$ rpki-client -vvf rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft File: kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft (raw, json) Hash identifier: yptuZ0R9wksYHHu9zEBfOvhDNvS7phCCN6TEmjcb6ek= Subject key identifier: 29:D2:A4:13:C8:F5:4B:7E:31:98:44:63:A4:0C:8F:20:C3:C1:D6:3F Authority key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 Certificate issuer: /CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft Manifest number: 01CE Signing time: Sun 05 Apr 2026 03:10:18 +0000 Manifest this update: Sun 05 Apr 2026 03:10:18 +0000 Manifest next update: Sun 12 Apr 2026 03:10:18 +0000 Files and hashes: 1: kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl (hash: bqf+phM9ZfXmBS/6f+CVM1AnXVJPCJT6awHxyF9hQzQ=) 2: 4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa (hash: YTWQLKjMPS+pJcK/98qLOrg1cnW5P2/DgKnTnaoaWiI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91248C9, serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Validity Not Before: Apr 5 03:10:18 2026 GMT Not After : Apr 12 03:10:18 2026 GMT Subject: CN=69d1d29a-c776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5f:e1:aa:37:57:e5:12:49:b8:d2:ec:35:ad: 6d:76:8d:0a:6e:6d:0f:d1:c5:4b:b5:96:d7:6a:07: ac:2f:b1:2a:c5:d3:67:99:29:ca:3e:64:1f:58:c6: fb:ab:ac:76:a5:20:50:20:5a:b1:dc:6d:ef:67:f5: 19:89:5e:b7:b4:80:83:00:13:33:4b:e1:e2:46:27: e3:42:e1:a3:df:1c:3f:c2:9d:96:7e:dc:e3:cc:43: 5c:74:75:76:ac:b1:b2:c5:36:07:fb:2c:5d:33:e1: 49:7f:32:dd:6e:06:0b:15:8f:12:e4:57:81:5a:08: 54:d3:dc:72:5f:20:fa:f7:c2:4f:83:4c:f1:ca:a7: ef:6f:52:02:92:33:87:1a:94:77:02:fc:d8:69:a4: cc:39:d4:3c:3f:54:0b:75:e2:d4:95:05:86:cc:8e: 13:1a:fa:53:07:21:ab:b4:10:f0:91:2e:80:f3:0b: d4:70:b3:e0:4a:b2:5e:9d:c4:58:1c:86:88:98:dd: 66:8d:b2:76:96:d7:bc:bf:ad:91:8d:d5:9c:cf:44: 3e:9c:fe:7e:a0:ee:b2:23:52:62:46:65:0b:fe:f4: 72:ad:1b:7d:00:a4:cd:8e:f9:7b:5b:e5:b0:95:81: ba:f6:63:52:d4:4e:54:ae:b5:d0:f1:8c:fa:d7:2d: 03:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D2:A4:13:C8:F5:4B:7E:31:98:44:63:A4:0C:8F:20:C3:C1:D6:3F X509v3 Authority Key Identifier: keyid:90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:2d:02:bf:78:76:36:a8:52:65:6c:34:1d:a9:6e:37:09:c2: 88:96:5c:f8:cc:9b:ab:fb:42:ae:c7:f3:9b:83:b0:2e:12:c1: d8:8b:e6:af:e5:bf:fa:4f:82:eb:1d:29:3b:76:92:c4:7e:43: dd:d2:0d:80:90:80:e4:c1:24:85:bd:46:04:b5:e8:a4:9f:78: 14:5b:38:e6:8e:96:ce:d1:0d:50:26:c7:ea:87:6c:7d:31:d2: fb:c7:a2:92:14:f8:1a:e3:bc:61:8d:a0:36:83:be:c3:b6:72: a3:66:aa:2d:31:51:c6:48:3d:d2:9c:d0:69:e1:97:c4:61:58: 78:b0:68:66:fb:11:27:a6:79:62:a6:1c:82:9e:0e:5c:4c:70: 11:0a:f4:1a:e9:f6:b1:bc:ad:ab:e1:24:eb:06:01:e4:6f:d5: 08:59:e8:11:5a:0c:be:6a:ed:76:b2:e0:a4:41:a4:57:b6:48: 7f:84:0e:5f:37:57:19:32:8d:68:b6:28:33:7c:43:44:e4:3d: 26:28:43:e1:b6:b1:d9:0b:fe:00:19:0a:05:5b:35:3a:05:81: d4:7f:50:5a:2e:b8:b7:5b:e4:02:74:b8:31:9c:8e:d0:62:3d: ea:df:9e:27:34:38:a3:b3:fb:78:ab:df:3d:01:bb:58:99:1c: f2:61:44:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4QzkxMTAvBgNVBAUTKDkwRjY4MEZDQTdDOTMwRkQxRkRDNTMzNjc1Mzg1QUU5 MEZCNDE2NzIwHhcNMjYwNDA1MDMxMDE4WhcNMjYwNDEyMDMxMDE4WjAYMRYwFAYD VQQDEw02OWQxZDI5YS1jNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsl/hqjdX5RJJuNLsNa1tdo0Kbm0P0cVLtZbXagesL7EqxdNnmSnKPmQfWMb7 q6x2pSBQIFqx3G3vZ/UZiV63tICDABMzS+HiRifjQuGj3xw/wp2WftzjzENcdHV2 rLGyxTYH+yxdM+FJfzLdbgYLFY8S5FeBWghU09xyXyD698JPg0zxyqfvb1ICkjOH GpR3AvzYaaTMOdQ8P1QLdeLUlQWGzI4TGvpTByGrtBDwkS6A8wvUcLPgSrJencRY HIaImN1mjbJ2lte8v62RjdWcz0Q+nP5+oO6yI1JiRmUL/vRyrRt9AKTNjvl7W+Ww lYG69mNS1E5UrrXQ8Yz61y0DzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCnSpBPI 9Ut+MZhEY6QMjyDDwdY/MB8GA1UdIwQYMBaAFJD2gPynyTD9H9xTNnU4WukPtBZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDhDOS9BMDU1QjVCMjZF RUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1QMGYzRk0yZFRoYTZRLTBG bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tQYUFfS2ZKTVAwZjNGTTJkVGhhNlEtMEZuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDhDOS9BMDU1QjVCMjZFRUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1Q MGYzRk0yZFRoYTZRLTBGbkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGi0Cv3h2NqhSZWw0HaluNwnCiJZc+Mybq/tCrsfzm4OwLhLB2Ivmr+W/+k+C 6x0pO3aSxH5D3dINgJCA5MEkhb1GBLXopJ94FFs45o6WztENUCbH6odsfTHS+8ei khT4GuO8YY2gNoO+w7Zyo2aqLTFRxkg90pzQaeGXxGFYeLBoZvsRJ6Z5YqYcgp4O XExwEQr0Gun2sbytq+Ek6wYB5G/VCFnoEVoMvmrtdrLgpEGkV7ZIf4QOXzdXGTKN aLYoM3xDROQ9JihD4bax2Qv+ABkKBVs1OgWB1H9QWi64t1vkAnS4MZyO0GI96t+e JzQ4o7P7eKvfPQG7WJkc8mFEjA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:29:09 2026 by rpki-client