$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: DCVeqlBmt2FQuRTdrhQAVVJPAIwtoq6t37mxGk7gHaI= Subject key identifier: 17:2B:8A:71:8F:F0:8F:A7:CE:B4:61:67:CF:39:72:98:EB:D5:63:A7 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: D1 Signing time: Fri 17 Apr 2026 06:35:51 +0000 Manifest this update: Fri 17 Apr 2026 06:35:50 +0000 Manifest next update: Fri 24 Apr 2026 06:35:50 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: M0sEmVTjGLP5abm3no6AfS1/e8TB1IKubSEU5xZba7E=) 2: B754B304107A11F19C5931212E3D8C67.roa (hash: huCm1mBmBIglhSBRl6UnmkwQvjS11VKDaF0YxEP0qiI=) 3: DA700744185511F09304D972C4F9AE02.roa (hash: xEV8fhHLEIKGrI5YTOsWxn19pEc9YJdRhWQdUmLp4HI=) 4: E658E72CB4A611F08CEAB576C4F9AE02.roa (hash: LB1cMpp6lgRAraUuswM5qd18Dx/7M0dNMmnPvZo4tAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Apr 17 06:35:50 2026 GMT Not After : Apr 24 06:35:50 2026 GMT Subject: CN=69e1d4c7-f9ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:85:d4:36:ab:35:4f:da:97:c4:14:af:04:88: 13:bf:d9:14:a3:30:fd:34:d7:b3:27:41:ee:40:41: d5:24:3c:59:b8:df:b6:c2:28:09:fc:33:b8:b1:fb: 43:6a:2f:d0:9c:90:05:bb:6c:4f:3b:ac:31:cd:e1: 52:b7:f1:26:be:b1:42:8d:d7:a5:a9:bd:9c:fe:1e: 70:62:10:f1:5f:e3:58:b1:0d:4c:b3:70:84:4b:da: 9b:1f:06:c3:27:7b:7e:10:43:44:0c:1d:35:6a:4f: 68:27:08:8b:a8:e3:4b:c1:d7:9c:84:f3:29:ef:7f: 21:d5:74:5e:15:d6:0a:2a:14:88:ee:00:99:77:d0: 2f:91:8f:bf:06:9f:20:35:d0:25:a0:75:38:93:c0: 24:cf:81:a4:36:c6:64:7c:95:f1:e8:04:50:48:ce: f1:15:ec:b4:82:74:89:52:bd:79:e6:30:ab:cc:de: 65:70:64:cb:ff:bd:cc:f2:14:cb:82:14:25:f2:fe: 33:fe:48:fa:42:11:80:e4:57:57:f5:ee:d3:0a:09: 71:b7:bd:57:5a:0d:90:c9:e2:d2:7f:a5:2f:99:8b: 12:ea:86:37:70:cf:73:43:55:2c:61:8b:2d:90:8e: 89:23:1d:2d:98:ce:81:24:1c:d6:06:b3:67:9d:da: 79:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:2B:8A:71:8F:F0:8F:A7:CE:B4:61:67:CF:39:72:98:EB:D5:63:A7 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:97:89:82:3c:22:54:bb:47:56:cb:9e:a6:6e:f2:cd:9e:c1: 4d:91:f5:14:0e:6f:17:57:b0:f0:b9:bf:1a:73:b2:a8:1d:5a: be:4a:47:3a:7f:2c:56:6f:2b:82:67:77:21:57:64:6a:2b:32: e5:2b:29:04:4e:9b:e0:e8:74:96:13:2e:17:2d:5a:f7:dc:02: ba:3c:6f:d6:35:61:54:f5:d3:17:54:d2:51:95:52:65:16:0e: 45:57:c2:c0:d4:35:85:d9:15:b1:aa:2e:6c:71:89:08:ce:0e: b0:a7:2e:39:46:f2:ef:ee:8a:cc:3e:a6:f4:c4:b0:c6:f6:ef: 7d:4c:8d:d7:02:32:2e:75:54:86:60:d2:58:d8:bd:2c:88:17: 38:a6:a1:d9:53:3c:25:9f:0d:11:0e:5a:41:2c:8c:fd:77:80: 83:dc:92:2c:fd:c9:62:ab:d6:8a:c0:8b:82:c7:29:ea:f9:4d: ab:00:9f:aa:94:66:31:4f:bc:33:ca:84:7a:48:f3:fb:47:a2: 1a:8d:a9:51:f5:4e:99:a0:03:0b:ac:f9:32:16:b7:06:d2:db: 72:68:96:8d:c0:03:b5:aa:17:c8:df:08:d0:9f:6d:fa:3a:a8: 8e:33:92:20:17:87:c1:6c:af:51:1e:b6:ed:02:b6:43:03:57: c6:2d:e0:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QjkxMTAvBgNVBAUTKDkxMTc2RDE2OUM0MkYwM0Q5NTI4MkJCQkEyMDRDNEU0 NEQzMUVEMDkwHhcNMjYwNDE3MDYzNTUwWhcNMjYwNDI0MDYzNTUwWjAYMRYwFAYD VQQDEw02OWUxZDRjNy1mOWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIXUNqs1T9qXxBSvBIgTv9kUozD9NNezJ0HuQEHVJDxZuN+2wigJ/DO4sftD ai/QnJAFu2xPO6wxzeFSt/EmvrFCjdelqb2c/h5wYhDxX+NYsQ1Ms3CES9qbHwbD J3t+EENEDB01ak9oJwiLqONLwdechPMp738h1XReFdYKKhSI7gCZd9AvkY+/Bp8g NdAloHU4k8Akz4GkNsZkfJXx6ARQSM7xFey0gnSJUr155jCrzN5lcGTL/73M8hTL ghQl8v4z/kj6QhGA5FdX9e7TCglxt71XWg2QyeLSf6UvmYsS6oY3cM9zQ1UsYYst kI6JIx0tmM6BJBzWBrNnndp5gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBcrinGP 8I+nzrRhZ885cpjr1WOnMB8GA1UdIwQYMBaAFJEXbRacQvA9lSgru6IExORNMe0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVCOS81MjAyRDAyODBE RjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhEMlZLQ3U3b2dURTVFMHg3 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVCOS81MjAyRDAyODBERjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhE MlZLQ3U3b2dURTVFMHg3UWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxZeJgjwiVLtHVsuepm7yzZ7BTZH1FA5vF1ew8Lm/GnOyqB1avkpHOn8sVm8r gmd3IVdkaisy5SspBE6b4Oh0lhMuFy1a99wCujxv1jVhVPXTF1TSUZVSZRYORVfC wNQ1hdkVsaoubHGJCM4OsKcuOUby7+6KzD6m9MSwxvbvfUyN1wIyLnVUhmDSWNi9 LIgXOKah2VM8JZ8NEQ5aQSyM/XeAg9ySLP3JYqvWisCLgscp6vlNqwCfqpRmMU+8 M8qEekjz+0eiGo2pUfVOmaADC6z5Mha3BtLbcmiWjcADtaoXyN8I0J9t+jqojjOS IBeHwWyvUR627QK2QwNXxi3gTA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:34:17 2026 by rpki-client