$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: l8/boYe+flPomNLNKf/TLNlgqQvZ83S60DmD2OYSP08= Subject key identifier: A2:46:82:B7:1F:B0:5A:E9:E0:F8:AA:10:AF:D6:F9:95:93:F7:F8:25 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: C7 Signing time: Sun 05 Apr 2026 06:16:37 +0000 Manifest this update: Sun 05 Apr 2026 06:16:37 +0000 Manifest next update: Sun 12 Apr 2026 06:16:37 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: yCqR6i9E9cTt6mIYhQy2CwYBYOKIgglNQRbx0BuTKl4=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: xg+5Kz8DfP64v+0K6uLKgS3hlywm1P1UwcX/Q9P2caM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Apr 5 06:16:37 2026 GMT Not After : Apr 12 06:16:37 2026 GMT Subject: CN=69d1fe45-0780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:34:e6:3b:71:5a:8b:6c:a0:e8:6e:f8:f2:5b: de:d5:80:e4:d3:8b:d7:c7:23:ed:25:c7:b0:e1:f6: 8b:a0:09:c4:67:5e:1a:97:f8:e0:53:8b:13:71:8b: 83:2c:20:83:69:e7:e6:ee:98:a9:1f:89:18:07:f7: 4c:92:7a:c6:da:9b:13:71:1c:77:b5:51:d3:05:44: 82:57:fa:0c:1a:bd:2d:d5:88:43:c3:7a:23:26:ef: c1:94:cd:f3:a1:cd:98:b9:7a:fc:ce:c7:b8:d7:5f: 00:41:5e:76:c6:49:6f:4e:e5:64:53:0a:3d:11:96: 26:9c:03:26:d3:0b:a3:69:78:73:a8:e6:75:62:c9: 79:fc:61:95:11:27:3a:ca:f9:a5:cc:f6:4a:9d:9f: d9:f3:f6:0d:99:16:ae:18:ff:8a:ee:ae:ae:94:16: ae:91:b9:22:83:c5:64:6d:8a:d6:08:75:95:0d:7c: c5:b8:f8:9a:e0:78:67:07:ea:a4:2c:d4:b8:73:b4: 56:ce:7b:12:44:3c:0a:ef:28:6b:ad:ec:c3:6f:ae: e4:7f:32:10:5b:56:18:b8:52:80:f7:f0:73:6d:63: 44:92:5d:fa:9f:f5:b3:82:83:83:db:cc:ae:64:8a: 3b:52:83:88:25:6c:3f:00:db:4d:9a:8a:44:de:4a: 77:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:46:82:B7:1F:B0:5A:E9:E0:F8:AA:10:AF:D6:F9:95:93:F7:F8:25 X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ac:6b:37:44:37:08:81:d9:4a:c1:ba:6a:4e:f4:bf:3d:3f: eb:55:62:55:50:68:7d:e6:c5:ec:2b:12:2f:e9:ae:d1:ae:4e: d7:a2:d5:f1:d1:12:6d:d2:3a:e6:59:52:75:10:9a:05:04:f6: 0b:b8:28:f0:70:2e:ff:c9:63:e9:6a:35:87:4d:4c:87:78:44: 6d:db:7b:55:fc:48:98:4d:41:95:45:cb:ce:3f:78:b8:07:64: 5f:95:d1:07:6b:14:91:cd:c8:90:46:cd:98:10:6f:92:da:28: 28:9d:0c:8c:bb:f3:4d:44:e8:6f:e6:a7:a3:24:21:62:06:7e: 25:95:0c:bb:39:a8:71:16:45:cd:9d:13:7a:d7:28:3a:5d:f8: 86:7c:3f:90:4d:6c:c1:f2:03:33:31:58:11:73:3d:a4:54:ab: 51:0b:4a:5a:91:64:7e:62:4d:b5:e8:d0:59:dd:5c:ae:df:c4: ec:98:42:9f:1d:c2:0e:a4:f1:73:19:2d:b0:54:48:88:d5:1c: 14:93:04:33:c0:e1:2b:ae:03:7d:9e:9b:02:8f:d1:7e:00:76: ce:77:9f:ca:86:8f:e5:0c:e1:aa:62:df:98:e4:1d:d2:e8:4a: 05:6f:93:94:23:ba:92:d5:f1:53:ae:aa:db:62:37:b2:92:fd: b4:c1:2d:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyODcxMTAvBgNVBAUTKDJBNDVBNDFENjBFMkYxMDREM0REMzlDODZGMTRCQzU5 MDA4ODNGNEIwHhcNMjYwNDA1MDYxNjM3WhcNMjYwNDEyMDYxNjM3WjAYMRYwFAYD VQQDEw02OWQxZmU0NS0wNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDTmO3Fai2yg6G748lve1YDk04vXxyPtJcew4faLoAnEZ14al/jgU4sTcYuD LCCDaefm7pipH4kYB/dMknrG2psTcRx3tVHTBUSCV/oMGr0t1YhDw3ojJu/BlM3z oc2YuXr8zse4118AQV52xklvTuVkUwo9EZYmnAMm0wujaXhzqOZ1Ysl5/GGVESc6 yvmlzPZKnZ/Z8/YNmRauGP+K7q6ulBaukbkig8VkbYrWCHWVDXzFuPia4HhnB+qk LNS4c7RWznsSRDwK7yhrrezDb67kfzIQW1YYuFKA9/BzbWNEkl36n/WzgoOD28yu ZIo7UoOIJWw/ANtNmopE3kp3JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKJGgrcf sFrp4PiqEK/W+ZWT9/glMB8GA1UdIwQYMBaAFCpFpB1g4vEE0905yG8UvFkAiD9L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI4Ny8zNzI3OEMxNjA0 NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThRVFQzVG5JYnhTOFdRQ0lQ MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI4Ny8zNzI3OEMxNjA0NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThR VFQzVG5JYnhTOFdRQ0lQMHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoaxrN0Q3CIHZSsG6ak70vz0/61ViVVBofebF7CsSL+mu0a5O16LV8dESbdI6 5llSdRCaBQT2C7go8HAu/8lj6Wo1h01Mh3hEbdt7VfxImE1BlUXLzj94uAdkX5XR B2sUkc3IkEbNmBBvktooKJ0MjLvzTUTob+anoyQhYgZ+JZUMuzmocRZFzZ0Tetco Ol34hnw/kE1swfIDMzFYEXM9pFSrUQtKWpFkfmJNtejQWd1crt/E7JhCnx3CDqTx cxktsFRIiNUcFJMEM8DhK64DfZ6bAo/RfgB2znefyoaP5QzhqmLfmOQd0uhKBW+T lCO6ktXxU66q22I3spL9tMEtEw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:02 2026 by rpki-client