$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: 9r35PVcKZbmWJ7rgHHTkRWv+7OrCWiXQYxazwQNMJCk= Subject key identifier: FE:1C:3A:38:F8:B2:4C:C2:40:27:08:B5:61:58:51:19:2D:97:98:A9 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0CD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0CBA Signing time: Thu 16 Apr 2026 18:25:41 +0000 Manifest this update: Thu 16 Apr 2026 18:25:41 +0000 Manifest next update: Thu 23 Apr 2026 18:25:41 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: QIbrGxjjQtQspzcd++he1fduiK5Saft6+eUZL1Oesw0=) 2: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: qPZmqhPtG1orNWgO21O3wlBwiZAj4EQWTBy6up25D/I=) 3: C9989D9EF52011EF88416555C4F9AE02.roa (hash: OehBxOplI/UOZ/b2d9DDqACV634wRHZsLO+l8ckQwQQ=) 4: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: 0ui+SiQ/c3MRovj/aJJcziARwvWd2KxwKuQ6NFEu4OA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3289 (0xcd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Apr 16 18:25:41 2026 GMT Not After : Apr 23 18:25:41 2026 GMT Subject: CN=69e129a5-db95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7b:b1:83:9f:16:42:70:d9:6e:4f:46:9b:30: a5:4f:41:2f:77:b3:b7:12:28:45:04:37:da:96:c2: e2:87:cc:a1:4c:92:84:47:c3:53:9e:ec:cc:9a:e3: 83:57:4a:a7:7e:b6:89:a0:fc:fb:a3:1b:75:ec:25: a9:54:2c:e5:1d:e6:c3:2d:27:7b:37:a5:09:b7:19: 28:2d:2c:c7:3d:4b:39:7e:f9:62:87:0a:f6:55:2e: b2:74:28:12:9c:14:36:9b:f3:3d:f5:e7:20:70:4d: fd:ab:02:90:fb:2a:c1:74:f4:f6:cc:2d:af:40:1c: 49:49:97:d0:4a:67:95:24:7d:31:9d:e0:ee:9e:e4: 72:3c:54:06:f5:64:1c:ff:b2:7c:47:59:fc:a3:15: 9c:3d:e1:c0:cb:37:85:fc:c7:84:30:85:30:de:8d: a3:fe:03:18:8d:e5:ad:37:e8:da:c4:27:d1:ac:b1: 03:95:24:d3:50:ca:aa:b9:8d:c2:d4:a8:54:8d:a0: a9:bc:0e:fe:36:5b:fa:da:a4:31:5d:4f:74:bf:06: 63:4b:af:9c:a2:22:f4:83:5b:13:79:0e:4b:59:e1: d7:f4:db:5f:da:e3:2d:2b:a7:b0:62:b2:fc:dd:c4: 52:f5:ab:8e:64:5e:d5:c7:6a:19:4a:fe:47:a2:5d: f1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:1C:3A:38:F8:B2:4C:C2:40:27:08:B5:61:58:51:19:2D:97:98:A9 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:52:a3:ee:16:c0:2b:2e:cc:ea:59:a3:6d:9c:0c:d1:db:bb: 62:5e:ac:f0:b5:a0:99:83:44:95:cc:0a:9a:06:66:15:61:f8: 57:06:f5:8f:89:c6:9d:a7:51:fd:56:44:0a:38:d3:4a:54:7a: ae:0f:c0:ba:00:95:b6:d6:60:3a:0a:1f:f3:ad:4e:f3:3c:03: e0:bd:7b:cc:d2:b5:c0:37:65:86:bb:3a:4a:91:98:b8:b3:48: dc:1a:e9:9a:f3:8f:43:2e:06:51:8c:f5:10:77:58:82:23:3a: a1:3c:94:f1:a6:f1:77:43:8b:62:40:6c:8a:df:d9:30:31:48: 01:bc:c8:a8:53:df:e5:e1:84:05:f8:2b:d8:ce:9c:36:ad:ab: d9:62:8b:d6:3e:73:87:e3:f9:41:7e:83:a3:00:60:c8:68:a9: 53:30:e6:6c:08:8c:50:e2:da:73:c5:25:9a:51:38:5e:f4:91: cb:70:2e:70:93:c0:e0:f4:b0:6b:4f:c3:30:7c:b9:5f:f9:8f: 5e:43:af:82:b5:c7:a1:60:b2:81:50:d3:a1:1d:a2:a5:22:b8: 6b:af:48:d3:c7:5d:de:a9:fd:75:72:f5:aa:36:c4:c3:45:dc: 30:26:12:d3:9b:8a:41:3f:6b:15:c1:0c:72:f5:be:7b:62:f8: 5e:0f:4d:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjYwNDE2MTgyNTQxWhcNMjYwNDIzMTgyNTQxWjAYMRYwFAYD VQQDEw02OWUxMjlhNS1kYjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23uxg58WQnDZbk9GmzClT0Evd7O3EihFBDfalsLih8yhTJKER8NTnuzMmuOD V0qnfraJoPz7oxt17CWpVCzlHebDLSd7N6UJtxkoLSzHPUs5fvlihwr2VS6ydCgS nBQ2m/M99ecgcE39qwKQ+yrBdPT2zC2vQBxJSZfQSmeVJH0xneDunuRyPFQG9WQc /7J8R1n8oxWcPeHAyzeF/MeEMIUw3o2j/gMYjeWtN+jaxCfRrLEDlSTTUMqquY3C 1KhUjaCpvA7+Nlv62qQxXU90vwZjS6+coiL0g1sTeQ5LWeHX9Ntf2uMtK6ewYrL8 3cRS9auOZF7Vx2oZSv5Hol3xrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP4cOjj4 skzCQCcItWFYURktl5ipMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC1Kj7hbAKy7M6lmjbZwM0du7Yl6s8LWgmYNElcwKmgZmFWH4Vwb1j4nGnadR /VZECjjTSlR6rg/AugCVttZgOgof861O8zwD4L17zNK1wDdlhrs6SpGYuLNI3Brp mvOPQy4GUYz1EHdYgiM6oTyU8abxd0OLYkBsit/ZMDFIAbzIqFPf5eGEBfgr2M6c Nq2r2WKL1j5zh+P5QX6DowBgyGipUzDmbAiMUOLac8UlmlE4XvSRy3AucJPA4PSw a0/DMHy5X/mPXkOvgrXHoWCygVDToR2ipSK4a69I08dd3qn9dXL1qjbEw0XcMCYS 05uKQT9rFcEMcvW+e2L4Xg9Nvw== -----END CERTIFICATE-----Generated at Fri Apr 17 14:40:02 2026 by rpki-client