$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft (raw, json) Hash identifier: hpfWulRXDY4Dl0dv/GGG77hMFRDbnaGqKfbIPbBazlk= Subject key identifier: 46:1C:1E:0A:A1:F6:4E:00:52:90:86:9E:BF:F9:74:38:BE:2D:87:91 Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 0886 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft Manifest number: 087D Signing time: Sat 04 Apr 2026 20:24:15 +0000 Manifest this update: Sat 04 Apr 2026 20:24:14 +0000 Manifest next update: Sat 11 Apr 2026 20:24:14 +0000 Files and hashes: 1: kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl (hash: aTDRXMn8a4QvcJ5TLhqcy+mQeQJ5XNFppWc8IGpvkA8=) 2: 3CC77D02EE8811EA9225690DC4F9AE02.roa (hash: Zu7ovE1EUW36D/gzrtGv9a6ZOHHzmdXPGruHnQFEs4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503, serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Validity Not Before: Apr 4 20:24:14 2026 GMT Not After : Apr 11 20:24:14 2026 GMT Subject: CN=69d1736f-e7db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3c:95:ae:12:5e:9b:b0:67:05:3c:68:cb:08: 15:3d:c1:30:76:3d:50:da:66:25:23:3f:d5:29:5e: 93:fd:c0:80:21:6f:14:5d:07:3e:f9:4f:b7:a3:38: 16:a0:2d:1f:36:b8:4f:bd:15:19:70:8c:ce:2d:32: 4c:c4:ab:0e:70:09:42:18:11:3a:d3:84:ce:dc:ec: 71:e0:65:ce:b0:41:3a:04:da:0d:b0:0e:fb:05:84: ed:56:87:74:a7:d7:8a:f8:ee:b1:c5:88:92:76:62: 31:69:3b:e2:33:61:27:63:24:91:9f:cb:03:0f:4b: 24:50:b4:0e:39:a9:7b:a6:93:62:5f:71:67:bd:a7: 14:cb:89:7c:dc:18:54:a6:67:b6:8a:1e:d5:6d:0e: 32:af:7d:2a:6b:17:6e:e1:b3:5a:98:f3:b8:27:09: 73:3b:cd:1c:88:30:00:4d:4e:8b:47:11:d4:4c:b5: c8:48:8b:d4:9d:46:b3:e5:7c:f9:ad:22:85:c8:2f: e2:cd:d2:2f:51:79:ed:13:45:0a:05:2a:24:82:79: b8:e1:d4:bf:47:c6:68:e2:ae:85:61:92:ca:87:a2: 49:09:44:63:d2:10:4e:f1:fe:78:50:af:3a:d8:9f: ad:51:cc:6c:bd:b9:05:de:99:1f:80:ab:fa:dc:2c: e8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1C:1E:0A:A1:F6:4E:00:52:90:86:9E:BF:F9:74:38:BE:2D:87:91 X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f0:e1:ca:76:cf:d1:e8:fb:fc:fb:d0:58:44:a0:85:5c:41: 46:71:2b:bc:3f:dc:19:44:9d:8c:bc:21:26:7c:fd:bb:e7:0f: 5a:b2:ff:f2:16:ed:d7:b6:9c:c2:58:86:cd:6b:44:5b:e9:df: 71:66:36:90:d5:22:95:8f:5f:0a:8f:d1:e9:19:cf:f0:c9:c7: bc:e3:95:1c:59:70:30:4b:a3:ef:4e:c6:b9:06:04:01:a4:2d: 6b:6c:4f:79:f6:67:46:53:10:c5:30:9c:83:a1:62:c4:ce:d3: 54:77:fd:2f:9a:d0:1c:50:62:53:8b:5a:be:41:b1:10:54:c3: d3:9b:cb:af:e0:dc:5e:67:ce:65:c4:e3:20:8b:2d:b5:c3:7b: d8:f4:f0:ed:3d:d4:cb:de:12:a5:c6:b5:31:4d:85:93:a1:62: bc:29:0d:f8:d4:d7:76:42:be:15:6e:08:b2:3a:f6:ed:3b:5b: de:b3:62:93:fa:26:29:90:4a:6e:f9:54:59:60:18:6f:c7:d5: ea:7c:51:2a:1d:0c:cf:42:b0:df:0c:ca:34:56:21:e3:87:e4: be:a2:58:38:5b:37:2f:d0:d5:b1:06:a7:a6:48:99:6e:c9:f4: 14:77:7e:b8:77:f8:72:bd:f2:3a:f7:61:01:0e:f2:97:b4:97: 82:d7:14:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjYwNDA0MjAyNDE0WhcNMjYwNDExMjAyNDE0WjAYMRYwFAYD VQQDEw02OWQxNzM2Zi1lN2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzyVrhJem7BnBTxoywgVPcEwdj1Q2mYlIz/VKV6T/cCAIW8UXQc++U+3ozgW oC0fNrhPvRUZcIzOLTJMxKsOcAlCGBE604TO3Oxx4GXOsEE6BNoNsA77BYTtVod0 p9eK+O6xxYiSdmIxaTviM2EnYySRn8sDD0skULQOOal7ppNiX3FnvacUy4l83BhU pme2ih7VbQ4yr30qaxdu4bNamPO4JwlzO80ciDAATU6LRxHUTLXISIvUnUaz5Xz5 rSKFyC/izdIvUXntE0UKBSokgnm44dS/R8Zo4q6FYZLKh6JJCURj0hBO8f54UK86 2J+tUcxsvbkF3pkfgKv63CzopwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEYcHgqh 9k4AUpCGnr/5dDi+LYeRMB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjUwMy8wMTU0QjRCNkVFODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFi S2Y0NlFmSU1VcklNcjFWYm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr/DhynbP0ej7/PvQWESghVxBRnErvD/cGUSdjLwhJnz9u+cPWrL/8hbt17ac wliGzWtEW+nfcWY2kNUilY9fCo/R6RnP8MnHvOOVHFlwMEuj707GuQYEAaQta2xP efZnRlMQxTCcg6FixM7TVHf9L5rQHFBiU4tavkGxEFTD05vLr+DcXmfOZcTjIIst tcN72PTw7T3Uy94Spca1MU2Fk6FivCkN+NTXdkK+FW4Isjr27Ttb3rNik/omKZBK bvlUWWAYb8fV6nxRKh0Mz0Kw3wzKNFYh44fkvqJYOFs3L9DVsQanpkiZbsn0FHd+ uHf4cr3yOvdhAQ7yl7SXgtcUpQ== -----END CERTIFICATE-----Generated at Sun Apr 5 21:10:25 2026 by rpki-client