$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: PSTsb6ju2M2kTj9JrNMtYCd4Ac+iEeMO9AJzvmeZ2L4= Subject key identifier: BD:BF:A0:9C:64:11:C6:76:93:85:15:0B:92:89:CE:D8:4A:52:E7:83 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: 0137 Signing time: Mon 01 Jun 2026 06:13:57 +0000 Manifest this update: Mon 01 Jun 2026 06:13:56 +0000 Manifest next update: Mon 08 Jun 2026 06:13:56 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: wFZ5Soj60VrpkuwnaaAJU84wnjvf1fXvJTBco1ADNRM=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: Sej2V4OlsP7Ps6e9ZpabG+sOD+K5ClIDNHh6GA9v3Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Jun 1 06:13:56 2026 GMT Not After : Jun 8 06:13:56 2026 GMT Subject: CN=6a1d2324-189e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:59:12:b8:79:fc:5f:53:07:70:ef:ba:03:dd: 8e:4c:3e:f5:87:a2:cc:7a:5e:56:98:09:2d:3f:9d: 2a:03:15:d2:4f:0e:45:7f:d5:68:5b:1f:11:79:01: 6d:b8:10:3c:f4:3a:9e:74:4f:e0:dc:48:da:21:98: fe:3d:5a:f8:92:fd:ca:ca:92:74:13:e6:b8:b4:db: bd:b2:70:aa:77:47:c3:fb:fa:1f:6b:bf:ed:a5:56: eb:9b:7b:95:a1:da:b1:c6:20:4a:06:4d:73:64:f6: ca:dc:7c:53:55:bb:aa:5a:a2:d7:94:30:ff:f0:ca: b4:e7:24:e2:e9:78:9c:da:37:80:b5:57:c2:25:52: 50:0a:7c:bd:0a:27:05:9e:4b:eb:66:96:34:44:77: 41:27:9a:7e:c5:cd:0d:39:7f:37:f6:37:5d:c0:3b: 3c:af:0f:8d:b1:79:f8:6c:63:ed:c4:e7:0d:a7:d3: 4c:56:6f:33:b2:41:47:4d:6e:f7:7c:6a:33:c0:cf: 9d:f6:fc:a0:4a:17:a3:9b:d9:4a:15:d6:8e:bc:11: 4c:57:96:76:d2:e3:b3:5e:5f:06:56:1e:3f:da:83: 5e:de:65:17:ac:2d:2c:7d:71:44:b8:79:b3:b0:4b: f4:52:62:7b:89:0d:94:c7:2d:cf:7e:29:0a:85:82: 47:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:BF:A0:9C:64:11:C6:76:93:85:15:0B:92:89:CE:D8:4A:52:E7:83 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:24:7f:91:df:2a:ce:16:89:38:79:f8:04:80:98:37:1e:db: b7:56:de:65:be:fa:29:7f:10:9f:4e:67:78:72:9f:e9:76:68: d4:10:da:4f:f2:35:49:06:6b:20:b5:4f:b8:84:03:ff:69:9d: 03:60:b8:e2:f6:31:28:a9:58:ad:d3:88:c7:48:7a:a3:d4:dd: 8d:9a:ee:a3:7e:32:5c:18:f0:91:58:a0:ed:7f:bf:ac:e6:25: df:87:aa:42:0f:95:27:44:aa:ec:8a:ed:c9:f1:64:fc:2b:b9: c2:50:b8:8d:4d:69:0c:17:c0:9c:dd:01:99:b9:e6:6d:92:87: 0e:1d:06:c1:37:0e:1d:a6:52:65:88:60:00:27:6a:27:7b:80: 3b:88:21:38:ba:b6:ea:13:72:d9:4c:3d:cb:86:37:cc:ce:d4: 83:aa:92:1b:b5:d3:7d:25:77:cd:42:39:12:67:26:e4:1c:1a: 65:14:c2:17:63:d1:f3:e6:da:55:7b:42:19:74:da:5e:69:58: 05:ef:74:0e:73:76:54:0e:c6:c6:39:0c:b0:48:de:b0:f9:d1: 0f:30:04:b8:4d:27:98:bd:13:4e:4a:68:4b:62:1a:fc:65:a6: b3:ea:11:ee:46:e2:91:01:1c:fc:17:3b:3a:1a:91:bb:74:ab: e3:5a:e7:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjYwNjAxMDYxMzU2WhcNMjYwNjA4MDYxMzU2WjAYMRYwFAYD VQQDEw02YTFkMjMyNC0xODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkVkSuHn8X1MHcO+6A92OTD71h6LMel5WmAktP50qAxXSTw5Ff9VoWx8ReQFt uBA89DqedE/g3EjaIZj+PVr4kv3KypJ0E+a4tNu9snCqd0fD+/ofa7/tpVbrm3uV odqxxiBKBk1zZPbK3HxTVbuqWqLXlDD/8Mq05yTi6Xic2jeAtVfCJVJQCny9CicF nkvrZpY0RHdBJ5p+xc0NOX839jddwDs8rw+NsXn4bGPtxOcNp9NMVm8zskFHTW73 fGozwM+d9vygShejm9lKFdaOvBFMV5Z20uOzXl8GVh4/2oNe3mUXrC0sfXFEuHmz sEv0UmJ7iQ2Uxy3PfikKhYJHoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL2/oJxk EcZ2k4UVC5KJzthKUueDMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoCR/kd8qzhaJOHn4BICYNx7bt1beZb76KX8Qn05neHKf6XZo1BDaT/I1SQZr ILVPuIQD/2mdA2C44vYxKKlYrdOIx0h6o9TdjZruo34yXBjwkVig7X+/rOYl34eq Qg+VJ0Sq7IrtyfFk/Cu5wlC4jU1pDBfAnN0BmbnmbZKHDh0GwTcOHaZSZYhgACdq J3uAO4ghOLq26hNy2Uw9y4Y3zM7Ug6qSG7XTfSV3zUI5Emcm5BwaZRTCF2PR8+ba VXtCGXTaXmlYBe90DnN2VA7GxjkMsEjesPnRDzAEuE0nmL0TTkpoS2Ia/GWms+oR 7kbikQEc/Bc7OhqRu3Sr41rn9w== -----END CERTIFICATE-----Generated at Tue Jun 2 22:20:47 2026 by rpki-client