$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: cLHdCjZdviXn/GQtGNwBT+2ii3xpu6kKpwYTLkg9/2o= Subject key identifier: B6:9F:8D:FE:87:D8:70:23:3F:50:FB:DB:81:5F:12:2E:FC:4B:CE:49 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 0131 Signing time: Fri 17 Apr 2026 05:14:36 +0000 Manifest this update: Fri 17 Apr 2026 05:14:35 +0000 Manifest next update: Fri 24 Apr 2026 05:14:35 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: dXOOCdwzxQuaBq8F8r5QGM6AWbxbvxK1+fCtaX7ucNs=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: 1xxchiebCxLNftly6au7Pkd2xXnWXWVrUcEG++FarVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Apr 17 05:14:35 2026 GMT Not After : Apr 24 05:14:35 2026 GMT Subject: CN=69e1c1bc-a342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:81:44:03:79:95:94:cf:eb:00:47:9b:b7:44: 8a:10:d2:d8:46:a4:05:67:0b:86:bf:96:a7:d6:e8: 19:33:86:90:90:d7:96:76:de:46:5d:b5:88:f9:a1: ee:bf:13:da:03:0d:e7:7d:66:53:19:42:e5:fb:96: 97:dc:02:5d:0a:d9:a6:c2:20:2e:19:89:76:1d:ff: 2f:fd:0e:a5:bf:a7:66:49:06:a1:8b:96:ed:06:64: b8:d1:9c:f8:be:6a:3f:1f:bc:c8:79:dc:68:f6:77: 50:13:48:88:67:44:5c:b1:15:1e:f5:dc:73:b1:4c: 4e:c0:e5:0e:19:0c:89:f8:2e:96:68:ba:db:9f:0c: ed:e8:cc:a2:96:38:77:e1:d0:5c:32:6b:31:c1:98: 28:92:61:d4:bc:df:35:e7:e1:fc:ba:cc:0c:d4:dd: 47:98:d5:65:e3:16:e4:ab:73:10:e1:d0:8f:9c:9a: 7d:ec:c8:a5:fa:86:d4:af:7a:6b:20:1b:c2:8c:24: bf:a1:7f:a7:f2:87:4d:c3:48:f8:6a:d5:15:84:40: 08:b6:b7:82:19:65:56:16:af:aa:b1:25:04:84:26: 9d:d2:9a:1a:10:db:49:97:74:e5:a5:65:5f:e1:10: f9:59:a9:1e:1d:29:6d:a4:f7:05:8d:98:02:19:7e: 4c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:9F:8D:FE:87:D8:70:23:3F:50:FB:DB:81:5F:12:2E:FC:4B:CE:49 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:ba:9a:39:d2:b7:78:3c:8f:82:8e:44:a2:67:ea:13:81:51: 05:1a:4f:e8:56:f5:61:31:e8:8d:8e:99:fa:17:b1:05:57:da: 98:a3:18:a7:7e:35:09:b5:7e:c2:d3:8a:32:46:2f:4a:1c:fa: 9f:96:3e:17:9e:10:90:0b:e8:eb:45:29:9a:cf:db:63:4c:c4: e8:80:d4:ac:f1:89:41:a9:95:7d:f0:e8:85:50:4a:02:8b:23: 1b:a7:93:1c:42:64:b3:f5:dc:58:4e:7a:08:05:ff:96:0f:63: 97:e1:96:46:29:98:ed:ab:ee:67:6a:54:2d:b0:d0:89:87:1a: b7:70:96:9b:d6:0a:d9:f6:c9:03:83:98:c8:62:99:7b:bf:2b: 2e:70:94:6f:8c:76:2d:23:75:7a:c4:f3:26:a0:25:87:29:64: f9:f8:20:f4:e5:7d:2d:cc:13:fb:eb:99:0e:6b:e0:1a:96:a0: 6e:31:83:78:5d:1a:e2:0d:7a:c6:cd:4f:27:35:fe:08:19:87: 4c:5f:b4:3b:90:b6:f9:65:09:5f:8d:f7:ec:73:32:a3:62:ec: 05:85:96:19:2d:9e:75:4f:f9:4f:07:42:48:af:04:78:47:53: fc:72:2b:f0:54:73:ae:cd:d0:81:86:c8:79:c9:a7:a5:9e:42: a4:4d:2d:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjYwNDE3MDUxNDM1WhcNMjYwNDI0MDUxNDM1WjAYMRYwFAYD VQQDEw02OWUxYzFiYy1hMzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4FEA3mVlM/rAEebt0SKENLYRqQFZwuGv5an1ugZM4aQkNeWdt5GXbWI+aHu vxPaAw3nfWZTGULl+5aX3AJdCtmmwiAuGYl2Hf8v/Q6lv6dmSQahi5btBmS40Zz4 vmo/H7zIedxo9ndQE0iIZ0RcsRUe9dxzsUxOwOUOGQyJ+C6WaLrbnwzt6Myiljh3 4dBcMmsxwZgokmHUvN815+H8uswM1N1HmNVl4xbkq3MQ4dCPnJp97Mil+obUr3pr IBvCjCS/oX+n8odNw0j4atUVhEAItreCGWVWFq+qsSUEhCad0poaENtJl3TlpWVf 4RD5WakeHSltpPcFjZgCGX5MAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLafjf6H 2HAjP1D724FfEi78S85JMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAB7qaOdK3eDyPgo5EomfqE4FRBRpP6Fb1YTHojY6Z+hexBVfamKMYp341CbV+ wtOKMkYvShz6n5Y+F54QkAvo60Upms/bY0zE6IDUrPGJQamVffDohVBKAosjG6eT HEJks/XcWE56CAX/lg9jl+GWRimY7avuZ2pULbDQiYcat3CWm9YK2fbJA4OYyGKZ e78rLnCUb4x2LSN1esTzJqAlhylk+fgg9OV9LcwT++uZDmvgGpagbjGDeF0a4g16 xs1PJzX+CBmHTF+0O5C2+WUJX4337HMyo2LsBYWWGS2edU/5TwdCSK8EeEdT/HIr 8FRzrs3QgYbIecmnpZ5CpE0tgQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:38:01 2026 by rpki-client