$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: IBxH5mf74IiFRT/sc/eM7kZtRfmW4R8OJ2gLTsPNXBk= Subject key identifier: 9C:C0:F2:EF:9F:41:B6:50:B3:F0:CD:CE:69:F0:92:DC:69:CB:DD:54 Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: 0131 Signing time: Sun 05 Apr 2026 04:59:40 +0000 Manifest this update: Sun 05 Apr 2026 04:59:40 +0000 Manifest next update: Sun 12 Apr 2026 04:59:40 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: bvx+4EOEH72s6a2kTEQ0PlIg9856Xzo+d7aJOruknWU=) 2: C37A8D80DC9411F0B18EF655406F56BC.roa (hash: xdvfA779z9auA+6dnwAxD5LtYSpidPPxAN1J+qgnhRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA, serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Apr 5 04:59:40 2026 GMT Not After : Apr 12 04:59:40 2026 GMT Subject: CN=69d1ec3c-5d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5e:ff:9e:95:30:45:75:a5:05:f9:69:76:97: 11:c7:2e:51:26:de:02:fc:f3:22:ac:12:8e:59:f4: 1f:ff:3a:56:63:4d:ad:75:8f:e5:d5:e9:f8:2a:42: d1:7a:e6:45:6a:ad:7e:79:ba:07:bf:c6:6e:ad:d4: 21:03:06:d4:c3:1b:e3:5d:eb:d9:70:50:e2:87:62: df:2e:73:40:d1:01:50:6e:b7:dc:a4:e9:b1:51:aa: 48:cc:83:46:51:64:03:7d:59:0c:02:54:06:cf:bd: 3f:ee:6b:6b:70:d2:da:22:dd:33:d8:15:72:59:93: d8:6c:6b:cd:a5:2f:05:95:69:2d:64:f9:10:e2:68: 3d:cd:11:eb:de:2c:5b:ea:a5:1a:a4:cb:b4:f7:ff: d5:a4:d7:d9:b3:d9:98:02:66:8e:f6:16:25:3b:c6: 01:41:56:8a:9e:85:07:14:2e:47:e1:20:48:87:23: f9:f2:0d:4b:80:fb:a9:bc:2f:29:ca:f9:77:67:73: 92:e3:51:34:7f:2f:5c:ef:20:bc:8b:7e:d4:32:49: 0e:98:d2:41:89:7d:73:5c:5b:35:5b:bd:02:a4:95: da:72:9e:59:81:75:67:9b:da:8a:eb:1c:d2:99:64: 4d:b8:3c:8d:3a:4a:4e:0d:74:70:f0:e6:c2:5a:00: 70:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C0:F2:EF:9F:41:B6:50:B3:F0:CD:CE:69:F0:92:DC:69:CB:DD:54 X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:cf:0f:b2:28:b9:6f:11:15:85:56:79:87:03:bf:c6:69:a1: 00:56:4b:ce:9c:35:88:0b:9b:f4:07:c7:ca:a5:0c:2b:ae:ac: d9:a3:24:c5:49:a9:7b:aa:85:af:e7:32:da:75:b8:c0:a2:0c: 3a:13:88:34:00:0d:12:99:f6:15:07:36:f9:fa:b5:62:78:e7: 83:a0:5b:fc:54:87:96:1e:70:b4:7d:1d:0c:b6:46:60:ac:1a: 50:16:eb:c6:63:c7:62:a0:a7:4d:03:43:ee:01:8a:d7:6f:2e: 44:57:92:3b:60:45:28:58:0b:70:e0:c0:b0:0c:7f:2d:d9:73: 22:5d:37:77:c1:45:f4:a6:f2:56:9f:24:dd:89:75:de:62:5e: c3:49:2c:10:3b:6b:3c:8e:e1:a0:27:b3:8f:9c:f5:5f:8d:05: 7d:eb:8c:b2:00:d2:52:45:82:f7:9e:81:41:0f:bd:b4:47:43: fe:da:1a:f1:16:ad:64:59:2e:99:23:24:6c:48:26:eb:85:a0: 7f:df:09:58:72:aa:bd:08:53:dd:0d:93:a9:5a:0c:a7:ca:eb: 82:54:00:02:f7:8b:4c:d2:70:d7:4a:62:8e:8c:f3:f9:52:ce: 4b:76:41:23:8e:82:f3:cf:02:51:56:b7:d9:4b:cd:61:d9:c0: 9b:e1:54:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkExMTAvBgNVBAUTKEFFQ0ZBNDgyNTJEQ0I1NUM1RjFFQjM4MTI4OENFREMz RTZGODYyNzQwHhcNMjYwNDA1MDQ1OTQwWhcNMjYwNDEyMDQ1OTQwWjAYMRYwFAYD VQQDEw02OWQxZWMzYy01ZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0l7/npUwRXWlBflpdpcRxy5RJt4C/PMirBKOWfQf/zpWY02tdY/l1en4KkLR euZFaq1+eboHv8ZurdQhAwbUwxvjXevZcFDih2LfLnNA0QFQbrfcpOmxUapIzING UWQDfVkMAlQGz70/7mtrcNLaIt0z2BVyWZPYbGvNpS8FlWktZPkQ4mg9zRHr3ixb 6qUapMu09//VpNfZs9mYAmaO9hYlO8YBQVaKnoUHFC5H4SBIhyP58g1LgPupvC8p yvl3Z3OS41E0fy9c7yC8i37UMkkOmNJBiX1zXFs1W70CpJXacp5ZgXVnm9qK6xzS mWRNuDyNOkpODXRw8ObCWgBwDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJzA8u+f QbZQs/DNzmnwktxpy91UMB8GA1UdIwQYMBaAFK7PpIJS3LVcXx6zgSiM7cPm+GJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQS8yNjQ1MjFEMjY5 MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RWeGZIck9CS0l6dHctYjRZ blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFluUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQS8yNjQ1MjFEMjY5MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RW eGZIck9CS0l6dHctYjRZblEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPc8Psii5bxEVhVZ5hwO/xmmhAFZLzpw1iAub9AfHyqUMK66s2aMkxUmpe6qF r+cy2nW4wKIMOhOINAANEpn2FQc2+fq1Ynjng6Bb/FSHlh5wtH0dDLZGYKwaUBbr xmPHYqCnTQND7gGK128uRFeSO2BFKFgLcODAsAx/LdlzIl03d8FF9KbyVp8k3Yl1 3mJew0ksEDtrPI7hoCezj5z1X40FfeuMsgDSUkWC956BQQ+9tEdD/toa8RatZFku mSMkbEgm64Wgf98JWHKqvQhT3Q2TqVoMp8rrglQAAveLTNJw10pijozz+VLOS3ZB I46C888CUVa32UvNYdnAm+FU4A== -----END CERTIFICATE-----Generated at Sun Apr 5 19:48:58 2026 by rpki-client