$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft File: KxuyStzbFPbix7uy2Iq62x3diY0.mft (raw, json) Hash identifier: iCFBf7wUZvBHu/EhLJJyRQvGJ7RsPe/zSid2+psdu9A= Subject key identifier: 08:26:9F:A8:97:2A:7A:FF:F4:9C:E4:5D:64:56:3F:46:63:1B:5A:99 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 03A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft Manifest number: 039A Signing time: Sun 05 Apr 2026 00:31:28 +0000 Manifest this update: Sun 05 Apr 2026 00:31:28 +0000 Manifest next update: Sun 12 Apr 2026 00:31:28 +0000 Files and hashes: 1: KxuyStzbFPbix7uy2Iq62x3diY0.crl (hash: p3XR88BUbTE61VHfWjwVhcChKZCC/CQ4mGKQ8jVTxpc=) 2: 95CA439CDAE211ECA14A8254C4F9AE02.roa (hash: DXFn9IbM02w7n1eFZzgRJrQaHr06yYFyVzCtJliHjPE=) 3: 3486D47412D511EFB1EF161DC4F9AE02.roa (hash: noY77zuBNX8xTUWwrf35ANzxZz07dvvKvq+tI08iw0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2, serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Validity Not Before: Apr 5 00:31:28 2026 GMT Not After : Apr 12 00:31:28 2026 GMT Subject: CN=69d1ad60-db07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d1:92:1b:39:6f:a2:3c:de:4b:ab:dd:ba:b0: 00:d7:f5:0f:90:b4:43:37:40:83:b0:7e:17:04:fa: 75:f4:d5:2c:6b:d7:84:14:1b:7c:e3:63:2e:d8:31: d2:2f:da:2e:43:27:4d:cc:90:dc:35:1a:b0:f6:48: 47:4b:78:4f:ff:cf:00:23:a9:1c:bb:4f:f5:5b:1f: 6e:14:e6:4f:f1:4d:a5:0a:08:af:44:08:f9:15:f9: 1d:91:3d:15:41:b0:36:ce:38:22:b4:7e:eb:66:89: 0f:f7:3b:58:39:29:13:10:5f:6d:4b:78:b3:d2:c3: 8d:46:4e:30:5c:93:07:62:f9:e2:8b:35:19:ce:c6: 2a:d7:9f:9f:55:ac:2d:4b:33:e7:37:31:61:85:51: 9d:ca:38:2e:8e:66:ba:95:3d:ff:97:0b:e2:60:35: 02:5d:ca:cf:2b:17:8e:f7:3a:7f:66:9f:85:91:76: 77:27:b2:a8:7c:4c:16:fc:f8:3d:96:cf:2e:78:06: e5:0c:a3:98:15:02:8b:da:d7:1a:f2:9f:d5:3f:58: 41:ae:81:42:24:94:0f:58:bd:d0:d3:73:3a:bd:31: 96:7a:b1:eb:b4:5a:15:62:4a:46:ce:39:c9:90:c4: 6c:f7:0b:e9:3a:b1:c0:9c:e7:00:ac:b0:8b:96:65: 44:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:26:9F:A8:97:2A:7A:FF:F4:9C:E4:5D:64:56:3F:46:63:1B:5A:99 X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e2:b2:93:cb:dc:d6:1e:14:fd:ed:d6:f1:48:87:06:1d:e8: f4:58:a7:d6:94:6b:f3:68:33:d1:9d:73:92:ba:54:cd:4e:13: de:41:95:94:41:b9:53:32:55:00:6c:1c:1b:15:1f:00:be:9a: b8:62:f4:8b:33:dd:a5:b8:3f:37:db:bb:b2:5b:87:84:ea:5b: 14:76:c7:67:97:6b:dd:5b:0c:c6:4b:ef:01:d3:6f:ad:06:25: 3d:dc:1b:4a:e6:94:5f:30:89:c5:00:0f:39:7f:32:af:11:62: 64:a0:0b:82:a8:da:8d:48:46:e2:ee:80:06:c3:72:21:ba:22: cb:c7:9e:7f:5b:85:a6:fd:84:2a:76:17:e0:9a:4b:58:64:f4: b3:24:d7:85:5e:59:81:75:40:44:e3:b9:92:69:bf:4f:07:eb: 9c:2e:f4:3d:4a:f0:61:c9:c7:b9:11:63:1d:5f:68:3e:bd:09: be:8c:d5:c8:14:54:a9:d2:6c:75:02:11:33:96:9d:3a:4b:b7: d4:57:76:f7:58:81:3f:37:4f:9f:ac:fc:89:6c:9d:31:ce:c8: 86:d7:42:4b:b8:f8:60:1c:02:26:d4:ae:c0:3a:e4:68:2e:0a: 5c:c3:46:03:ec:65:95:69:0c:a1:b3:df:e8:81:2d:ef:6e:e0: 9a:f3:0a:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjYwNDA1MDAzMTI4WhcNMjYwNDEyMDAzMTI4WjAYMRYwFAYD VQQDEw02OWQxYWQ2MC1kYjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj9GSGzlvojzeS6vdurAA1/UPkLRDN0CDsH4XBPp19NUsa9eEFBt842Mu2DHS L9ouQydNzJDcNRqw9khHS3hP/88AI6kcu0/1Wx9uFOZP8U2lCgivRAj5FfkdkT0V QbA2zjgitH7rZokP9ztYOSkTEF9tS3iz0sONRk4wXJMHYvniizUZzsYq15+fVawt SzPnNzFhhVGdyjgujma6lT3/lwviYDUCXcrPKxeO9zp/Zp+FkXZ3J7KofEwW/Pg9 ls8ueAblDKOYFQKL2tca8p/VP1hBroFCJJQPWL3Q03M6vTGWerHrtFoVYkpGzjnJ kMRs9wvpOrHAnOcArLCLlmVEPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAgmn6iX Knr/9JzkXWRWP0ZjG1qZMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODBEMi9ENDI4RDBDNkRBREUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQ Yml4N3V5MklxNjJ4M2RpWTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASOKyk8vc1h4U/e3W8UiHBh3o9Fin1pRr82gz0Z1zkrpUzU4T3kGVlEG5UzJV AGwcGxUfAL6auGL0izPdpbg/N9u7sluHhOpbFHbHZ5dr3VsMxkvvAdNvrQYlPdwb SuaUXzCJxQAPOX8yrxFiZKALgqjajUhG4u6ABsNyIboiy8eef1uFpv2EKnYX4JpL WGT0syTXhV5ZgXVAROO5kmm/TwfrnC70PUrwYcnHuRFjHV9oPr0JvozVyBRUqdJs dQIRM5adOku31Fd291iBPzdPn6z8iWydMc7IhtdCS7j4YBwCJtSuwDrkaC4KXMNG A+xllWkMobPf6IEt727gmvMKKw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:52 2026 by rpki-client