$ rpki-client -vvf rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft File: kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft (raw, json) Hash identifier: mHHZrLu/35hzyqxr2Uvy+Nv7FkTcyvdYVB9NFuZvYzc= Subject key identifier: F4:7F:39:A0:05:87:35:38:D7:A4:E6:7A:44:D8:9B:11:37:4F:86:1F Authority key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 Certificate issuer: /CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft Manifest number: 01E5 Signing time: Thu 21 May 2026 03:27:59 +0000 Manifest this update: Thu 21 May 2026 03:27:59 +0000 Manifest next update: Thu 28 May 2026 03:27:59 +0000 Files and hashes: 1: kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl (hash: AtPPhN7y6g0Ou6MAWVWB3KIDNAJ9YHbaCjRGd7NR3K0=) 2: 4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa (hash: YTWQLKjMPS+pJcK/98qLOrg1cnW5P2/DgKnTnaoaWiI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91248C9, serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Validity Not Before: May 21 03:27:59 2026 GMT Not After : May 28 03:27:59 2026 GMT Subject: CN=6a0e7bbf-a7d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e3:f8:d1:e9:c3:d4:24:8a:5c:a1:f6:63:5c: d3:72:78:9c:9d:09:da:cd:87:68:3b:ee:9a:9f:35: 90:4d:1f:a8:b7:67:bc:45:81:2c:f9:4b:a6:3b:ff: 5d:51:97:e0:7d:89:db:7b:fb:b3:16:77:5c:75:a0: 02:bc:6e:a0:4d:61:aa:f7:c7:08:85:7a:76:98:07: 81:e9:21:43:0c:e9:44:55:a3:11:db:38:7a:c0:56: 3a:e1:3e:08:55:bc:8a:39:99:64:22:b8:93:34:bd: e6:43:a7:36:9e:af:d1:e8:4c:61:06:dc:25:eb:b9: a1:84:4d:e6:0d:ed:a5:e0:8b:56:d6:f9:a5:79:38: 2e:9e:83:40:c2:13:76:1c:cb:fc:ad:0b:e7:b3:66: 86:de:8a:1c:50:51:78:e6:34:f9:af:f2:39:a2:45: 55:5e:87:fa:fa:11:4e:84:cd:4a:71:e0:34:c8:08: 1e:31:bd:d9:54:be:0e:37:9c:07:13:02:d5:bc:c2: c4:31:4c:ab:62:a8:2e:db:bc:fb:50:a3:a2:4d:72: c7:50:8d:d3:ee:17:df:db:29:3c:7b:ea:0b:d3:64: 34:27:3d:41:bb:51:ef:bb:30:53:e1:0b:f8:e7:89: 61:67:93:f2:e3:6b:b7:38:2d:1d:ec:62:5d:50:b2: ca:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7F:39:A0:05:87:35:38:D7:A4:E6:7A:44:D8:9B:11:37:4F:86:1F X509v3 Authority Key Identifier: keyid:90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:5d:fc:5f:e7:7c:a4:a7:bf:91:13:e2:69:4c:09:76:d5:56: d7:a7:b5:68:fc:d2:1c:88:33:a1:50:b5:1b:3a:5e:e4:94:c5: 3d:33:12:3a:59:f4:f8:67:63:e1:ca:71:ec:b7:c7:95:88:27: 39:b6:4a:11:fd:d3:13:68:f2:05:a0:fd:4b:57:46:fa:ce:49: 50:4f:7a:ec:78:a9:77:a2:ac:e6:55:f1:d1:f0:69:9c:f9:29: 5c:2b:34:80:55:97:d7:95:c3:0c:c3:e7:09:e2:a2:fb:29:e3: d5:7b:e2:8a:48:d5:41:3c:2b:26:f0:9d:3d:7c:2c:8c:61:57: 2e:1f:ee:a4:49:f1:31:cc:86:34:ba:69:ca:c4:47:28:ed:32: aa:d9:db:3b:2f:10:35:d2:a8:92:7e:49:c3:dc:94:f7:17:15: ab:ad:4b:5a:66:ce:79:17:c8:60:30:fe:8c:e3:a5:89:5a:70: d5:bc:40:7e:11:99:08:03:df:06:f4:dd:d4:a2:72:44:3d:c1: 16:99:79:1b:45:c9:89:96:d6:82:5d:25:87:4a:62:90:98:db: c3:0c:bf:d0:16:66:82:54:3d:4d:4c:a5:14:d6:ef:84:4a:f3: bf:0e:74:07:49:bb:44:e1:85:b0:8b:62:b3:67:87:64:c1:d3: 2e:b5:b6:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4QzkxMTAvBgNVBAUTKDkwRjY4MEZDQTdDOTMwRkQxRkRDNTMzNjc1Mzg1QUU5 MEZCNDE2NzIwHhcNMjYwNTIxMDMyNzU5WhcNMjYwNTI4MDMyNzU5WjAYMRYwFAYD VQQDEw02YTBlN2JiZi1hN2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquP40enD1CSKXKH2Y1zTcnicnQnazYdoO+6anzWQTR+ot2e8RYEs+UumO/9d UZfgfYnbe/uzFndcdaACvG6gTWGq98cIhXp2mAeB6SFDDOlEVaMR2zh6wFY64T4I VbyKOZlkIriTNL3mQ6c2nq/R6ExhBtwl67mhhE3mDe2l4ItW1vmleTgunoNAwhN2 HMv8rQvns2aG3oocUFF45jT5r/I5okVVXof6+hFOhM1KceA0yAgeMb3ZVL4ON5wH EwLVvMLEMUyrYqgu27z7UKOiTXLHUI3T7hff2yk8e+oL02Q0Jz1Bu1HvuzBT4Qv4 54lhZ5Py42u3OC0d7GJdULLKbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPR/OaAF hzU416TmekTYmxE3T4YfMB8GA1UdIwQYMBaAFJD2gPynyTD9H9xTNnU4WukPtBZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDhDOS9BMDU1QjVCMjZF RUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1QMGYzRk0yZFRoYTZRLTBG bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tQYUFfS2ZKTVAwZjNGTTJkVGhhNlEtMEZuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDhDOS9BMDU1QjVCMjZFRUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1Q MGYzRk0yZFRoYTZRLTBGbkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnV38X+d8pKe/kRPiaUwJdtVW16e1aPzSHIgzoVC1Gzpe5JTFPTMSOln0+Gdj 4cpx7LfHlYgnObZKEf3TE2jyBaD9S1dG+s5JUE967Hipd6Ks5lXx0fBpnPkpXCs0 gFWX15XDDMPnCeKi+ynj1XviikjVQTwrJvCdPXwsjGFXLh/upEnxMcyGNLppysRH KO0yqtnbOy8QNdKokn5Jw9yU9xcVq61LWmbOeRfIYDD+jOOliVpw1bxAfhGZCAPf BvTd1KJyRD3BFpl5G0XJiZbWgl0lh0pikJjbwwy/0BZmglQ9TUylFNbvhErzvw50 B0m7ROGFsItis2eHZMHTLrW2EA== -----END CERTIFICATE-----Generated at Thu May 21 10:15:33 2026 by rpki-client