$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft File: km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json) Hash identifier: XgHPhnVCqAaNcgXYF7+npEalgiUTLJngW/FywXIGMVI= Subject key identifier: 72:FD:78:57:86:20:9F:A8:F3:79:BF:99:0E:F0:42:A0:77:55:3B:69 Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 0266 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft Manifest number: 0255 Signing time: Fri 17 Apr 2026 02:10:05 +0000 Manifest this update: Fri 17 Apr 2026 02:10:05 +0000 Manifest next update: Fri 24 Apr 2026 02:10:05 +0000 Files and hashes: 1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: QkqkON5pQsWF7EAvIBKGsRCnJqwoRZBKsdjnNwYHBLc=) 2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: fY7nCOHqK93oVhC5DmscMwb888TwpZD1ZSvnmNHDxkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 614 (0x266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: Apr 17 02:10:05 2026 GMT Not After : Apr 24 02:10:05 2026 GMT Subject: CN=69e1967d-9385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:9e:de:0e:54:c4:7d:9d:64:03:08:57:da:8d: dd:63:38:a6:8b:fd:76:f8:01:31:1a:58:00:43:88: 91:56:e2:59:dd:9e:dd:30:c0:fb:f0:26:b2:9d:5d: 20:db:83:f9:74:c7:29:10:28:a8:cf:3e:34:03:6f: bd:65:dc:e6:29:23:55:ae:f7:47:ca:6a:e6:49:e3: 2e:1b:0d:ed:ce:8d:03:42:3f:d6:79:f6:ed:1a:ae: 45:b6:f8:c1:e6:c6:6c:a4:1e:6a:31:8a:f1:5d:4a: e7:41:6c:e3:cc:de:65:c3:ac:14:5f:3c:6e:b0:e4: 36:97:c2:cd:e4:62:ab:1a:44:e7:b2:2c:a3:5f:82: 11:c6:e4:cd:24:f2:14:8a:53:6b:11:0d:99:ce:d8: 86:03:ef:9a:32:80:27:7a:08:d9:25:1c:8d:eb:3b: b7:7e:07:b9:5a:c0:02:ae:d1:27:62:9e:35:9b:20: 8e:8c:8c:8a:be:19:32:56:01:c9:91:b1:af:31:51: 4a:ab:61:22:2b:11:44:c7:04:e4:e0:be:ce:1d:fc: 61:bf:15:72:d0:34:93:4c:6c:3a:bd:73:45:8e:e8: 90:c2:46:e7:56:c0:94:14:80:8c:da:a8:e1:77:62: b3:12:71:69:c6:ae:7e:67:bd:c1:fd:22:01:1d:9a: 7f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:FD:78:57:86:20:9F:A8:F3:79:BF:99:0E:F0:42:A0:77:55:3B:69 X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:7a:91:56:30:da:8a:17:23:ae:ef:81:32:55:a4:79:a0:5a: 4e:b8:61:e8:6f:11:74:95:f1:e2:06:09:0d:76:52:b9:ca:2a: 83:01:80:b4:51:b6:91:5f:98:65:e4:b0:56:78:39:e6:ff:c5: 19:19:f3:9b:f2:fc:4c:0f:a4:3e:d3:91:b0:2f:c1:3c:b6:f0: 0c:d9:f4:e8:5b:75:31:60:d9:b6:13:79:5a:20:64:9b:e2:42: 7b:39:35:62:41:81:82:97:5c:57:19:93:b6:ee:82:f0:7a:8c: 9c:01:30:19:81:5e:07:5f:77:2e:bd:e9:7f:2d:de:af:c9:e3: 81:0d:0b:4f:a8:e8:9f:9c:d7:fe:8d:1a:c6:0f:66:61:04:7b: 15:10:4f:8d:dd:af:9e:59:3b:2e:58:0e:2a:d6:cc:54:46:d1: f2:ba:e0:10:67:ef:25:bb:02:31:16:ee:a4:94:57:02:6b:a0: df:ad:48:33:fd:0c:a4:8c:78:a5:67:c3:6a:f0:0f:2c:ea:c6: c5:ab:8c:90:f8:0c:af:49:82:77:70:46:81:13:d5:6a:22:c1: de:15:aa:86:3e:82:ca:c9:99:22:af:92:d6:49:13:71:9f:16: b8:69:5c:82:27:71:53:ac:46:5c:35:dc:61:7d:da:3f:c4:77: c6:04:ce:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjYwNDE3MDIxMDA1WhcNMjYwNDI0MDIxMDA1WjAYMRYwFAYD VQQDEw02OWUxOTY3ZC05Mzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk57eDlTEfZ1kAwhX2o3dYzimi/12+AExGlgAQ4iRVuJZ3Z7dMMD78CaynV0g 24P5dMcpECiozz40A2+9ZdzmKSNVrvdHymrmSeMuGw3tzo0DQj/WefbtGq5FtvjB 5sZspB5qMYrxXUrnQWzjzN5lw6wUXzxusOQ2l8LN5GKrGkTnsiyjX4IRxuTNJPIU ilNrEQ2ZztiGA++aMoAnegjZJRyN6zu3fge5WsACrtEnYp41myCOjIyKvhkyVgHJ kbGvMVFKq2EiKxFExwTk4L7OHfxhvxVy0DSTTGw6vXNFjuiQwkbnVsCUFICM2qjh d2KzEnFpxq5+Z73B/SIBHZp/5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHL9eFeG IJ+o83m/mQ7wQqB3VTtpMB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkEwRS9EQkJFRDIwNkMwMDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5 ZGx1MEVpY29EQjhSaEc3aGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgnqRVjDaihcjru+BMlWkeaBaTrhh6G8RdJXx4gYJDXZSucoqgwGAtFG2kV+Y ZeSwVng55v/FGRnzm/L8TA+kPtORsC/BPLbwDNn06Ft1MWDZthN5WiBkm+JCezk1 YkGBgpdcVxmTtu6C8HqMnAEwGYFeB193Lr3pfy3er8njgQ0LT6jon5zX/o0axg9m YQR7FRBPjd2vnlk7LlgOKtbMVEbR8rrgEGfvJbsCMRbupJRXAmug361IM/0MpIx4 pWfDavAPLOrGxauMkPgMr0mCd3BGgRPVaiLB3hWqhj6CysmZIq+S1kkTcZ8WuGlc gidxU6xGXDXcYX3aP8R3xgTOEg== -----END CERTIFICATE-----Generated at Fri Apr 17 06:27:11 2026 by rpki-client