$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: lZkyZ8n5HeqiAV4uEsPt7Ff04wEJS/TEwUikR9jyug8= Subject key identifier: AF:6F:11:6D:B7:BE:3D:EE:9C:1E:E7:D3:4C:03:6A:71:5F:45:86:67 Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 03D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 03CE Signing time: Sun 05 Apr 2026 00:05:09 +0000 Manifest this update: Sun 05 Apr 2026 00:05:08 +0000 Manifest next update: Sun 12 Apr 2026 00:05:08 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: e87yol29l8BduwYb1oZOkvtssvQhQl427csYPjUdsls=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: cp7bTb5LQaah3kkUkaBafNzpnRd6bBUnxxFCOx5DKVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 980 (0x3d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Apr 5 00:05:08 2026 GMT Not After : Apr 12 00:05:08 2026 GMT Subject: CN=69d1a735-50b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:32:5c:75:12:8e:19:64:07:60:b2:5c:70:35: 28:44:c3:49:87:09:d8:be:37:e2:b3:68:5b:77:c3: 47:ed:12:0b:79:0e:e6:ed:34:68:ab:1f:e9:6a:4e: 65:04:34:e1:0e:c3:5e:f6:f9:8f:2b:fa:9a:db:a8: b8:58:ec:ba:c1:53:d9:70:35:39:bb:37:28:72:d7: b1:cd:64:91:f9:36:02:9b:41:fc:06:97:ab:18:44: 14:0e:d6:fc:55:94:0b:e7:83:e9:33:b6:0e:49:18: 3d:28:7e:a0:19:49:57:f0:f8:bb:db:18:75:d2:34: 4b:ac:aa:c0:13:19:26:bb:b4:bd:2c:86:79:77:95: 42:55:42:ab:3f:af:db:43:4c:cd:fb:5d:ca:5a:74: 28:a4:b0:ba:3e:57:66:7d:16:a0:5f:3e:53:b8:25: b6:a6:09:4c:b7:14:51:7a:0a:28:5e:bf:ab:09:18: e0:3c:b1:af:5e:59:49:d8:7e:e8:9b:fa:1f:15:b2: ee:87:d6:66:ef:cf:47:89:15:c2:5c:9f:b2:76:5e: 44:19:3f:e8:6f:be:7a:1b:a9:0c:10:9e:c8:c6:d1: e1:c0:d4:46:4c:90:c0:85:ab:59:d6:2f:81:34:f5: 55:fb:29:7d:25:89:d7:00:a4:86:8d:88:91:dc:f3: 90:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:6F:11:6D:B7:BE:3D:EE:9C:1E:E7:D3:4C:03:6A:71:5F:45:86:67 X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:15:b0:cf:24:f9:5a:2a:34:12:40:e0:de:37:33:e1:e1:a6: 25:f9:4c:d8:95:da:1e:93:c6:d0:23:6d:9f:2b:11:d7:74:d6: 61:f1:f5:32:a6:96:d9:30:b0:24:8f:ee:0d:3c:2e:a0:d7:99: dc:c3:ce:d7:5e:20:86:c3:76:9c:d7:66:d8:2e:bb:09:ff:52: 0f:c3:a4:85:88:a1:5d:ee:55:be:60:38:23:5c:a8:27:62:68: a2:a6:9d:d1:df:db:23:68:81:77:b3:d2:7e:ec:8a:67:d3:56: 4d:f4:45:76:e3:b6:a1:aa:c3:4f:77:51:fd:72:15:82:13:be: 45:f4:39:ad:49:23:15:07:3b:8f:1b:30:cb:dc:fa:34:c0:32: 50:21:fa:ea:7d:c6:25:b1:e2:23:68:ef:7e:49:db:45:af:cc: de:11:4f:c4:cf:d7:f2:2a:99:4c:49:59:6b:20:1e:ee:8b:06: 29:61:87:5b:9b:7f:55:df:03:95:20:9d:1f:b0:33:04:39:6c: b0:29:7f:bc:d4:c9:15:9b:c1:8d:d9:ef:e1:5f:e7:6f:4a:a2: 1d:1a:85:c8:d4:3e:56:be:3c:28:cc:4e:10:0d:ff:86:bd:af: 97:67:88:96:8b:7c:6c:9c:9a:eb:1c:09:fc:97:bc:b4:24:17: f4:7c:0f:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjYwNDA1MDAwNTA4WhcNMjYwNDEyMDAwNTA4WjAYMRYwFAYD VQQDEw02OWQxYTczNS01MGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzJcdRKOGWQHYLJccDUoRMNJhwnYvjfis2hbd8NH7RILeQ7m7TRoqx/pak5l BDThDsNe9vmPK/qa26i4WOy6wVPZcDU5uzcoctexzWSR+TYCm0H8BperGEQUDtb8 VZQL54PpM7YOSRg9KH6gGUlX8Pi72xh10jRLrKrAExkmu7S9LIZ5d5VCVUKrP6/b Q0zN+13KWnQopLC6PldmfRagXz5TuCW2pglMtxRRegooXr+rCRjgPLGvXllJ2H7o m/ofFbLuh9Zm789HiRXCXJ+ydl5EGT/ob756G6kMEJ7IxtHhwNRGTJDAhatZ1i+B NPVV+yl9JYnXAKSGjYiR3POQrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK9vEW23 vj3unB7n00wDanFfRYZnMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhRWwzyT5Wio0EkDg3jcz4eGmJflM2JXaHpPG0CNtnysR13TWYfH1MqaW2TCw JI/uDTwuoNeZ3MPO114ghsN2nNdm2C67Cf9SD8OkhYihXe5VvmA4I1yoJ2Jooqad 0d/bI2iBd7PSfuyKZ9NWTfRFduO2oarDT3dR/XIVghO+RfQ5rUkjFQc7jxswy9z6 NMAyUCH66n3GJbHiI2jvfknbRa/M3hFPxM/X8iqZTElZayAe7osGKWGHW5t/Vd8D lSCdH7AzBDlssCl/vNTJFZvBjdnv4V/nb0qiHRqFyNQ+Vr48KMxOEA3/hr2vl2eI lot8bJya6xwJ/Je8tCQX9HwPOA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:54:23 2026 by rpki-client