$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: rZ1OHyqBColKhyTqjflLWyZc63vBDaF8OtcDV/jj8mk= Subject key identifier: 97:CC:33:67:B6:76:1A:2C:31:59:99:44:70:44:B3:9B:BD:05:E1:D2 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 126F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 1261 Signing time: Sat 04 Apr 2026 16:59:28 +0000 Manifest this update: Sat 04 Apr 2026 16:59:27 +0000 Manifest next update: Sat 11 Apr 2026 16:59:27 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: yGyJ9kZAww4ZJoLmuzpjdGmCdwfALF2R7jihR5oEQok=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: h+tzRhpe2AsXoHJ8CBPjL2tTeLXiRNNuDMYfrMmyPpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4719 (0x126f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Apr 4 16:59:27 2026 GMT Not After : Apr 11 16:59:27 2026 GMT Subject: CN=69d14370-3308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:6b:f5:70:5d:d1:aa:ae:d6:77:58:ef:93:ef: 25:d7:c1:16:65:16:74:71:92:c9:5f:1f:d7:5d:0e: 91:45:56:c7:fa:f8:99:96:91:1a:2d:48:ae:f0:60: 93:12:1b:98:e6:46:47:7b:14:4f:31:dd:12:95:8b: a0:6f:f1:5f:8a:6d:22:e7:45:50:50:9e:1f:b0:12: 3c:1c:70:81:e2:de:5e:3a:17:fb:19:1b:7c:4d:5f: d0:fa:ff:dd:a4:2f:64:d7:ed:33:ed:de:74:8f:18: b1:af:ff:f2:fb:74:e9:58:a8:af:82:7e:e5:72:28: 2c:6e:0c:bd:df:d0:b3:00:5d:d7:d4:0e:41:e1:31: ad:e6:9f:bd:67:0c:48:ae:92:14:f2:bd:56:00:a8: 5d:0e:ee:3a:01:c0:a2:e3:0a:1e:7e:29:24:f4:b7: 0b:65:76:f2:ef:c1:82:5e:b8:09:03:cf:b7:6a:5e: af:7e:b4:1c:11:0e:3d:1a:21:3d:99:3a:fc:ed:87: 90:f1:90:f7:f0:2e:67:95:94:0c:65:6f:86:96:de: 53:af:d3:ad:7a:f1:b5:81:8b:a8:83:33:53:8e:61: ba:85:2d:4d:fa:fe:d0:50:95:2d:4f:04:c3:71:64: 44:ff:a8:b1:a2:82:8e:ba:a3:cf:5c:c5:ba:49:8d: 19:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:CC:33:67:B6:76:1A:2C:31:59:99:44:70:44:B3:9B:BD:05:E1:D2 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:12:33:b7:6d:48:53:81:23:66:3a:b1:14:0b:7f:29:61:ff: da:c8:c9:fd:42:33:38:45:dd:23:53:25:79:07:6f:46:b7:cf: 11:91:aa:3f:87:d7:0d:2a:7e:91:8c:0e:f3:f5:86:30:3e:2b: fd:2f:3e:76:17:f3:2b:13:55:23:9e:fe:f6:b3:5f:bd:ae:ed: 4d:02:ec:0b:29:6f:a9:66:0e:e7:94:bc:de:a9:c5:37:d3:e8: 7e:03:b9:45:9a:2c:46:3e:ee:2e:51:0e:78:34:0c:18:50:9c: 25:49:75:b1:c8:ab:5b:bb:f0:8c:6d:e1:a3:97:52:fd:cc:44: 1a:3e:b6:b9:e4:35:57:b5:15:d8:45:75:91:16:2a:3f:34:5e: 47:e1:bd:2e:27:c0:7d:e0:5c:21:da:a6:a6:dc:5e:27:e9:9e: d6:22:56:93:ff:52:36:64:2b:69:7c:78:17:59:17:74:1b:ab: 05:f5:ee:81:d7:7c:eb:2e:fc:7f:3d:93:a3:57:82:21:f9:43: 48:2d:fd:78:42:9c:00:fc:2a:5f:f1:81:1b:d7:90:ff:eb:b6: 05:6c:ca:45:c6:55:93:4c:1c:9d:4b:a3:8a:0a:eb:8e:89:ea: c4:b0:6f:fd:0d:80:19:18:01:69:2e:d8:43:08:4e:a2:93:44: e7:6d:b7:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjYwNDA0MTY1OTI3WhcNMjYwNDExMTY1OTI3WjAYMRYwFAYD VQQDEw02OWQxNDM3MC0zMzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mv1cF3Rqq7Wd1jvk+8l18EWZRZ0cZLJXx/XXQ6RRVbH+viZlpEaLUiu8GCT EhuY5kZHexRPMd0SlYugb/Ffim0i50VQUJ4fsBI8HHCB4t5eOhf7GRt8TV/Q+v/d pC9k1+0z7d50jxixr//y+3TpWKivgn7lcigsbgy939CzAF3X1A5B4TGt5p+9ZwxI rpIU8r1WAKhdDu46AcCi4woefikk9LcLZXby78GCXrgJA8+3al6vfrQcEQ49GiE9 mTr87YeQ8ZD38C5nlZQMZW+Glt5Tr9OtevG1gYuogzNTjmG6hS1N+v7QUJUtTwTD cWRE/6ixooKOuqPPXMW6SY0ZTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJfMM2e2 dhosMVmZRHBEs5u9BeHSMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUBIzt21IU4EjZjqxFAt/KWH/2sjJ/UIzOEXdI1MleQdvRrfPEZGqP4fXDSp+ kYwO8/WGMD4r/S8+dhfzKxNVI57+9rNfva7tTQLsCylvqWYO55S83qnFN9PofgO5 RZosRj7uLlEOeDQMGFCcJUl1scirW7vwjG3ho5dS/cxEGj62ueQ1V7UV2EV1kRYq PzReR+G9LifAfeBcIdqmptxeJ+me1iJWk/9SNmQraXx4F1kXdBurBfXugdd86y78 fz2To1eCIflDSC39eEKcAPwqX/GBG9eQ/+u2BWzKRcZVk0wcnUujigrrjonqxLBv /Q2AGRgBaS7YQwhOopNE5223tQ== -----END CERTIFICATE-----Generated at Sun Apr 5 20:57:58 2026 by rpki-client