$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: MJ7T/OdOM2nE3PwiBUr4BpAh2yLVxJ50QXuB43KR+EQ= Subject key identifier: 01:BE:AC:CE:48:42:B3:D7:00:EA:DE:D2:5F:E7:76:FF:27:EE:A7:38 Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 06DC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 06D5 Signing time: Mon 20 Apr 2026 21:54:10 +0000 Manifest this update: Mon 20 Apr 2026 21:54:10 +0000 Manifest next update: Mon 27 Apr 2026 21:54:10 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: oPXpRTVsON4x/8ffkrdDvdQotu8LsY8jKt2N3l5TLAE=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: l4uYU+uPf8JPateYFt5+JYWdyGHASfl72ELVvU8+Sso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 21:54:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1756 (0x6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Apr 20 21:54:10 2026 GMT Not After : Apr 27 21:54:10 2026 GMT Subject: CN=69e6a082-a8a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cc:c2:6f:52:83:52:81:84:e9:a6:b3:f0:2b: 66:15:9c:4c:09:3f:2b:f7:ed:58:35:cc:fb:d2:df: 81:dc:68:7b:88:a8:9a:e2:5c:5c:f5:5c:13:eb:bb: b3:c1:b0:e6:26:07:4d:4a:58:4d:a1:93:fa:06:59: 3e:1f:47:f8:99:2e:60:09:5c:b4:8f:cf:46:59:75: 79:55:51:f8:29:0c:c5:7f:db:75:7b:f1:09:04:4f: 47:77:f6:f2:b3:97:87:8b:35:c3:43:f2:fd:e3:dd: 5f:f7:37:ae:08:6c:6c:38:c7:b9:4f:4c:bb:fb:b4: d4:18:b4:6e:7c:3d:07:03:01:c0:72:c1:6e:bb:cc: 26:42:47:c2:06:c8:73:b9:cb:99:e9:97:e0:8d:93: f9:5c:1d:a7:ee:4d:d5:11:71:c9:11:f8:43:02:0d: e2:24:78:1d:a7:89:aa:cc:a5:86:91:bb:98:1c:b8: 33:02:ab:da:8a:33:03:ab:2d:1f:4a:6b:07:40:f7: 6e:b0:0f:f4:ef:40:0e:72:34:ad:23:21:4f:f9:15: 4a:06:71:5c:37:9e:51:77:8d:ac:41:40:38:0c:8e: f7:c2:2d:b7:1f:47:d0:c0:3d:dd:fb:8c:cf:03:31: 63:bd:8a:12:e4:f4:d3:56:f5:20:b2:55:bb:69:45: dc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:BE:AC:CE:48:42:B3:D7:00:EA:DE:D2:5F:E7:76:FF:27:EE:A7:38 X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:c4:dd:5e:99:e1:67:e3:cd:46:7d:30:57:30:6f:a9:46:28: e6:a6:34:08:b0:91:64:d4:db:57:60:b1:a9:45:81:16:54:28: 6f:a9:9a:a3:40:03:08:b4:fa:dd:6f:7a:82:65:e7:67:43:e8: 1c:11:3c:91:b7:bc:36:14:86:26:52:2c:1f:1f:ec:05:68:bf: bd:ab:9b:55:27:dd:7e:5d:05:09:90:23:da:62:84:20:45:98: 75:05:88:91:25:ac:3a:67:b5:61:43:f5:5a:d0:0e:94:d3:53: 5d:47:0a:0c:dc:5d:27:85:51:f9:9c:e7:c1:c9:68:a9:7d:ee: be:b5:73:46:7c:6f:fb:18:af:42:0a:49:d3:38:74:95:ec:df: 11:b9:a3:b5:32:9d:ab:9f:fb:74:69:27:c7:10:eb:17:f6:46: 53:5c:9c:bd:95:bd:49:f4:03:a7:87:36:24:a1:9c:0c:b4:5c: 50:17:da:f7:70:40:68:3e:e4:4c:8d:c3:9e:98:88:ad:8a:87: ad:4e:34:38:25:f6:2d:8e:53:dd:d4:b3:36:c2:c3:67:d5:f0: 1f:a4:34:95:b6:0f:78:f7:fb:2c:67:9c:3b:b0:16:49:3e:8d: 85:df:8e:41:f6:05:af:81:65:87:85:49:82:c2:83:3b:2c:89: 57:8b:88:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjYwNDIwMjE1NDEwWhcNMjYwNDI3MjE1NDEwWjAYMRYwFAYD VQQDEw02OWU2YTA4Mi1hOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqczCb1KDUoGE6aaz8CtmFZxMCT8r9+1YNcz70t+B3Gh7iKia4lxc9VwT67uz wbDmJgdNSlhNoZP6Blk+H0f4mS5gCVy0j89GWXV5VVH4KQzFf9t1e/EJBE9Hd/by s5eHizXDQ/L9491f9zeuCGxsOMe5T0y7+7TUGLRufD0HAwHAcsFuu8wmQkfCBshz ucuZ6ZfgjZP5XB2n7k3VEXHJEfhDAg3iJHgdp4mqzKWGkbuYHLgzAqvaijMDqy0f SmsHQPdusA/070AOcjStIyFP+RVKBnFcN55Rd42sQUA4DI73wi23H0fQwD3d+4zP AzFjvYoS5PTTVvUgslW7aUXcPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAG+rM5I QrPXAOre0l/ndv8n7qc4MB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGMTdXpnhZ+PNRn0wVzBvqUYo5qY0CLCRZNTbV2CxqUWBFlQob6mao0ADCLT6 3W96gmXnZ0PoHBE8kbe8NhSGJlIsHx/sBWi/vaubVSfdfl0FCZAj2mKEIEWYdQWI kSWsOme1YUP1WtAOlNNTXUcKDNxdJ4VR+ZznwcloqX3uvrVzRnxv+xivQgpJ0zh0 lezfEbmjtTKdq5/7dGknxxDrF/ZGU1ycvZW9SfQDp4c2JKGcDLRcUBfa93BAaD7k TI3DnpiIrYqHrU40OCX2LY5T3dSzNsLDZ9XwH6Q0lbYPePf7LGecO7AWST6Nhd+O QfYFr4Flh4VJgsKDOyyJV4uINA== -----END CERTIFICATE-----Generated at Wed Apr 22 00:08:10 2026 by rpki-client