$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: vzNesXXEViXyvlD1tS+u+7FgLA5wAzgk344QKO/1a2E= Subject key identifier: 5B:F9:62:1A:66:02:0E:FC:53:B3:DF:32:74:DF:2F:AC:7C:70:CC:8B Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 07F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 07DE Signing time: Wed 20 May 2026 21:24:50 +0000 Manifest this update: Wed 20 May 2026 21:24:50 +0000 Manifest next update: Wed 27 May 2026 21:24:50 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: 2cxAiGX1J+sFpW6n1P7hQ7E5oK3eULOwnp0Vikg2e7g=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: 2CcUX8OCn1/fmWn37MNKtyhofnamXBuWgD+4aT2Pu3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: May 20 21:24:50 2026 GMT Not After : May 27 21:24:50 2026 GMT Subject: CN=6a0e26a2-a7a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ff:4f:e9:a3:9b:1d:f6:38:7b:a1:a6:a3:22: a7:24:68:0e:5e:9d:a9:fa:1d:1d:aa:c9:04:2d:08: 99:b0:ab:df:1f:d5:0b:cf:84:e5:4c:fd:20:10:ed: c5:a6:eb:63:c1:14:78:ce:76:99:5b:36:85:fa:32: a3:96:6c:c6:8d:c0:52:9a:ed:36:f9:5e:e3:1d:29: f2:79:41:f2:1f:9a:4a:2d:1d:3b:7a:43:5a:ba:49: 9f:fa:4e:04:c5:c7:95:98:29:ea:91:76:4e:ee:3a: 5c:a9:8f:90:f6:0a:d8:6c:d0:eb:95:b5:94:88:e8: af:b4:7c:43:b1:fe:05:fb:6e:8b:96:b2:09:68:1f: 0d:16:d0:c3:e1:bb:f3:d7:df:2a:3e:c4:9f:65:c0: a8:39:91:4f:27:4b:55:4e:85:ca:99:1b:dd:de:64: c9:aa:ca:b3:bc:13:b4:f5:b2:15:b5:76:4a:4e:76: ae:8a:c4:78:5b:54:2c:69:8e:f3:02:3d:7c:ef:2c: 63:f6:2c:0e:cb:49:cc:ef:75:67:5a:87:36:f2:df: 50:ef:17:fa:95:11:fd:54:af:67:bc:7b:c4:64:7a: 81:0a:e3:9d:03:bf:33:17:61:34:69:71:74:06:b9: 58:2b:fe:c6:16:eb:e9:76:7f:2f:26:49:04:47:e0: b0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F9:62:1A:66:02:0E:FC:53:B3:DF:32:74:DF:2F:AC:7C:70:CC:8B X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:7f:42:fa:96:69:07:10:87:b7:cf:aa:af:59:27:05:97:bc: ad:3e:ed:77:a4:6d:48:18:8e:4e:93:05:52:16:f3:d6:91:3c: 87:65:6f:a9:42:7a:1c:0a:44:49:79:c5:ff:23:89:a0:df:7b: 43:c6:8c:4c:1a:75:3d:87:66:ad:c9:f5:2e:52:15:f8:e3:23: 7a:09:94:6a:04:89:ff:d3:12:46:18:3a:13:c4:8c:0a:ed:11: 62:a2:08:bc:34:bd:40:b0:24:8c:5e:c6:17:6a:b3:67:81:1e: a1:40:6c:bd:9d:0c:06:ce:c1:2a:67:bc:36:a7:8f:f1:b5:bc: b4:d5:1f:19:e5:85:9c:06:76:f6:e9:ac:23:74:15:d9:4d:4b: 43:23:4d:33:78:92:bf:12:84:e0:8e:67:aa:28:2f:ab:4c:c8: e1:2c:37:ae:ee:1a:f8:75:b6:5c:a6:22:fb:18:d7:a0:9e:d1: 5d:09:b6:56:df:af:a6:0c:4f:dc:6e:f9:dc:36:f2:44:95:a3: ac:54:18:02:09:b5:03:11:35:e8:b3:72:81:c5:ed:e7:71:22: f3:51:f8:d6:8f:28:95:18:0a:f4:65:8f:7a:93:62:33:f6:80: 8a:ae:4e:af:62:34:59:1c:94:65:a4:dd:13:61:7c:5e:ce:21: 50:0d:1e:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjYwNTIwMjEyNDUwWhcNMjYwNTI3MjEyNDUwWjAYMRYwFAYD VQQDEw02YTBlMjZhMi1hN2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqP9P6aObHfY4e6GmoyKnJGgOXp2p+h0dqskELQiZsKvfH9ULz4TlTP0gEO3F putjwRR4znaZWzaF+jKjlmzGjcBSmu02+V7jHSnyeUHyH5pKLR07ekNaukmf+k4E xceVmCnqkXZO7jpcqY+Q9grYbNDrlbWUiOivtHxDsf4F+26LlrIJaB8NFtDD4bvz 198qPsSfZcCoOZFPJ0tVToXKmRvd3mTJqsqzvBO09bIVtXZKTnauisR4W1QsaY7z Aj187yxj9iwOy0nM73VnWoc28t9Q7xf6lRH9VK9nvHvEZHqBCuOdA78zF2E0aXF0 BrlYK/7GFuvpdn8vJkkER+Cw9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFv5Yhpm Ag78U7PfMnTfL6x8cMyLMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADH9C+pZpBxCHt8+qr1knBZe8rT7td6RtSBiOTpMFUhbz1pE8h2VvqUJ6HApE SXnF/yOJoN97Q8aMTBp1PYdmrcn1LlIV+OMjegmUagSJ/9MSRhg6E8SMCu0RYqII vDS9QLAkjF7GF2qzZ4EeoUBsvZ0MBs7BKme8NqeP8bW8tNUfGeWFnAZ29umsI3QV 2U1LQyNNM3iSvxKE4I5nqigvq0zI4Sw3ru4a+HW2XKYi+xjXoJ7RXQm2Vt+vpgxP 3G753DbyRJWjrFQYAgm1AxE16LNygcXt53Ei81H41o8olRgK9GWPepNiM/aAiq5O r2I0WRyUZaTdE2F8Xs4hUA0eXw== -----END CERTIFICATE-----Generated at Thu May 21 10:27:17 2026 by rpki-client