$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: cGzytbhw66rTknBEQbI/e56dBvHQ7RX60mus9jDFNZ8= Subject key identifier: D8:73:C3:B3:02:42:F3:51:D9:86:76:29:92:AB:26:94:D1:F0:76:28 Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 08C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 08BA Signing time: Sat 04 Apr 2026 20:13:44 +0000 Manifest this update: Sat 04 Apr 2026 20:13:44 +0000 Manifest next update: Sat 11 Apr 2026 20:13:44 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: H5S9ylvLqrp2y+Nxsgb2W6j02vzBgN6RhhmB7RjGHag=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: rnY6JMeUBXZyAbrqoE5qS3jLHGJ339SuOypSORwx/lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2243 (0x8c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1, serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: Apr 4 20:13:44 2026 GMT Not After : Apr 11 20:13:44 2026 GMT Subject: CN=69d170f8-7b3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c1:be:82:ca:d7:28:8f:f9:9e:bf:7e:34:2c: a9:c9:cb:7e:a3:d0:9b:0b:67:0a:56:6d:e3:a0:41: 7d:bf:75:53:06:23:f7:88:27:f6:0e:48:11:a2:c9: 96:ff:5e:4f:7c:8c:b2:df:c5:d8:0d:c2:2a:56:a0: 8f:89:8d:a7:c4:a8:7a:9b:3c:d2:1d:0b:d9:b0:a3: 11:6d:95:80:1d:70:39:35:54:f9:d8:78:a1:42:bb: 1b:35:4b:2d:18:1c:70:5e:ad:ac:fe:77:56:26:83: 50:df:26:72:f1:c7:1d:0c:81:99:45:7b:69:c5:5a: 15:51:b1:46:b3:0d:ea:ec:0c:23:26:11:89:9b:6d: cd:b8:63:12:9f:de:6c:f9:05:b8:8a:6a:ff:5e:8f: b2:36:cf:7d:bb:96:40:fa:f5:6d:bf:af:88:16:3f: 4b:9e:35:9a:95:12:97:54:d2:1b:6a:5c:a2:d7:c8: d8:b5:3d:ce:ff:ed:de:01:b9:99:e6:6d:15:26:01: 31:72:d1:e6:b3:1a:22:24:30:dc:d1:dd:f1:57:ea: b5:b1:9a:d6:b1:55:86:d2:9b:3d:db:65:81:c6:89: 2a:5d:78:3f:33:08:80:a4:bf:f6:d1:e3:ae:a3:24: eb:da:fc:68:a9:35:c0:d2:0a:45:b1:7a:cc:71:b6: 8b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:73:C3:B3:02:42:F3:51:D9:86:76:29:92:AB:26:94:D1:F0:76:28 X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:22:6e:03:55:e8:cf:bb:33:c7:e1:85:ac:07:16:07:3b:26: 01:6b:f0:58:2a:dd:96:a5:16:ea:a7:69:f8:67:86:55:83:ba: bb:19:d5:8c:d7:e6:14:b0:40:b8:3d:f5:4e:01:5a:1c:82:ae: e4:e9:5e:b3:98:00:0c:2a:58:4f:ec:01:93:78:c6:e4:66:8a: bb:22:e1:79:ee:87:d4:96:df:76:0c:dd:40:da:c4:b5:71:88: ca:86:3c:06:ea:ce:3e:c8:59:4c:6d:c8:49:54:ce:a4:f8:e3: bd:a3:77:f2:93:8f:e2:30:f6:5b:89:08:4e:2e:30:aa:b2:a9: 43:63:2c:7b:9f:a4:bb:a5:60:16:72:bb:30:09:ca:ef:81:6a: 68:c2:ba:cb:fa:aa:eb:5c:73:fe:cf:69:e9:0d:a1:c4:e1:01: 93:33:7c:a2:67:f8:b7:e6:15:08:f8:29:e5:f7:56:e4:80:a6: 8b:17:50:e4:6a:f2:d7:f6:47:69:a8:d5:36:2d:cf:33:92:51: aa:e5:da:70:71:40:38:f3:63:31:db:1a:9b:c4:1e:7b:bf:49: 83:de:88:da:29:8a:11:8d:22:6b:6a:8e:1e:89:2a:21:b4:f7: 38:86:35:aa:c6:54:dc:0a:ed:92:6d:0d:17:05:d8:24:d7:64: 07:de:65:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjYwNDA0MjAxMzQ0WhcNMjYwNDExMjAxMzQ0WjAYMRYwFAYD VQQDEw02OWQxNzBmOC03YjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlsG+gsrXKI/5nr9+NCypyct+o9CbC2cKVm3joEF9v3VTBiP3iCf2DkgRosmW /15PfIyy38XYDcIqVqCPiY2nxKh6mzzSHQvZsKMRbZWAHXA5NVT52HihQrsbNUst GBxwXq2s/ndWJoNQ3yZy8ccdDIGZRXtpxVoVUbFGsw3q7AwjJhGJm23NuGMSn95s +QW4imr/Xo+yNs99u5ZA+vVtv6+IFj9LnjWalRKXVNIbalyi18jYtT3O/+3eAbmZ 5m0VJgExctHmsxoiJDDc0d3xV+q1sZrWsVWG0ps922WBxokqXXg/MwiApL/20eOu oyTr2vxoqTXA0gpFsXrMcbaLiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNhzw7MC QvNR2YZ2KZKrJpTR8HYoMB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhSJuA1Xoz7szx+GFrAcWBzsmAWvwWCrdlqUW6qdp+GeGVYO6uxnVjNfmFLBA uD31TgFaHIKu5Oles5gADCpYT+wBk3jG5GaKuyLhee6H1JbfdgzdQNrEtXGIyoY8 BurOPshZTG3ISVTOpPjjvaN38pOP4jD2W4kITi4wqrKpQ2Mse5+ku6VgFnK7MAnK 74FqaMK6y/qq61xz/s9p6Q2hxOEBkzN8omf4t+YVCPgp5fdW5ICmixdQ5Gry1/ZH aajVNi3PM5JRquXacHFAOPNjMdsam8Qee79Jg96I2imKEY0ia2qOHokqIbT3OIY1 qsZU3Artkm0NFwXYJNdkB95lwA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:16 2026 by rpki-client