$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: EIzMQry9AJofZdCbLD+TPCaw4WUtxQSXLxT4t9HDXYw= Subject key identifier: 2D:F7:16:18:89:2A:BB:4A:60:E0:01:AA:C5:4F:29:74:D9:EE:0F:6F Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01E9 Signing time: Sun 05 Apr 2026 02:52:44 +0000 Manifest this update: Sun 05 Apr 2026 02:52:44 +0000 Manifest next update: Sun 12 Apr 2026 02:52:44 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: u6Zm5jfV3qFcYW9UfP3ZbpdQfL2ygTNI+C8gmG+ju74=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: CEGrzyVX/R9nXXUQAan2KcsnSM9ycrOqX5vVxIScejc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Apr 5 02:52:44 2026 GMT Not After : Apr 12 02:52:44 2026 GMT Subject: CN=69d1ce7c-d75c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a9:80:43:24:19:68:9c:64:ee:86:17:d7:08: 0b:61:ed:b2:a1:ce:24:bc:42:c6:46:ab:02:53:78: a7:ab:4a:f9:15:e2:68:87:da:77:6d:8e:58:f2:38: c0:57:93:58:fa:85:78:03:6a:21:db:6e:a0:e0:b9: 96:b7:4b:04:5c:09:1c:e9:24:b0:de:6f:c0:b5:be: 00:4b:29:53:3d:20:4b:15:44:c1:94:ea:e5:d0:f2: ee:24:58:77:02:63:53:a5:25:46:4a:8e:dc:bc:f8: aa:06:9a:a7:52:fa:2b:c4:8c:69:08:1a:17:81:8e: c0:80:21:43:6b:0f:bf:d2:50:d9:45:aa:e0:d9:ed: e0:80:8d:cc:05:81:5b:25:f4:1d:d0:36:b1:25:27: 90:3c:7c:11:c7:f9:f1:73:b3:18:73:57:90:c2:bf: 2c:c3:7a:b8:85:f3:83:f6:86:31:58:71:95:7a:56: ce:0b:06:c5:e7:99:ae:a3:89:19:2a:2f:02:5b:ba: cc:e0:22:0b:3e:f6:ae:48:fe:33:8a:06:48:4c:85: 70:96:d7:ae:ec:4b:45:e6:1b:96:78:27:97:ae:9e: 0b:3f:d4:5b:d9:54:a3:38:67:a0:a7:11:2c:be:fe: 54:94:b1:69:f7:a2:41:a1:bb:83:bf:4a:b4:84:bf: 0c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F7:16:18:89:2A:BB:4A:60:E0:01:AA:C5:4F:29:74:D9:EE:0F:6F X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:3c:68:6a:90:26:8a:ff:cc:17:2e:20:5a:1b:e9:7e:7f:a9: 8b:20:db:59:83:ff:fa:a4:fc:1b:cc:a7:f3:63:b7:4e:6f:c2: b9:41:62:db:75:5f:e9:6f:96:ab:1a:42:a1:b6:51:27:33:bf: 5d:79:12:f9:60:09:2c:28:e9:0a:09:0b:70:e0:d9:44:c1:1e: b1:3e:96:1c:c7:12:36:f8:a8:88:77:26:4c:6f:d8:d3:81:b3: 7e:56:cc:86:0c:06:98:c9:af:1e:a3:2a:4c:a5:fa:d2:26:9c: bd:db:7b:27:01:5b:e6:c6:97:e6:43:4c:ff:33:29:39:6b:5d: 82:aa:92:42:5b:49:b2:2d:a7:84:b7:e1:31:7c:ac:7f:42:5c: 10:88:4f:9b:aa:57:e9:ee:81:aa:aa:20:2c:66:3e:b5:3e:ae: 71:fb:c4:8c:a8:e5:2b:23:35:df:a8:94:d7:fd:a4:ea:fb:4e: 15:4b:64:d3:6a:45:9f:58:5e:c7:7c:42:80:91:13:b7:ba:21: 35:80:00:b2:4a:a9:93:07:ea:ca:5b:48:81:b4:19:ca:46:61: af:54:96:b3:27:24:6d:68:da:cd:14:0a:63:94:bd:3d:94:03: 76:ad:51:40:0d:34:23:5b:3b:36:2a:9f:a5:9b:10:e7:c7:60: c1:40:82:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjYwNDA1MDI1MjQ0WhcNMjYwNDEyMDI1MjQ0WjAYMRYwFAYD VQQDEw02OWQxY2U3Yy1kNzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6mAQyQZaJxk7oYX1wgLYe2yoc4kvELGRqsCU3inq0r5FeJoh9p3bY5Y8jjA V5NY+oV4A2oh226g4LmWt0sEXAkc6SSw3m/Atb4ASylTPSBLFUTBlOrl0PLuJFh3 AmNTpSVGSo7cvPiqBpqnUvorxIxpCBoXgY7AgCFDaw+/0lDZRarg2e3ggI3MBYFb JfQd0DaxJSeQPHwRx/nxc7MYc1eQwr8sw3q4hfOD9oYxWHGVelbOCwbF55muo4kZ Ki8CW7rM4CILPvauSP4zigZITIVwlteu7EtF5huWeCeXrp4LP9Rb2VSjOGegpxEs vv5UlLFp96JBobuDv0q0hL8MlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC33FhiJ KrtKYOABqsVPKXTZ7g9vMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmTxoapAmiv/MFy4gWhvpfn+piyDbWYP/+qT8G8yn82O3Tm/CuUFi23Vf6W+W qxpCobZRJzO/XXkS+WAJLCjpCgkLcODZRMEesT6WHMcSNvioiHcmTG/Y04GzflbM hgwGmMmvHqMqTKX60iacvdt7JwFb5saX5kNM/zMpOWtdgqqSQltJsi2nhLfhMXys f0JcEIhPm6pX6e6BqqogLGY+tT6ucfvEjKjlKyM136iU1/2k6vtOFUtk02pFn1he x3xCgJETt7ohNYAAskqpkwfqyltIgbQZykZhr1SWsyckbWjazRQKY5S9PZQDdq1R QA00I1s7NiqfpZsQ58dgwUCC+Q== -----END CERTIFICATE-----Generated at Sun Apr 5 19:39:40 2026 by rpki-client