$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft File: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft (raw, json) Hash identifier: x1qPtQJ28Q1vtdhV5R/CiInAa2ql9Lb/im4jsz9sDrI= Subject key identifier: 09:A2:EB:74:77:C8:99:63:C0:06:7F:2B:7C:86:F6:E0:99:AE:4A:8A Authority key identifier: 91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 Certificate issuer: /CN=A91BC1CE/serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Certificate serial: 10FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft Manifest number: 10F5 Signing time: Sat 04 Apr 2026 17:10:19 +0000 Manifest this update: Sat 04 Apr 2026 17:10:18 +0000 Manifest next update: Sat 11 Apr 2026 17:10:18 +0000 Files and hashes: 1: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl (hash: xy9qwkj4qdd+4zWzCEgp00e1hW1BUa+OfBnjl4cPECk=) 2: 4178B83237ED11E99B3C9C4AC4F9AE02.roa (hash: 4agi+QhWWtUPKmH1/dW+seJgI+qk+4RdSuU9ar5oRKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4351 (0x10ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC1CE, serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Validity Not Before: Apr 4 17:10:18 2026 GMT Not After : Apr 11 17:10:18 2026 GMT Subject: CN=69d145fb-a1be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f0:51:5e:2f:73:93:0d:6d:8d:f5:e5:42:c6: 6a:64:7b:ff:3b:67:0a:52:69:56:9e:1f:fc:89:a1: 0c:5f:2b:31:98:11:7c:08:af:50:49:ea:57:f2:7c: f2:1f:88:e7:2f:bf:65:a8:b9:ce:18:da:44:4d:3a: 94:e7:0c:a5:65:84:a9:20:4a:f8:8a:da:52:be:07: 3f:04:79:96:5e:a0:89:53:9c:8d:53:25:72:f7:be: 73:0a:7b:fd:c1:7d:0d:77:55:29:bf:01:3d:d3:1c: bf:65:4b:50:50:1f:ed:b5:5c:62:da:06:ca:ca:ee: 2c:15:8d:59:cb:ea:b2:8a:58:c3:c6:a4:e8:c0:29: a3:ac:14:0b:c5:d5:a2:ea:b1:af:4e:91:f5:8a:29: 54:c4:ec:ed:88:52:cf:ce:58:d8:eb:33:60:79:95: 60:26:c6:30:b9:fa:fc:a5:54:d6:66:8b:be:a5:5c: b8:bb:bc:21:fd:87:2c:b3:c0:4e:b3:57:84:f4:45: 02:09:c3:13:4c:48:7e:19:74:cc:84:8b:3f:24:4d: a1:7e:aa:ba:3b:a2:c2:05:af:3d:e6:3c:fd:7f:19: 0b:17:94:3d:a8:82:fe:a4:dd:17:a5:ba:fe:c0:db: 95:3b:05:96:de:a9:7b:2f:1d:a0:49:49:8e:bb:1f: b3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A2:EB:74:77:C8:99:63:C0:06:7F:2B:7C:86:F6:E0:99:AE:4A:8A X509v3 Authority Key Identifier: keyid:91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:68:da:e6:9a:9d:7a:e6:f8:aa:36:03:c6:73:2a:d5:9e:90: 07:b7:41:8e:b4:a8:04:3a:c8:65:64:15:f1:1f:9e:12:f7:77: cb:ed:0c:63:93:99:a5:08:68:cd:9f:61:b2:0c:73:0b:a4:d0: f9:07:8d:40:b2:cb:68:3c:80:8b:41:6b:f3:fb:ac:cb:8e:05: c0:e7:23:bd:89:9d:74:e7:6a:ca:73:6e:6b:5e:82:14:8d:fe: 7e:2c:03:71:f6:bc:a3:b5:76:94:f8:f7:cc:7b:91:2f:11:6c: dd:17:9f:d0:11:be:9e:e3:3f:81:2e:74:9c:f6:70:49:9f:25: 21:c1:cc:a5:e6:18:bd:ae:89:5c:04:62:de:1e:93:1f:45:d8: c2:dd:3a:31:b4:b7:7a:dd:12:39:6d:11:1a:48:dc:0d:dd:ab: 22:89:09:78:3b:15:ed:12:c1:8d:b1:e1:89:0c:a9:3f:34:25: 11:10:bc:ca:15:e1:f2:eb:25:3d:d7:72:85:c3:22:18:84:33: 75:35:bd:95:3e:81:ff:0e:93:aa:7c:53:ad:a7:36:35:d6:c7: 7b:85:e8:47:03:0d:41:3b:a7:01:93:6f:23:c0:4b:f8:38:2f: 3a:e7:89:ed:0e:d9:08:ce:d6:93:ce:81:c8:00:16:9c:b5:dd: e5:9e:62:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMxQ0UxMTAvBgNVBAUTKDkxRjJERTY3QzhFNjVCQjUzM0VEOEYzQzY0RjMyREY5 QzY5NUMwNTcwHhcNMjYwNDA0MTcxMDE4WhcNMjYwNDExMTcxMDE4WjAYMRYwFAYD VQQDEw02OWQxNDVmYi1hMWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7/BRXi9zkw1tjfXlQsZqZHv/O2cKUmlWnh/8iaEMXysxmBF8CK9QSepX8nzy H4jnL79lqLnOGNpETTqU5wylZYSpIEr4itpSvgc/BHmWXqCJU5yNUyVy975zCnv9 wX0Nd1UpvwE90xy/ZUtQUB/ttVxi2gbKyu4sFY1Zy+qyiljDxqTowCmjrBQLxdWi 6rGvTpH1iilUxOztiFLPzljY6zNgeZVgJsYwufr8pVTWZou+pVy4u7wh/Ycss8BO s1eE9EUCCcMTTEh+GXTMhIs/JE2hfqq6O6LCBa895jz9fxkLF5Q9qIL+pN0Xpbr+ wNuVOwWW3ql7Lx2gSUmOux+zoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAmi63R3 yJljwAZ/K3yG9uCZrkqKMB8GA1UdIwQYMBaAFJHy3mfI5lu1M+2PPGTzLfnGlcBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzFDRS8yNEZBNjBFNDM3 RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3VXo3WTg4WlBNdC1jYVZ3 RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmTGVaOGptVzdVejdZODhaUE10LWNhVndGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzFDRS8yNEZBNjBFNDM3RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3 VXo3WTg4WlBNdC1jYVZ3RmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArGja5pqdeub4qjYDxnMq1Z6QB7dBjrSoBDrIZWQV8R+eEvd3y+0MY5OZpQho zZ9hsgxzC6TQ+QeNQLLLaDyAi0Fr8/usy44FwOcjvYmddOdqynNua16CFI3+fiwD cfa8o7V2lPj3zHuRLxFs3Ref0BG+nuM/gS50nPZwSZ8lIcHMpeYYva6JXARi3h6T H0XYwt06MbS3et0SOW0RGkjcDd2rIokJeDsV7RLBjbHhiQypPzQlERC8yhXh8usl PddyhcMiGIQzdTW9lT6B/w6TqnxTrac2NdbHe4XoRwMNQTunAZNvI8BL+DgvOueJ 7Q7ZCM7Wk86ByAAWnLXd5Z5i7w== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:48 2026 by rpki-client