$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft File: K6PqbAvX8YRghmD5ogTlEYZaAN0.mft (raw, json) Hash identifier: zevgQZxeae+2zqUKLM00pHtQz4JgQMeiwQDYUgzapw4= Subject key identifier: 0A:3A:14:8E:84:EC:F2:21:9A:DA:EB:BB:FA:78:1E:53:B1:97:7C:05 Authority key identifier: 2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD Certificate issuer: /CN=A91F1E8B/serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Certificate serial: 09C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft Manifest number: 09C0 Signing time: Thu 16 Apr 2026 19:49:34 +0000 Manifest this update: Thu 16 Apr 2026 19:49:34 +0000 Manifest next update: Thu 23 Apr 2026 19:49:34 +0000 Files and hashes: 1: K6PqbAvX8YRghmD5ogTlEYZaAN0.crl (hash: C9u1X3kL3c3jALTZ4h5BdBj0ucO7UATInj3rMe/f+j0=) 2: 33F713A8A3CF11EAA31D8C20C4F9AE02.roa (hash: drREk/OAiw4nw+aB1RVjD5zbqv5hAnk1VMgyPcenfqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2505 (0x9c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1E8B, serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Validity Not Before: Apr 16 19:49:34 2026 GMT Not After : Apr 23 19:49:34 2026 GMT Subject: CN=69e13d4e-a47a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:81:e8:6e:c0:7e:96:7b:62:cd:c0:05:bc:61: 04:79:cf:ea:dc:12:8a:ff:23:a3:31:64:80:86:e4: fb:c1:2a:3d:19:06:62:ad:25:f9:9b:c8:12:5c:30: 95:31:8d:20:f9:97:36:a7:1a:0d:43:3e:48:5b:ef: 8b:12:2a:08:ef:26:b6:e1:eb:21:95:29:59:03:a4: 33:84:eb:a0:11:c1:25:66:bf:e2:72:fe:92:16:40: 94:15:fd:c5:52:23:27:22:c2:21:cb:48:db:30:f5: d4:57:cf:14:f2:0d:1a:69:32:5b:8d:28:d4:e3:41: 6e:a4:c4:aa:0b:44:7e:47:87:51:dc:9a:b3:8a:ea: 47:97:4c:aa:e7:9b:f2:c4:7a:6d:8e:69:c8:50:70: d8:bc:f4:2f:72:fa:87:dd:34:cb:5a:38:96:dd:77: b6:1e:2a:67:50:71:2b:81:36:38:58:30:99:5e:1c: d4:62:85:a4:ad:85:b5:4e:de:67:ad:e3:b1:5e:e6: 8e:f0:a4:3b:e3:29:fe:89:bd:10:98:34:4f:40:13: 66:63:b1:da:46:8e:ea:96:17:54:5c:09:da:46:b0: f1:bc:6f:a4:6c:65:45:4d:7f:cb:e8:99:f1:d3:7e: cb:40:00:92:ec:db:f4:4e:a9:99:1e:db:e1:86:05: c4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3A:14:8E:84:EC:F2:21:9A:DA:EB:BB:FA:78:1E:53:B1:97:7C:05 X509v3 Authority Key Identifier: keyid:2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:f7:cd:57:d2:e8:8e:bd:3e:16:a6:f9:97:b7:42:dd:96:cd: 20:42:f8:03:0f:1c:7b:57:11:c6:9f:f7:31:3e:4b:0e:0a:d1: 12:0c:ac:75:63:91:72:81:c2:ab:37:91:97:f6:59:3f:a6:51: 29:ee:54:6f:d6:3f:ea:75:16:5f:c2:3c:19:d9:ad:4b:26:6c: 59:de:ec:c0:83:cf:a5:ee:95:59:22:dc:3f:ee:67:d1:fe:db: 65:8a:1e:8f:7f:bb:5a:fb:82:86:9c:02:94:da:0a:24:aa:40: 57:66:ef:05:71:ff:66:4c:17:98:9e:92:7d:3f:6b:94:e6:02: cf:bf:28:b9:88:59:7e:65:b2:dc:f4:e7:ba:ec:9c:4c:3d:21: b0:9a:70:e9:73:25:95:3a:33:9d:76:c8:81:2a:39:ed:c6:06: 79:7a:1f:3a:f7:88:0b:85:1a:16:ec:4b:42:c9:3f:a8:a1:2a: 3c:86:f8:4c:40:7f:f4:23:2e:ed:49:b5:64:a9:b2:0a:d0:d3: e9:06:c2:55:6d:1f:8c:ff:dd:87:4a:c6:23:cb:e4:cc:e2:cc: 87:2f:b6:2f:2c:9e:39:79:ae:5c:c4:9c:71:28:7f:f1:e2:12: 5a:7b:3f:4b:51:0a:a8:9a:b6:6f:32:a8:8f:c6:c5:9b:c7:eb: 5e:23:7a:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFFOEIxMTAvBgNVBAUTKDJCQTNFQTZDMEJEN0YxODQ2MDg2NjBGOUEyMDRFNTEx ODY1QTAwREQwHhcNMjYwNDE2MTk0OTM0WhcNMjYwNDIzMTk0OTM0WjAYMRYwFAYD VQQDEw02OWUxM2Q0ZS1hNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4HobsB+lntizcAFvGEEec/q3BKK/yOjMWSAhuT7wSo9GQZirSX5m8gSXDCV MY0g+Zc2pxoNQz5IW++LEioI7ya24eshlSlZA6QzhOugEcElZr/icv6SFkCUFf3F UiMnIsIhy0jbMPXUV88U8g0aaTJbjSjU40FupMSqC0R+R4dR3JqziupHl0yq55vy xHptjmnIUHDYvPQvcvqH3TTLWjiW3Xe2HipnUHErgTY4WDCZXhzUYoWkrYW1Tt5n reOxXuaO8KQ74yn+ib0QmDRPQBNmY7HaRo7qlhdUXAnaRrDxvG+kbGVFTX/L6Jnx 037LQACS7Nv0TqmZHtvhhgXEKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAo6FI6E 7PIhmtrru/p4HlOxl3wFMB8GA1UdIwQYMBaAFCuj6mwL1/GEYIZg+aIE5RGGWgDd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUU4Qi84MDdERkRBMEEz Q0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZUmdobUQ1b2dUbEVZWmFB TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s2UHFiQXZYOFlSZ2htRDVvZ1RsRVlaYUFOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUU4Qi84MDdERkRBMEEzQ0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZ UmdobUQ1b2dUbEVZWmFBTjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM/fNV9Lojr0+Fqb5l7dC3ZbNIEL4Aw8ce1cRxp/3MT5LDgrREgysdWORcoHC qzeRl/ZZP6ZRKe5Ub9Y/6nUWX8I8GdmtSyZsWd7swIPPpe6VWSLcP+5n0f7bZYoe j3+7WvuChpwClNoKJKpAV2bvBXH/ZkwXmJ6SfT9rlOYCz78ouYhZfmWy3PTnuuyc TD0hsJpw6XMllToznXbIgSo57cYGeXofOveIC4UaFuxLQsk/qKEqPIb4TEB/9CMu 7Um1ZKmyCtDT6QbCVW0fjP/dh0rGI8vkzOLMhy+2LyyeOXmuXMSccSh/8eISWns/ S1EKqJq2bzKoj8bFm8frXiN6wQ== -----END CERTIFICATE-----Generated at Fri Apr 17 08:02:40 2026 by rpki-client