$ rpki-client -vvf rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft File: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft (raw, json) Hash identifier: PFswRj4PP4mO2v3Q1CAA243OvPLkfu2FSST/+FRLlg4= Subject key identifier: 48:A1:BE:54:D5:8A:D3:6B:F9:F0:80:62:4A:CC:6E:0C:7D:0B:2D:AA Authority key identifier: 91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 Certificate issuer: /CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Certificate serial: 0F00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft Manifest number: 0EF5 Signing time: Sat 04 Apr 2026 17:29:22 +0000 Manifest this update: Sat 04 Apr 2026 17:29:21 +0000 Manifest next update: Sat 11 Apr 2026 17:29:21 +0000 Files and hashes: 1: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl (hash: S0vDAHdisXe2QRzkfuCsZIKbxS5nUSJogQFGoTehBPU=) 2: 36477FF69D2E11E99A95DC2AC4F9AE02.roa (hash: 7Zntvgptxi7t6rq+AQ6AjwkrN9jO9paj8Ccr/LfGYDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3840 (0xf00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91478C3, serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Validity Not Before: Apr 4 17:29:21 2026 GMT Not After : Apr 11 17:29:21 2026 GMT Subject: CN=69d14a72-3728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:1f:e5:e1:49:63:26:15:cc:6e:2c:e1:71:cc: 34:63:32:54:66:4f:70:0f:f9:0f:b9:f3:77:da:19: da:4e:bf:72:e2:62:12:ba:39:af:06:1e:0a:27:f6: ef:15:e5:89:17:da:91:5b:ce:c5:ca:f7:4d:67:23: 15:7e:43:5a:62:1c:f8:05:63:77:80:5a:12:33:ad: 3a:1e:fc:64:6c:a1:2e:0f:ec:8e:af:74:1c:cc:f3: 6a:82:8c:ac:c6:1d:84:17:bd:23:dc:a7:d1:fe:fc: c4:bf:2f:0e:27:e3:c5:1b:54:f7:e4:41:3d:2d:12: 24:cf:43:c2:58:44:45:be:34:09:6a:6a:fe:29:3a: 59:99:3f:5a:c5:35:73:8a:69:af:73:8e:8e:9a:6e: bf:cb:b1:d4:5e:20:e0:07:16:c9:21:08:da:36:a3: 1e:bc:69:bf:5e:37:09:6e:b5:53:f5:59:27:83:a8: 14:02:b7:73:14:12:57:3e:92:1c:10:01:e5:da:37: 90:ee:d1:84:c7:43:59:f1:eb:df:c8:7c:dc:14:db: d8:34:47:be:9e:6b:f6:a2:30:0d:22:2e:c7:53:ab: 15:3e:38:64:bc:63:30:6e:5a:b7:6c:68:12:a7:5e: d4:29:86:ee:fe:5b:d6:73:99:74:63:b9:3b:e4:ac: ef:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A1:BE:54:D5:8A:D3:6B:F9:F0:80:62:4A:CC:6E:0C:7D:0B:2D:AA X509v3 Authority Key Identifier: keyid:91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:11:90:e4:af:cc:ac:10:8f:bc:d8:d0:90:e0:8a:c8:c8:87: b5:96:b0:5c:07:60:50:50:c4:fd:1d:a7:2c:b0:95:6a:fa:49: 25:09:1d:29:f7:9b:6e:f5:ee:f1:1f:e9:b0:87:f7:44:a8:03: 4f:13:75:e4:7a:67:e5:f6:94:52:c0:7b:09:54:1f:12:76:b2: 59:f8:65:8e:91:e0:d1:d6:a8:1f:cb:d4:52:06:85:ef:42:9d: 36:0d:70:c7:cc:5c:9e:7f:f6:a2:8f:8e:01:39:ef:c9:25:4c: f8:71:e3:5d:8d:07:89:d0:a0:35:fb:67:a4:0c:ef:75:33:cc: b8:ed:80:63:75:da:2c:48:e8:12:98:80:87:69:05:90:d4:00: 2b:4d:c3:cb:4f:0e:f9:bb:19:3f:ff:79:9b:b8:f5:19:a5:6f: 86:47:43:64:9f:35:85:85:a1:34:e4:31:0a:4b:0d:c2:c0:f4: 75:c0:a6:e6:76:97:a6:44:36:7d:1f:d1:f6:68:b2:e3:de:df: 61:73:a8:96:29:87:31:7f:85:1a:85:3b:30:6f:a4:a3:a7:28: 5d:0b:07:89:db:62:e7:e3:1a:a4:72:c5:c9:b6:23:01:5c:07: 08:5e:7e:50:1b:5e:35:11:43:1c:86:c8:a8:ec:40:ed:70:f2: a3:41:3c:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4QzMxMTAvBgNVBAUTKDkxMkFCMzlGQzdCQkNCRUYxQ0YyNjdFOUQzRjcxOUM5 QTRGMEExMTQwHhcNMjYwNDA0MTcyOTIxWhcNMjYwNDExMTcyOTIxWjAYMRYwFAYD VQQDEw02OWQxNGE3Mi0zNzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjh/l4UljJhXMbizhccw0YzJUZk9wD/kPufN32hnaTr9y4mISujmvBh4KJ/bv FeWJF9qRW87FyvdNZyMVfkNaYhz4BWN3gFoSM606HvxkbKEuD+yOr3QczPNqgoys xh2EF70j3KfR/vzEvy8OJ+PFG1T35EE9LRIkz0PCWERFvjQJamr+KTpZmT9axTVz immvc46Omm6/y7HUXiDgBxbJIQjaNqMevGm/XjcJbrVT9Vkng6gUArdzFBJXPpIc EAHl2jeQ7tGEx0NZ8evfyHzcFNvYNEe+nmv2ojANIi7HU6sVPjhkvGMwblq3bGgS p17UKYbu/lvWc5l0Y7k75Kzv2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEihvlTV itNr+fCAYkrMbgx9Cy2qMB8GA1UdIwQYMBaAFJEqs5/Hu8vvHPJn6dP3Gcmk8KEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzhDMy9FM0Q5MTk0QzlE MkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3ktOGM4bWZwMF9jWnlhVHdv UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTcXpuOGU3eS04YzhtZnAwX2NaeWFUd29SUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzhDMy9FM0Q5MTk0QzlEMkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3kt OGM4bWZwMF9jWnlhVHdvUlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAABGQ5K/MrBCPvNjQkOCKyMiHtZawXAdgUFDE/R2nLLCVavpJJQkdKfebbvXu 8R/psIf3RKgDTxN15Hpn5faUUsB7CVQfEnayWfhljpHg0daoH8vUUgaF70KdNg1w x8xcnn/2oo+OATnvySVM+HHjXY0HidCgNftnpAzvdTPMuO2AY3XaLEjoEpiAh2kF kNQAK03Dy08O+bsZP/95m7j1GaVvhkdDZJ81hYWhNOQxCksNwsD0dcCm5naXpkQ2 fR/R9miy497fYXOolimHMX+FGoU7MG+ko6coXQsHidti5+MapHLFybYjAVwHCF5+ UBteNRFDHIbIqOxA7XDyo0E80Q== -----END CERTIFICATE-----Generated at Sun Apr 5 19:40:18 2026 by rpki-client