$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: b5goAg+L3mNMT+Z/ZVwSPXUkAJuBTT+HlV2g0ti8E1s= Subject key identifier: 71:8A:1C:53:8B:53:9F:C2:4D:6F:DA:AF:45:E5:9F:EF:98:CB:50:05 Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 08D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0D84 Signing time: Sat 04 Apr 2026 20:10:55 +0000 Manifest this update: Sat 04 Apr 2026 20:10:55 +0000 Manifest next update: Sat 11 Apr 2026 20:10:55 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: oENshpwHx4XWTZqjLQpkXvEvdP9zhaGPkgKJ9YE7pWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2258 (0x8d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: Apr 4 20:10:55 2026 GMT Not After : Apr 11 20:10:55 2026 GMT Subject: CN=69d1704f-71f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:af:7f:32:e0:c4:82:c1:2a:57:f5:20:cc:77: 7b:3b:0e:9e:bc:8b:bd:e4:b6:d2:a3:1a:41:df:08: f7:79:c6:44:39:a7:41:9a:59:bd:3a:28:81:2e:62: 41:65:57:3a:d7:1f:7a:59:25:59:f0:a7:a3:fa:24: 19:50:20:1e:d1:a3:ea:cb:71:6e:2c:89:f0:5a:2d: 4e:67:94:7a:78:2a:26:e7:74:a6:a1:22:6d:ab:fa: 52:6a:72:0d:95:3d:7f:1c:ad:60:87:9c:57:f7:4e: aa:21:2f:16:3f:1d:c9:06:11:8d:9c:cf:37:28:b9: b0:e2:a7:a2:fd:40:1e:24:fe:59:db:c0:08:ce:7c: 4e:3e:42:62:7a:a4:12:57:cf:c0:0d:98:9f:88:a1: 0b:aa:38:a3:67:61:16:9b:20:21:2b:0a:a7:54:a3: 61:ef:98:07:16:b1:08:4a:14:c4:4d:00:b2:b0:aa: 6d:83:d4:9a:99:da:df:25:6a:24:17:94:13:ea:fd: 72:be:0b:a8:ed:97:fd:da:bf:34:8c:d3:47:9d:f0: 1a:23:6a:0f:d3:d9:cd:c4:22:a7:95:83:20:0b:d8: b0:61:31:11:c4:8f:be:85:ca:0a:6b:04:6d:cc:6f: d0:04:5b:ac:f5:4c:c9:10:f0:c9:c7:42:d4:16:8e: f5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8A:1C:53:8B:53:9F:C2:4D:6F:DA:AF:45:E5:9F:EF:98:CB:50:05 X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:44:35:9b:93:02:d3:0c:14:b2:1f:02:e2:5c:4f:a3:ff:25: dc:04:0e:6f:7e:f8:7a:63:d6:84:af:95:8b:6e:8e:99:c9:96: cf:ed:f6:41:d0:d3:72:38:64:ac:bd:71:bb:76:4e:4b:b6:a1: d6:15:1a:0e:31:8a:9a:e1:16:50:5c:24:c1:f0:71:6c:d4:43: ae:9e:1f:30:f1:83:e5:9c:90:d8:c5:62:1d:92:42:03:5d:d2: 46:59:fa:d5:69:3f:95:be:74:ae:07:2b:dc:9b:ca:15:0e:6d: 09:05:e9:2d:93:28:2f:3d:bc:78:82:8f:bf:c6:20:c9:f3:38: cc:91:9e:e3:9b:ec:d2:2d:3f:47:e5:e9:ce:56:09:db:39:36: 2f:7b:a4:75:2a:91:a5:32:3b:8a:20:c6:da:b3:9e:f5:35:84: 2a:8a:97:d0:f2:22:ce:fa:d4:be:fd:2c:bf:06:cb:86:4b:7e: 00:89:3b:11:ed:0c:8f:90:e5:87:82:bc:d5:57:89:05:32:63: 31:e6:85:a4:08:9a:8b:b6:b0:43:39:17:67:75:59:83:91:37: 4f:ea:0a:58:4e:07:d4:8f:55:12:ad:11:af:5c:11:39:ac:87: e1:27:a5:a7:ac:81:44:91:88:47:76:30:ec:04:e8:9c:af:39: 42:22:13:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjYwNDA0MjAxMDU1WhcNMjYwNDExMjAxMDU1WjAYMRYwFAYD VQQDEw02OWQxNzA0Zi03MWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0K9/MuDEgsEqV/UgzHd7Ow6evIu95LbSoxpB3wj3ecZEOadBmlm9OiiBLmJB ZVc61x96WSVZ8Kej+iQZUCAe0aPqy3FuLInwWi1OZ5R6eCom53SmoSJtq/pSanIN lT1/HK1gh5xX906qIS8WPx3JBhGNnM83KLmw4qei/UAeJP5Z28AIznxOPkJieqQS V8/ADZifiKELqjijZ2EWmyAhKwqnVKNh75gHFrEIShTETQCysKptg9SamdrfJWok F5QT6v1yvguo7Zf92r80jNNHnfAaI2oP09nNxCKnlYMgC9iwYTERxI++hcoKawRt zG/QBFus9UzJEPDJx0LUFo71TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHGKHFOL U5/CTW/ar0Xln++Yy1AFMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAkQ1m5MC0wwUsh8C4lxPo/8l3AQOb374emPWhK+Vi26OmcmWz+32QdDTcjhk rL1xu3ZOS7ah1hUaDjGKmuEWUFwkwfBxbNRDrp4fMPGD5ZyQ2MViHZJCA13SRln6 1Wk/lb50rgcr3JvKFQ5tCQXpLZMoLz28eIKPv8YgyfM4zJGe45vs0i0/R+XpzlYJ 2zk2L3ukdSqRpTI7iiDG2rOe9TWEKoqX0PIizvrUvv0svwbLhkt+AIk7Ee0Mj5Dl h4K81VeJBTJjMeaFpAiai7awQzkXZ3VZg5E3T+oKWE4H1I9VEq0Rr1wROayH4Sel p6yBRJGIR3Yw7ATonK85QiITvg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:50 2026 by rpki-client