$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: jbJgJkeQgXY4CQ468ihWl31affYa6vH1etVRJFs5DI0= Subject key identifier: C4:5B:D6:B1:34:7B:E8:8A:10:93:CA:94:6A:E9:A2:DE:70:6D:70:7E Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01EF Signing time: Fri 17 Apr 2026 03:01:59 +0000 Manifest this update: Fri 17 Apr 2026 03:01:59 +0000 Manifest next update: Fri 24 Apr 2026 03:01:59 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: teEz1VmtHZcpGPI/sLkACuIw5dF45WGbq1HGvPVUlR4=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: CEGrzyVX/R9nXXUQAan2KcsnSM9ycrOqX5vVxIScejc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Apr 17 03:01:59 2026 GMT Not After : Apr 24 03:01:59 2026 GMT Subject: CN=69e1a2a7-7d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:68:e1:d5:ae:17:3d:73:8f:8d:b2:f7:03:45: b2:3a:d2:bb:c7:07:ea:5a:45:eb:db:71:7a:c7:46: 49:37:05:73:47:64:34:f6:4b:e1:e1:c4:59:03:0e: 9e:c7:63:8d:ae:2b:e0:e9:6c:30:94:4f:1e:ea:5e: 1c:f9:a6:fc:91:2f:f4:a1:79:60:c6:d3:59:8c:88: fb:77:8f:d0:dd:58:95:66:a7:fd:46:ef:db:77:37: bf:3f:7d:1f:6d:a0:f2:58:6a:af:be:78:c5:64:95: 0e:43:ab:7c:9f:25:dc:bc:15:43:ef:ca:db:a7:86: 10:a9:f4:ac:5e:30:dd:d9:f1:fc:c4:50:64:92:61: 97:e4:01:f1:59:a5:06:00:ef:1d:f1:cc:a3:1c:0c: 2f:bc:12:67:a1:51:18:92:39:91:61:ce:e0:76:8d: 14:63:39:f4:d0:0a:6c:9a:03:ef:70:3b:ed:f1:72: e2:85:ea:d4:d7:52:88:4e:2e:55:b7:14:d0:01:fd: 17:98:d6:93:b0:23:4e:04:be:1e:2f:d3:4a:82:6c: c9:37:4b:38:38:22:dd:e4:a3:ce:dd:0c:ff:fd:72: dc:29:f5:0b:e2:ed:88:d1:40:d1:33:8f:c8:c3:ec: 21:63:3c:fa:6a:33:f8:89:79:b4:28:6c:25:e1:83: e8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5B:D6:B1:34:7B:E8:8A:10:93:CA:94:6A:E9:A2:DE:70:6D:70:7E X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:57:24:d6:b7:9d:9b:b4:9c:35:ce:5d:d0:70:ed:6b:d6:69: ae:b6:bc:4b:f3:b7:48:ff:bc:5e:04:a6:11:bf:f1:ef:84:c4: 82:30:4e:bd:81:13:7a:83:bf:6c:09:ca:d6:18:a5:fa:2b:fe: 08:97:1b:d3:ec:e1:a0:b6:99:c7:f1:49:f7:7e:34:00:89:0b: 91:25:3a:3d:6d:24:ba:22:b3:e7:e2:fa:c1:48:b8:44:c9:83: 53:fd:af:9c:74:0e:53:4a:7f:15:9a:70:75:da:e4:93:63:79: a0:39:97:5b:2a:53:70:b4:7d:d7:eb:ad:45:b2:15:1f:98:9c: 27:10:19:e7:e2:04:0c:e0:75:33:ff:8b:01:38:cf:6e:8e:44: 92:83:76:fa:5d:01:21:5c:6f:5b:0c:27:42:c1:85:95:cc:c1: dd:43:b2:d0:dc:90:e8:2d:8a:09:48:94:10:f0:6f:2c:83:d8: ff:b2:b8:0a:ad:58:6f:03:c4:b1:a8:57:00:c4:af:bb:be:b1: 74:6d:67:4b:ad:c8:42:fe:a5:95:53:3b:9b:e7:ed:79:05:d7: 0b:36:fc:be:43:c8:ea:7c:a5:73:84:4b:1a:a5:79:a0:ee:6c: 7e:83:e5:2f:b5:85:05:b8:80:87:44:2d:c7:b9:1d:cf:7b:4c: b5:b0:f7:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjYwNDE3MDMwMTU5WhcNMjYwNDI0MDMwMTU5WjAYMRYwFAYD VQQDEw02OWUxYTJhNy03ZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGjh1a4XPXOPjbL3A0WyOtK7xwfqWkXr23F6x0ZJNwVzR2Q09kvh4cRZAw6e x2ONrivg6WwwlE8e6l4c+ab8kS/0oXlgxtNZjIj7d4/Q3ViVZqf9Ru/bdze/P30f baDyWGqvvnjFZJUOQ6t8nyXcvBVD78rbp4YQqfSsXjDd2fH8xFBkkmGX5AHxWaUG AO8d8cyjHAwvvBJnoVEYkjmRYc7gdo0UYzn00ApsmgPvcDvt8XLiherU11KITi5V txTQAf0XmNaTsCNOBL4eL9NKgmzJN0s4OCLd5KPO3Qz//XLcKfUL4u2I0UDRM4/I w+whYzz6ajP4iXm0KGwl4YPomwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMRb1rE0 e+iKEJPKlGrpot5wbXB+MB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbVck1redm7ScNc5d0HDta9Zprra8S/O3SP+8XgSmEb/x74TEgjBOvYETeoO/ bAnK1hil+iv+CJcb0+zhoLaZx/FJ9340AIkLkSU6PW0kuiKz5+L6wUi4RMmDU/2v nHQOU0p/FZpwddrkk2N5oDmXWypTcLR91+utRbIVH5icJxAZ5+IEDOB1M/+LATjP bo5EkoN2+l0BIVxvWwwnQsGFlczB3UOy0NyQ6C2KCUiUEPBvLIPY/7K4Cq1YbwPE sahXAMSvu76xdG1nS63IQv6llVM7m+fteQXXCzb8vkPI6nylc4RLGqV5oO5sfoPl L7WFBbiAh0Qtx7kdz3tMtbD3LA== -----END CERTIFICATE-----Generated at Fri Apr 17 05:28:07 2026 by rpki-client