$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: 2eXNkYpgx2HcP2SjZ0OBuVjuv0grO2eXeH8kqnIJCJw= Subject key identifier: 5A:FE:53:94:D4:CA:53:2A:58:D9:61:B5:D6:BB:84:8B:40:8C:A2:FD Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 013F Signing time: Fri 17 Apr 2026 05:01:56 +0000 Manifest this update: Fri 17 Apr 2026 05:01:55 +0000 Manifest next update: Fri 24 Apr 2026 05:01:55 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: yTOkqkCu18UU/KrzKffSL3rTz0i9vvna6F9O1Y8rwpU=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: jP6TZWwRFPY1LK/E2kOV63Xfi0StNXGzAgbQFJN0A6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Apr 17 05:01:55 2026 GMT Not After : Apr 24 05:01:55 2026 GMT Subject: CN=69e1bec4-3b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a6:ba:95:92:fe:7c:d6:d4:16:d7:14:b7:be: 44:f1:f1:91:81:0d:cd:00:f4:fb:27:fb:5c:4f:39: 15:de:e5:b1:11:e0:8b:c4:19:aa:bd:76:47:8a:c5: dc:a7:cd:2b:4b:ca:94:58:b7:c6:66:79:c9:73:ff: 57:4e:04:44:bf:5a:1a:95:d0:5f:1f:9e:67:65:76: e8:04:c1:41:32:c5:15:68:96:05:97:6e:0d:56:0c: 8b:3f:f2:a3:a4:9e:a2:49:49:13:5f:ae:ea:7a:53: 8f:12:15:2b:b2:b3:10:0e:7a:60:02:ef:70:3d:38: 18:8c:c3:cd:ff:3a:80:e6:6e:c4:e5:46:76:80:58: 08:5f:7d:3a:70:e0:aa:2b:dc:cb:f9:56:16:7b:37: df:67:09:61:ec:26:ea:c7:0a:04:84:43:a2:be:f0: 7e:9e:4e:f1:b0:ad:40:e0:f3:e6:b4:8c:6f:aa:88: e8:c6:ec:12:cc:19:28:d7:dd:e9:76:3b:37:01:ee: 5c:c5:26:e8:26:76:ab:47:5b:57:75:f7:c7:96:61: 29:06:7c:58:4d:f2:88:44:c8:1e:6a:35:12:67:15: d5:30:72:b9:76:86:6a:29:09:f8:87:bf:53:05:88: 75:4f:6d:c5:bf:31:c9:4c:fc:90:37:5f:20:cb:5a: 7b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:FE:53:94:D4:CA:53:2A:58:D9:61:B5:D6:BB:84:8B:40:8C:A2:FD X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:c0:60:d1:06:b9:d2:3d:eb:a2:f1:c3:a1:5e:9d:6e:93:0a: 2b:73:c2:80:b3:86:71:49:0d:4a:9f:15:c2:54:c5:c2:17:b3: 4a:35:03:ca:0d:f1:08:e5:fa:90:59:9e:0d:f7:3d:ea:9a:43: c9:77:f5:46:ac:ef:60:70:ab:03:87:b9:67:72:07:f5:48:54: ca:11:d5:34:2a:88:5a:c7:ff:03:bf:00:b6:a8:bf:b2:0c:7f: 72:25:99:d3:41:da:ff:48:09:9f:5c:c6:30:a4:77:6f:2b:88: b3:72:ea:d3:89:97:3b:f8:04:68:37:27:85:03:8b:b8:dd:63: 7b:25:49:9f:76:79:f4:47:2b:0a:b9:97:ec:9d:08:95:4b:f2: 7f:3b:32:6c:c7:c2:51:b9:55:88:9f:b9:02:47:2f:1f:98:65: 67:86:e3:27:b4:7d:fd:0c:a8:91:a5:df:50:fb:cc:6c:9b:11: b2:80:4e:17:7b:30:11:f1:fd:ef:b8:8d:f7:d7:82:cb:92:0f: df:03:d5:25:7b:63:fa:c0:39:66:48:34:1e:1f:0b:63:42:16: d7:e3:bd:e7:1b:6a:72:e7:c2:92:32:c9:5c:5a:89:6f:8a:5e: 3d:ba:d2:db:63:6a:b0:b2:49:bb:47:e6:e0:84:d9:e3:c7:a1: d2:d5:2a:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjYwNDE3MDUwMTU1WhcNMjYwNDI0MDUwMTU1WjAYMRYwFAYD VQQDEw02OWUxYmVjNC0zYjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06a6lZL+fNbUFtcUt75E8fGRgQ3NAPT7J/tcTzkV3uWxEeCLxBmqvXZHisXc p80rS8qUWLfGZnnJc/9XTgREv1oaldBfH55nZXboBMFBMsUVaJYFl24NVgyLP/Kj pJ6iSUkTX67qelOPEhUrsrMQDnpgAu9wPTgYjMPN/zqA5m7E5UZ2gFgIX306cOCq K9zL+VYWezffZwlh7CbqxwoEhEOivvB+nk7xsK1A4PPmtIxvqojoxuwSzBko193p djs3Ae5cxSboJnarR1tXdffHlmEpBnxYTfKIRMgeajUSZxXVMHK5doZqKQn4h79T BYh1T23FvzHJTPyQN18gy1p7ewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFr+U5TU ylMqWNlhtda7hItAjKL9MB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOsBg0Qa50j3rovHDoV6dbpMKK3PCgLOGcUkNSp8VwlTFwhezSjUDyg3xCOX6 kFmeDfc96ppDyXf1RqzvYHCrA4e5Z3IH9UhUyhHVNCqIWsf/A78Atqi/sgx/ciWZ 00Ha/0gJn1zGMKR3byuIs3Lq04mXO/gEaDcnhQOLuN1jeyVJn3Z59EcrCrmX7J0I lUvyfzsybMfCUblViJ+5AkcvH5hlZ4bjJ7R9/QyokaXfUPvMbJsRsoBOF3swEfH9 77iN99eCy5IP3wPVJXtj+sA5Zkg0Hh8LY0IW1+O95xtqcufCkjLJXFqJb4pePbrS 22NqsLJJu0fm4ITZ48eh0tUqnA== -----END CERTIFICATE-----Generated at Fri Apr 17 08:05:54 2026 by rpki-client