$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: bwW5Q7ETyWaDEd4HFPzsqhoPEcmywQHnZ1EsYkiXkUU= Subject key identifier: E2:B5:A2:A4:8C:D1:78:9D:1E:E8:00:1B:58:2F:AB:1C:03:76:A3:85 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 0829 Signing time: Thu 16 Apr 2026 20:55:50 +0000 Manifest this update: Thu 16 Apr 2026 20:55:49 +0000 Manifest next update: Thu 23 Apr 2026 20:55:49 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: Qj3elcKnwZHZpaC/fQ5h+Mx65tPk2oaGc6k38ZxpKGI=) 2: E7BAB834B5F511F0B410AD78C4F9AE02.roa (hash: uxSAnvR6R6IbVNUOgDxpWGpdmYbvPquJW1vjjs3knts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Apr 16 20:55:49 2026 GMT Not After : Apr 23 20:55:49 2026 GMT Subject: CN=69e14cd6-2066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a8:2a:bc:69:62:f7:db:12:7c:49:a6:72:88: ab:29:df:27:7b:97:fd:7b:1b:90:a9:56:4c:c7:4b: f2:86:46:25:a6:89:d7:46:ce:ab:ff:eb:29:da:ec: 3a:75:1f:3b:13:f1:87:e0:14:28:f6:e6:a4:0e:bb: 2b:29:7f:83:ab:9c:d3:c8:e1:22:cc:03:65:88:69: b9:d7:68:92:60:7c:9a:f6:8c:b4:db:64:f7:64:51: 82:ab:7d:9c:72:28:9a:fe:1d:94:49:d6:f8:02:ad: 12:51:ac:97:70:63:3b:4a:a3:42:e6:62:12:53:c3: 8f:0a:49:83:41:94:b3:12:95:ed:c2:e7:a7:d4:b8: 43:b6:4b:cc:61:00:87:aa:1d:2b:f6:bf:5a:d3:1a: d3:13:1d:80:43:a4:c5:3b:42:9a:53:2f:90:13:88: ff:d0:71:10:93:0e:18:2a:3b:a2:81:1d:d8:63:d1: 1f:fe:26:c4:e2:bb:d7:92:c4:5e:e1:14:cf:dd:a5: 6b:cb:7d:ff:42:92:69:e0:4d:1a:b7:c1:fb:a7:53: 1e:37:ef:fb:0b:18:d3:e3:ac:27:c0:c7:07:e4:fb: 64:2d:e3:e6:d2:e6:18:ff:ac:87:93:0a:44:b3:4a: 8f:a6:4f:bf:aa:c5:f4:23:34:3c:84:4f:5c:b9:ee: ba:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B5:A2:A4:8C:D1:78:9D:1E:E8:00:1B:58:2F:AB:1C:03:76:A3:85 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:6a:59:36:d4:21:07:79:0b:5a:6e:ee:ea:07:1c:73:47:64: 72:0f:be:d4:f2:5f:97:23:ef:25:65:76:4b:a4:29:13:15:55: b7:d9:c0:90:be:eb:be:33:e1:23:a0:93:3c:39:f0:ba:0b:40: 18:73:53:5b:39:0a:37:92:f9:65:17:e8:62:d9:72:5b:4f:41: f0:fd:fd:b9:8a:94:4f:7d:c2:3f:44:53:25:07:c5:8f:7a:25: 5e:1c:26:af:68:40:eb:46:53:7c:eb:19:a5:64:8b:fd:29:9b: 3d:d5:96:c0:dd:ea:10:3d:2d:d8:c2:26:f5:20:27:1a:a0:0a: 7b:90:08:28:c1:5d:ba:f2:bf:b1:0a:57:4d:af:fc:6e:c4:3b: 1e:eb:a5:97:d0:67:7e:20:43:b7:7f:14:c3:be:0f:a7:8e:31: 5a:cd:06:7d:f3:08:83:2f:2a:f7:aa:6f:fc:bf:d2:ae:e8:6f: cb:7b:cb:f0:68:e1:39:79:84:fe:55:47:5b:b7:d8:99:7c:7f: 49:f3:d2:b6:83:ea:95:61:2e:f3:0f:98:07:58:d0:e9:f1:0b: 0a:22:85:4c:01:b7:23:80:ce:8e:a8:43:7d:53:52:23:9c:d2: 7c:5c:45:32:f0:42:6c:4f:06:5b:ab:cc:a3:a5:1e:27:30:d8: f2:f7:dd:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjYwNDE2MjA1NTQ5WhcNMjYwNDIzMjA1NTQ5WjAYMRYwFAYD VQQDEw02OWUxNGNkNi0yMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApagqvGli99sSfEmmcoirKd8ne5f9exuQqVZMx0vyhkYlponXRs6r/+sp2uw6 dR87E/GH4BQo9uakDrsrKX+Dq5zTyOEizANliGm512iSYHya9oy022T3ZFGCq32c ciia/h2USdb4Aq0SUayXcGM7SqNC5mISU8OPCkmDQZSzEpXtwuen1LhDtkvMYQCH qh0r9r9a0xrTEx2AQ6TFO0KaUy+QE4j/0HEQkw4YKjuigR3YY9Ef/ibE4rvXksRe 4RTP3aVry33/QpJp4E0at8H7p1MeN+/7CxjT46wnwMcH5PtkLePm0uYY/6yHkwpE s0qPpk+/qsX0IzQ8hE9cue66+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOK1oqSM 0XidHugAG1gvqxwDdqOFMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvWpZNtQhB3kLWm7u6gccc0dkcg++1PJflyPvJWV2S6QpExVVt9nAkL7rvjPh I6CTPDnwugtAGHNTWzkKN5L5ZRfoYtlyW09B8P39uYqUT33CP0RTJQfFj3olXhwm r2hA60ZTfOsZpWSL/SmbPdWWwN3qED0t2MIm9SAnGqAKe5AIKMFduvK/sQpXTa/8 bsQ7Huull9BnfiBDt38Uw74Pp44xWs0GffMIgy8q96pv/L/Sruhvy3vL8GjhOXmE /lVHW7fYmXx/SfPStoPqlWEu8w+YB1jQ6fELCiKFTAG3I4DOjqhDfVNSI5zSfFxF MvBCbE8GW6vMo6UeJzDY8vfdVA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:02:01 2026 by rpki-client