$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: 42KTRvFBduFd0NWhMlg3i+Hug81v91aiEtNh4tdGbmI= Subject key identifier: D1:15:B9:7A:DC:BA:06:A4:69:D6:C0:0A:38:A9:18:1A:51:85:6B:88 Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 020D Signing time: Sat 13 Jun 2026 03:01:09 +0000 Manifest this update: Sat 13 Jun 2026 03:01:09 +0000 Manifest next update: Sat 20 Jun 2026 03:01:09 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: sHcFLUXog/7iskxb+9bO7cdQOYL9sLAAdaIHiIpoQsQ=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: Y/N7Od4khfLczJDMgbO0tCR9gSc5Ipt+5xzaIbpHVG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Jun 13 03:01:09 2026 GMT Not After : Jun 20 03:01:09 2026 GMT Subject: CN=6a2cc7f5-bc4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:27:55:75:ba:43:f8:f7:4c:04:88:fe:d2:66: be:63:ac:eb:22:d3:40:a6:fe:d4:cd:77:50:8e:f0: ec:43:53:e4:da:c4:2c:aa:b0:c1:3c:a4:4d:ef:d7: 1e:bf:e3:8e:33:7e:c5:39:28:14:c2:ee:f6:7e:ea: 7b:55:19:b3:48:a7:a6:6e:00:a4:65:db:fe:c0:fc: 2c:3f:37:35:bb:d3:8c:e9:b9:95:7a:21:50:33:44: 39:a4:9e:c3:a4:bc:2c:b0:84:42:5b:71:ff:b0:f3: da:0d:1b:ac:02:7b:8f:90:a2:2c:cb:8d:3d:08:ed: 53:5a:c9:36:ee:1f:0f:f0:0c:3b:cb:f3:f2:ce:87: e9:a8:7a:d5:f1:26:3d:b7:cf:a4:a7:ae:e4:05:be: 23:76:a6:99:06:10:68:4d:0e:49:88:ef:a7:da:59: 16:89:b0:61:31:56:a1:8a:ad:71:5c:76:8d:9a:d2: 1f:bd:8f:4d:72:4c:6e:49:a5:28:60:f3:4d:cf:9d: a5:e2:bc:64:99:c2:79:d8:83:f7:24:7f:ec:12:7e: 4f:4d:06:ff:c6:34:84:20:3b:9d:0c:31:d2:2b:bb: 96:94:9b:06:2d:13:d4:b4:35:f8:24:e2:76:c9:e5: a3:e3:26:e0:24:96:ad:b4:a2:ad:90:03:bc:17:f4: 00:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:15:B9:7A:DC:BA:06:A4:69:D6:C0:0A:38:A9:18:1A:51:85:6B:88 X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:8f:48:0d:93:9e:5c:29:ce:a3:ae:d6:60:c1:a0:6d:00:46: 07:b7:e1:1c:ec:ec:56:ed:0f:60:ca:f8:82:df:e2:5d:32:55: 0e:e2:eb:d5:8d:49:80:7e:93:e7:41:d0:31:db:20:a2:82:f0: b7:a1:e9:39:5e:d8:24:3e:56:1b:f5:a9:f5:7e:a3:99:03:df: dc:48:7b:31:7c:9d:00:6d:a6:7b:13:12:d4:a5:c8:de:73:ee: a1:19:70:1b:44:08:e2:08:1d:c7:a2:cf:9e:4c:02:7c:61:cf: d7:e5:00:61:72:d9:9b:46:10:49:7f:2e:ba:3a:46:2d:ba:72: 3e:12:db:d8:1a:ee:bf:1a:ec:43:15:5d:7b:73:fb:c4:40:8f: ab:90:32:2b:60:27:4b:55:ae:3d:c6:f0:0c:c7:3f:f6:c7:ad: 56:0a:ce:18:a1:45:76:ad:d1:49:a2:d4:67:4c:69:7d:1f:2f: be:15:0c:b8:76:86:f0:f7:c2:4b:92:cc:fb:42:f3:19:51:73: 22:4f:fd:5a:29:00:49:2c:a8:39:df:2d:2f:02:fc:09:4b:5d: 21:ac:1f:65:da:c6:ca:8f:ab:be:fe:fe:53:bf:43:85:e5:20: 0d:45:68:55:c4:1f:ab:22:39:60:4d:14:cf:f2:fd:f9:d0:55: 5a:f2:18:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjYwNjEzMDMwMTA5WhcNMjYwNjIwMDMwMTA5WjAYMRYwFAYD VQQDEw02YTJjYzdmNS1iYzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzidVdbpD+PdMBIj+0ma+Y6zrItNApv7UzXdQjvDsQ1Pk2sQsqrDBPKRN79ce v+OOM37FOSgUwu72fup7VRmzSKembgCkZdv+wPwsPzc1u9OM6bmVeiFQM0Q5pJ7D pLwssIRCW3H/sPPaDRusAnuPkKIsy409CO1TWsk27h8P8Aw7y/PyzofpqHrV8SY9 t8+kp67kBb4jdqaZBhBoTQ5JiO+n2lkWibBhMVahiq1xXHaNmtIfvY9NckxuSaUo YPNNz52l4rxkmcJ52IP3JH/sEn5PTQb/xjSEIDudDDHSK7uWlJsGLRPUtDX4JOJ2 yeWj4ybgJJattKKtkAO8F/QAYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNEVuXrc ugakadbACjipGBpRhWuIMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaY9IDZOeXCnOo67WYMGgbQBGB7fhHOzsVu0PYMr4gt/iXTJVDuLr1Y1JgH6T 50HQMdsgooLwt6HpOV7YJD5WG/Wp9X6jmQPf3Eh7MXydAG2mexMS1KXI3nPuoRlw G0QI4ggdx6LPnkwCfGHP1+UAYXLZm0YQSX8uujpGLbpyPhLb2BruvxrsQxVde3P7 xECPq5AyK2AnS1WuPcbwDMc/9setVgrOGKFFdq3RSaLUZ0xpfR8vvhUMuHaG8PfC S5LM+0LzGVFzIk/9WikASSyoOd8tLwL8CUtdIawfZdrGyo+rvv7+U79DheUgDUVo VcQfqyI5YE0Uz/L9+dBVWvIYZQ== -----END CERTIFICATE-----Generated at Sat Jun 13 07:10:46 2026 by rpki-client