$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: w6ULq/OOrzVwsNpXlCX/pt1HNVELpuorVcJakwFOJ6U= Subject key identifier: B4:0F:70:D2:BA:E9:5A:A8:34:6B:AD:B8:41:33:02:E6:E1:D5:8F:F1 Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 176B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 1752 Signing time: Thu 16 Apr 2026 16:31:54 +0000 Manifest this update: Thu 16 Apr 2026 16:31:54 +0000 Manifest next update: Thu 23 Apr 2026 16:31:54 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: a0ICjT5T9prU+dqsWy2SKMjsLXCOI7G0v4RwJ+kZlb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5995 (0x176b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Apr 16 16:31:54 2026 GMT Not After : Apr 23 16:31:54 2026 GMT Subject: CN=69e10efa-5ba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:fb:7c:cd:f5:64:49:6c:3f:7c:96:ff:4c: 6a:3b:8c:0b:3c:64:a6:22:91:5e:b1:81:69:cd:42: 3d:fb:15:b1:55:85:c5:27:61:29:b8:d6:99:48:e8: 59:b9:2d:15:68:cd:e8:31:6f:e1:fc:3d:b0:77:74: 07:d9:99:a5:b0:a9:f2:5c:a6:1d:2e:78:56:ba:e8: 35:a4:f5:f2:82:56:5a:8c:bd:4a:16:dc:32:a0:15: 40:e4:19:19:8a:b8:be:61:3e:f7:3e:63:97:c4:29: b6:f7:b8:01:b2:6f:9d:6e:82:29:fa:55:05:f0:4e: 7a:e2:8b:b6:e7:84:87:ab:bb:6e:8a:19:6c:e7:71: c6:10:46:ea:bd:40:92:7f:34:fb:5c:37:19:21:fc: ac:fb:62:63:9a:d1:d3:c5:b7:2e:5e:28:d0:71:26: 5e:59:b6:b9:0d:12:76:8f:c7:a2:ab:8b:8e:63:4e: 44:49:f9:27:f6:0b:78:e1:e7:eb:15:da:90:39:c9: a8:10:e7:93:c5:11:2f:1d:d8:8a:f0:bd:a5:aa:18: e5:32:ce:cd:73:6d:c1:e3:1f:1b:89:f9:7c:70:0c: c4:6d:6c:8e:0d:d4:8c:fb:6b:31:67:f2:0e:6c:f6: 5f:1b:28:8d:e2:88:78:4b:56:01:cd:08:6d:9e:6b: b3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:0F:70:D2:BA:E9:5A:A8:34:6B:AD:B8:41:33:02:E6:E1:D5:8F:F1 X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:cc:f2:8e:59:7d:1f:a7:7d:e2:70:5a:8d:c8:0d:10:b3:59: ad:66:16:6e:99:c5:f9:c3:1e:3f:d8:9e:b6:10:b0:31:3b:35: a7:e2:56:29:d3:a2:a0:37:bf:a7:07:ac:a5:e1:d6:3e:78:66: 36:49:cd:03:41:e2:c8:ab:23:ba:5e:3e:35:23:77:73:59:65: bd:95:2d:40:00:45:fd:a8:88:5b:d6:a6:fc:c6:22:ff:78:b0: 78:2a:75:18:0b:02:16:c3:16:e4:b0:6d:6f:90:c7:74:8b:fd: b7:b5:81:0f:92:bd:42:b0:3c:7a:00:9c:70:88:e2:9a:4a:7d: bc:e4:3f:ab:d7:4f:ca:8a:d2:19:75:f0:45:91:f7:08:19:fb: 93:3b:8f:a8:09:50:c5:76:d2:cd:2d:06:ee:98:4e:f9:80:15: 55:78:df:46:76:73:c8:6d:9d:e3:06:bb:ec:55:f4:4b:92:eb: ea:1c:58:71:70:0a:24:91:52:4b:b4:60:7a:9f:c2:79:87:f5: 46:db:c4:86:e5:35:e8:74:fc:2e:ac:56:49:bd:b8:46:87:3c: 1d:9f:7d:ec:30:95:8b:e0:1c:7d:38:61:27:6d:6e:e6:75:4e: 61:29:89:8e:5b:5f:7c:4d:6a:a3:62:f0:84:e7:f2:bc:f5:34: 82:30:26:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjYwNDE2MTYzMTU0WhcNMjYwNDIzMTYzMTU0WjAYMRYwFAYD VQQDEw02OWUxMGVmYS01YmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBr7fM31ZElsP3yW/0xqO4wLPGSmIpFesYFpzUI9+xWxVYXFJ2EpuNaZSOhZ uS0VaM3oMW/h/D2wd3QH2ZmlsKnyXKYdLnhWuug1pPXyglZajL1KFtwyoBVA5BkZ iri+YT73PmOXxCm297gBsm+dboIp+lUF8E564ou254SHq7tuihls53HGEEbqvUCS fzT7XDcZIfys+2JjmtHTxbcuXijQcSZeWba5DRJ2j8eiq4uOY05ESfkn9gt44efr FdqQOcmoEOeTxREvHdiK8L2lqhjlMs7Nc23B4x8bifl8cAzEbWyODdSM+2sxZ/IO bPZfGyiN4oh4S1YBzQhtnmuzzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLQPcNK6 6VqoNGutuEEzAubh1Y/xMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnMzyjll9H6d94nBajcgNELNZrWYWbpnF+cMeP9iethCwMTs1p+JWKdOioDe/ pwespeHWPnhmNknNA0HiyKsjul4+NSN3c1llvZUtQABF/aiIW9am/MYi/3iweCp1 GAsCFsMW5LBtb5DHdIv9t7WBD5K9QrA8egCccIjimkp9vOQ/q9dPyorSGXXwRZH3 CBn7kzuPqAlQxXbSzS0G7phO+YAVVXjfRnZzyG2d4wa77FX0S5Lr6hxYcXAKJJFS S7Rgep/CeYf1RtvEhuU16HT8LqxWSb24Roc8HZ997DCVi+AcfThhJ21u5nVOYSmJ jltffE1qo2LwhOfyvPU0gjAmeA== -----END CERTIFICATE-----Generated at Fri Apr 17 17:57:55 2026 by rpki-client