLEV/g/SCpcx9uDie4bJjbYOjlb5EXc69v4g8 EShJSn+5uCJZju6g2gh28EsTaDiVtPVR+YgP4/S9AIZZ8n4mEryuBBAvutz0/G6q 2tRRZANpxv/kcN8kPtN48mdXvqdzTDOJJsCktZioEE5c8fALIfbQn2FKNQPV36GQ iTnmhFcGv+Y+RGnfgY/3mwxGNw== -----END CERTIFICATE-----Generated at Sun Apr 19 10:21:01 2026 by rpki-client