$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: YrBHk50+gpfTmJrJ95okXFmwxAVbgdet/o3InI4tNHE= Subject key identifier: B8:90:61:17:14:17:75:51:F5:64:46:58:F1:BC:EF:DD:B9:20:B4:55 Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 067B Signing time: Sat 04 Apr 2026 22:19:07 +0000 Manifest this update: Sat 04 Apr 2026 22:19:07 +0000 Manifest next update: Sat 11 Apr 2026 22:19:07 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: T+hE5AMBDePr55XtDuG7t5St8iZKTCY5g9Qv9+yr6EU=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: KuRVVtBymL1UcskS7Gi0UHbMc11CttUTwLtw4F6P+/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5, serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: Apr 4 22:19:07 2026 GMT Not After : Apr 11 22:19:07 2026 GMT Subject: CN=69d18e5b-d18e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:38:32:2b:61:db:b1:9d:4f:da:b4:d5:67: ea:40:e6:23:4a:86:f9:81:22:b1:ef:df:2b:8c:a5: f9:c1:b2:27:72:6e:3e:22:be:81:66:b2:1f:57:a2: 1d:a1:27:fd:cc:66:63:f3:71:f2:b5:93:e3:ca:0b: cb:d5:c7:0c:7c:0b:7a:c5:c1:07:01:71:cb:76:a4: 85:6b:ec:b5:cc:44:b1:c5:a8:b4:86:5d:3b:bd:cf: 95:af:72:ef:c3:2d:af:04:02:d7:e6:84:41:00:86: b2:c2:ff:f2:20:3e:55:19:f7:7f:69:05:fd:01:88: 34:4a:7a:20:1a:46:e4:6b:8f:4d:77:2d:8a:8a:45: e4:f5:b0:9e:c1:d7:b7:42:6a:e9:55:ec:e5:2a:19: 14:03:51:12:95:3c:db:4f:bf:e6:e8:7e:cc:05:e0: 89:c0:97:0d:b2:95:62:4d:c3:fe:82:e1:33:84:1e: 10:4b:d4:15:e4:76:ee:c9:97:ae:ee:b6:23:2f:5b: 5a:8d:ea:71:44:86:12:ff:f9:8c:4e:f8:5c:52:05: 8d:19:14:12:24:06:d2:eb:cc:00:ec:cd:c7:7a:89: 86:28:d6:ec:cd:27:44:62:ac:cd:ea:94:05:a1:00: f9:84:6e:40:b3:4b:c5:20:74:3b:79:cb:65:6f:73: 71:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:90:61:17:14:17:75:51:F5:64:46:58:F1:BC:EF:DD:B9:20:B4:55 X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:16:65:e4:e4:e3:3b:fc:43:05:85:bf:df:d8:d1:88:bf:50: ed:5f:c8:7b:8c:47:85:57:df:c9:3b:c6:77:7c:e0:86:d0:5a: f7:82:de:fb:cc:15:ee:16:e4:52:c3:41:08:c5:c6:ed:42:f3: 15:fd:ca:75:5b:37:cc:39:70:67:11:56:e5:30:42:ab:f3:65: c7:7b:64:c5:cb:30:71:b4:6f:34:44:ea:fd:93:a4:6e:61:29: 9b:e6:86:92:e5:4b:df:5a:12:9e:05:67:1a:b2:69:07:35:ea: a1:46:ac:92:2d:bf:af:1f:5a:60:15:e5:5f:3f:b1:94:04:95: d2:ce:aa:f6:50:0f:eb:68:7c:87:c0:c0:31:a1:41:24:49:48: 04:6f:ec:03:da:16:9b:ff:80:d9:f4:25:10:b6:cb:a4:d3:ea: 76:75:98:1f:ea:97:07:bc:16:25:54:6b:3d:d4:f9:14:85:04: 4a:5a:d7:fd:b0:ac:5c:1e:04:3b:8b:34:00:a3:b4:c2:79:68: 4f:fd:7c:f9:e3:95:60:75:06:a1:5d:b6:20:f4:85:4c:e8:68: 52:de:c7:a1:d3:12:b3:e0:d8:df:51:d3:fc:f2:dd:37:37:fb: 27:f3:7e:52:0a:71:9d:20:e2:1d:7a:4f:92:a6:45:ed:48:37: fc:13:ff:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjYwNDA0MjIxOTA3WhcNMjYwNDExMjIxOTA3WjAYMRYwFAYD VQQDEw02OWQxOGU1Yi1kMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoo44Mith27GdT9q01WfqQOYjSob5gSKx798rjKX5wbIncm4+Ir6BZrIfV6Id oSf9zGZj83HytZPjygvL1ccMfAt6xcEHAXHLdqSFa+y1zESxxai0hl07vc+Vr3Lv wy2vBALX5oRBAIaywv/yID5VGfd/aQX9AYg0SnogGkbka49Ndy2KikXk9bCewde3 QmrpVezlKhkUA1ESlTzbT7/m6H7MBeCJwJcNspViTcP+guEzhB4QS9QV5HbuyZeu 7rYjL1tajepxRIYS//mMTvhcUgWNGRQSJAbS68wA7M3HeomGKNbszSdEYqzN6pQF oQD5hG5As0vFIHQ7ectlb3NxWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLiQYRcU F3VR9WRGWPG87925ILRVMB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJBZl5OTjO/xDBYW/39jRiL9Q7V/Ie4xHhVffyTvGd3zghtBa94Le+8wV7hbk UsNBCMXG7ULzFf3KdVs3zDlwZxFW5TBCq/Nlx3tkxcswcbRvNETq/ZOkbmEpm+aG kuVL31oSngVnGrJpBzXqoUaski2/rx9aYBXlXz+xlASV0s6q9lAP62h8h8DAMaFB JElIBG/sA9oWm/+A2fQlELbLpNPqdnWYH+qXB7wWJVRrPdT5FIUESlrX/bCsXB4E O4s0AKO0wnloT/18+eOVYHUGoV22IPSFTOhoUt7HodMSs+DY31HT/PLdNzf7J/N+ UgpxnSDiHXpPkqZF7Ug3/BP/7w== -----END CERTIFICATE-----Generated at Sun Apr 5 19:58:30 2026 by rpki-client