$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: +OjiuLtp3A+//rCgPBfzfEpTq8pQD68tY4hNDPLR4NY= Subject key identifier: 80:27:54:C4:97:D2:25:8A:A3:52:7E:99:2A:0D:72:93:3D:6F:0A:30 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 012B Signing time: Sun 05 Apr 2026 05:02:07 +0000 Manifest this update: Sun 05 Apr 2026 05:02:07 +0000 Manifest next update: Sun 12 Apr 2026 05:02:07 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: KemCRhZmFpbinO7bRdrNWSZoVIf2Jldy0cwvZlye0Pw=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: 1xxchiebCxLNftly6au7Pkd2xXnWXWVrUcEG++FarVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Apr 5 05:02:07 2026 GMT Not After : Apr 12 05:02:07 2026 GMT Subject: CN=69d1eccf-9360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:55:21:4d:48:3c:a0:ae:6a:7f:9c:61:26:e2: d1:d5:52:54:0d:cf:63:b1:ce:72:80:2d:84:6c:d6: 29:57:1e:11:2e:b3:2c:71:ce:8b:70:27:e2:19:98: 79:33:71:8e:a5:f7:71:50:66:f7:db:44:56:84:1f: 75:1a:2a:9d:45:eb:20:3e:57:10:d3:c7:10:d7:2a: 07:50:3d:a7:e2:1f:ae:d3:da:6d:8d:50:da:bc:24: 07:ac:68:2f:ce:78:61:fe:40:a6:14:a1:1f:a6:a9: 9e:a5:d9:e5:55:b2:d6:d7:cd:04:cb:88:5e:32:9b: f3:84:79:9b:7b:5c:56:09:95:0f:3b:49:c4:d6:df: 35:c4:97:83:03:58:d7:1a:e0:45:06:85:66:34:d3: 11:24:60:26:e4:39:6c:86:8d:73:26:ad:82:1e:1b: 4b:64:4f:86:07:be:95:44:b5:cb:a1:e7:c0:a4:55: 75:0f:2a:b6:44:64:6e:cd:42:88:70:5f:69:2c:b5: 8d:de:b4:38:7c:06:3c:18:95:45:c6:92:5e:e3:93: be:ee:0e:ff:22:b2:dd:75:8e:f8:19:13:03:2f:17: b0:10:3e:34:9c:ed:f1:b5:72:20:50:fe:75:fb:f5: d7:a2:02:64:6c:42:df:ec:ad:12:89:e2:13:7a:02: 7c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:27:54:C4:97:D2:25:8A:A3:52:7E:99:2A:0D:72:93:3D:6F:0A:30 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e4:88:13:89:4a:e4:63:9f:56:a0:fe:41:c1:38:16:d9:7a:3a: ea:8b:cc:8d:e0:ab:b2:23:aa:33:56:a5:64:ed:61:1d:de:fe: 3b:0c:5b:76:47:f0:3a:5c:a0:da:d3:5e:89:4e:55:38:c7:9a: cf:f1:3e:8d:f1:15:99:98:49:49:da:20:76:e4:d6:0d:99:7c: b0:bc:85:c8:98:d3:ae:d1:fa:f6:54:7a:89:98:1d:29:29:1b: 33:e1:c2:f0:e2:ab:41:11:4b:3d:ae:0c:e0:02:bf:80:8b:c1: ea:89:82:b4:12:c0:ce:d2:ae:2c:0e:d0:de:b3:1f:3c:98:df: bd:95:08:27:8b:b3:44:ff:58:b1:e8:50:c9:7a:31:5b:59:ee: d4:54:54:c4:43:29:0b:7d:92:0d:99:c5:79:8f:ac:f8:18:2a: 8e:da:dd:fc:b6:0a:6d:6b:0d:5c:3a:31:b7:52:23:f9:ed:70: 90:d8:1b:26:0a:84:f5:59:b1:e0:02:d8:00:c2:e1:be:76:9d: 99:b4:db:d4:39:88:b9:e7:0a:3f:4a:e9:69:38:e4:17:c1:0c: 2b:6e:39:6d:54:41:ac:81:64:d0:b1:89:87:a7:bf:35:6c:3d: 0a:60:31:e0:e8:1c:a9:b8:bb:01:ce:2a:e6:ca:47:7d:4a:2a: 83:22:5d:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjYwNDA1MDUwMjA3WhcNMjYwNDEyMDUwMjA3WjAYMRYwFAYD VQQDEw02OWQxZWNjZi05MzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlUhTUg8oK5qf5xhJuLR1VJUDc9jsc5ygC2EbNYpVx4RLrMscc6LcCfiGZh5 M3GOpfdxUGb320RWhB91GiqdResgPlcQ08cQ1yoHUD2n4h+u09ptjVDavCQHrGgv znhh/kCmFKEfpqmepdnlVbLW180Ey4heMpvzhHmbe1xWCZUPO0nE1t81xJeDA1jX GuBFBoVmNNMRJGAm5Dlsho1zJq2CHhtLZE+GB76VRLXLoefApFV1Dyq2RGRuzUKI cF9pLLWN3rQ4fAY8GJVFxpJe45O+7g7/IrLddY74GRMDLxewED40nO3xtXIgUP51 +/XXogJkbELf7K0SieITegJ8FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIAnVMSX 0iWKo1J+mSoNcpM9bwowMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA5IgTiUrkY59WoP5BwTgW2Xo66ovMjeCrsiOqM1alZO1hHd7+OwxbdkfwOlyg 2tNeiU5VOMeaz/E+jfEVmZhJSdogduTWDZl8sLyFyJjTrtH69lR6iZgdKSkbM+HC 8OKrQRFLPa4M4AK/gIvB6omCtBLAztKuLA7Q3rMfPJjfvZUIJ4uzRP9YsehQyXox W1nu1FRUxEMpC32SDZnFeY+s+Bgqjtrd/LYKbWsNXDoxt1Ij+e1wkNgbJgqE9Vmx 4ALYAMLhvnadmbTb1DmIuecKP0rpaTjkF8EMK245bVRBrIFk0LGJh6e/NWw9CmAx 4Ogcqbi7Ac4q5spHfUoqgyJdoQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:55 2026 by rpki-client