$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: jkSb/YGWOF9x3BQA8BqH8deodbQPSGswDc9qnMPMcwk= Subject key identifier: 55:4B:89:08:8D:B6:3A:CE:6C:64:3A:DE:15:63:F4:47:83:0D:F7:C4 Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 01CF Signing time: Thu 21 May 2026 03:44:41 +0000 Manifest this update: Thu 21 May 2026 03:44:40 +0000 Manifest next update: Thu 28 May 2026 03:44:40 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: vQ1MMCUsuDKbXQo3OT3JH+K0trsWcitYuwmypenUMPI=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: Y7CBsuQt9HIpYcN19tybRAYJs+zswt16vqxj5J0HE2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: May 21 03:44:40 2026 GMT Not After : May 28 03:44:40 2026 GMT Subject: CN=6a0e7fa9-d449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b7:8e:f2:fe:09:fb:f7:3f:1d:86:96:b9:1e: aa:a6:92:b6:78:ec:17:8b:11:e9:6e:02:3a:d8:28: 7d:45:03:00:fb:47:6b:e1:1a:61:1f:f1:00:b1:59: d3:09:71:c2:79:c5:5d:fa:66:ba:d0:fd:9f:01:91: ea:89:87:a7:3f:62:93:7a:c4:5f:79:42:cf:ef:2e: e6:ed:5d:ff:25:32:5c:05:09:ea:fc:7a:2d:7e:2a: 38:e6:23:bd:b1:55:cc:32:a3:1b:89:78:fe:20:2b: 2a:35:4e:44:4b:b0:92:2c:01:c4:35:b2:d5:be:7c: 3c:51:e6:e6:68:50:08:8b:26:a0:cb:91:30:5b:64: d4:33:98:97:bb:db:9f:24:9b:de:c6:fb:c2:51:d0: 0e:57:17:d0:43:f2:f3:57:69:6d:a9:5c:87:e5:08: 52:76:aa:7b:1d:08:6d:38:87:54:32:1e:17:1b:6e: 51:ea:f3:c4:85:c9:c9:18:47:5c:ec:43:f8:33:5f: 49:6d:46:19:e5:35:2a:47:e8:67:87:de:0b:4a:16: 04:38:bd:84:b6:b5:6d:52:3d:a7:bd:6f:64:93:ce: a8:d1:5f:e8:25:f6:43:d7:6e:d7:47:3f:f4:ed:fc: 43:84:e2:ca:0a:45:a7:d1:7c:51:48:c8:06:3e:34: 3c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4B:89:08:8D:B6:3A:CE:6C:64:3A:DE:15:63:F4:47:83:0D:F7:C4 X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:40:bc:34:0c:3d:7d:3b:d9:c3:ad:a6:15:c5:80:ee:70:ea: c5:9d:c3:5e:60:86:61:b9:87:6e:a1:5a:ac:87:8e:d8:81:0c: b3:a5:f6:02:f3:1a:85:ad:30:da:8e:41:e4:b9:60:9f:d5:33: b2:c3:d3:0b:86:a6:6d:cf:cf:87:73:9b:5a:6e:f1:6a:ec:9c: c5:b5:59:d6:ac:f2:c3:ee:c2:32:cf:46:ac:be:98:03:a1:28: 16:5d:d8:a7:41:e0:d8:6a:3f:77:8e:be:54:7c:9b:f1:6a:64: 42:32:b1:ee:5b:16:e9:3d:97:cb:c5:4d:1d:06:55:5d:f9:fd: 01:1c:73:64:55:b8:85:bb:02:1a:e2:6c:b8:f4:aa:a9:77:f4: 3a:18:d4:0c:e2:a7:16:51:a1:27:55:19:ca:04:a1:a2:be:85: ed:fd:59:72:ad:a7:91:26:77:0c:2b:c5:a5:b2:2a:f8:31:f7: 9a:b9:99:0f:3b:b5:7c:23:73:d0:75:7b:5d:88:3f:79:b2:5f: 5d:6b:d6:a9:c1:fc:17:91:0b:bd:4f:d1:38:65:a1:cc:0b:c6: 31:00:51:09:b8:9c:4f:b6:b3:6c:7a:2f:cc:f7:da:59:cf:01: 38:b4:ac:cb:85:75:2d:2a:7e:9b:b4:fc:d6:1b:b3:f7:8f:52: b4:c9:23:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjYwNTIxMDM0NDQwWhcNMjYwNTI4MDM0NDQwWjAYMRYwFAYD VQQDEw02YTBlN2ZhOS1kNDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLeO8v4J+/c/HYaWuR6qppK2eOwXixHpbgI62Ch9RQMA+0dr4RphH/EAsVnT CXHCecVd+ma60P2fAZHqiYenP2KTesRfeULP7y7m7V3/JTJcBQnq/Hotfio45iO9 sVXMMqMbiXj+ICsqNU5ES7CSLAHENbLVvnw8UebmaFAIiyagy5EwW2TUM5iXu9uf JJvexvvCUdAOVxfQQ/LzV2ltqVyH5QhSdqp7HQhtOIdUMh4XG25R6vPEhcnJGEdc 7EP4M19JbUYZ5TUqR+hnh94LShYEOL2EtrVtUj2nvW9kk86o0V/oJfZD127XRz/0 7fxDhOLKCkWn0XxRSMgGPjQ8YwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFVLiQiN tjrObGQ63hVj9EeDDffEMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqEC8NAw9fTvZw62mFcWA7nDqxZ3DXmCGYbmHbqFarIeO2IEMs6X2AvMaha0w 2o5B5Llgn9UzssPTC4ambc/Ph3ObWm7xauycxbVZ1qzyw+7CMs9GrL6YA6EoFl3Y p0Hg2Go/d46+VHyb8WpkQjKx7lsW6T2Xy8VNHQZVXfn9ARxzZFW4hbsCGuJsuPSq qXf0OhjUDOKnFlGhJ1UZygShor6F7f1Zcq2nkSZ3DCvFpbIq+DH3mrmZDzu1fCNz 0HV7XYg/ebJfXWvWqcH8F5ELvU/ROGWhzAvGMQBRCbicT7azbHovzPfaWc8BOLSs y4V1LSp+m7T81huz949StMkjSw== -----END CERTIFICATE-----Generated at Thu May 21 09:38:55 2026 by rpki-client