$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: jgwRvtFEQXs7fvu9g2xo5baZXtkQnPkJX+jbfKD+eLM= Subject key identifier: 81:A4:D3:F2:BF:D5:54:0A:1A:E8:4E:73:7D:27:F0:7A:F7:09:F9:26 Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 0200 Signing time: Thu 21 May 2026 03:09:45 +0000 Manifest this update: Thu 21 May 2026 03:09:45 +0000 Manifest next update: Thu 28 May 2026 03:09:45 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: WSHbzmmeL0MWoTjr7MYDFh14ASm9mkMUAwAqxrFDJOI=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: CEGrzyVX/R9nXXUQAan2KcsnSM9ycrOqX5vVxIScejc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:09:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: May 21 03:09:45 2026 GMT Not After : May 28 03:09:45 2026 GMT Subject: CN=6a0e7779-f146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d6:8c:0a:2e:52:42:67:4b:e5:d3:2c:d2:f1: 67:0e:b8:1a:23:ee:1c:c4:09:67:a1:e9:ad:ab:ff: c4:bf:63:87:18:e3:cc:b5:0b:31:77:1b:7e:17:8f: e4:41:1e:31:df:e9:b1:4d:a0:d4:46:80:1d:03:d4: 7b:db:69:7c:60:04:21:f4:50:b9:fc:f8:b8:f6:04: 9e:b0:c7:78:fd:14:a6:12:de:82:8c:1d:1a:23:06: 08:fa:23:ae:64:36:9e:7d:3d:ef:6e:fd:a5:85:d6: 75:72:ea:6c:7f:d3:92:bf:e4:de:1f:76:1b:27:82: 00:b8:32:da:a6:04:ab:9a:34:08:cd:07:8e:9d:45: a5:4d:d3:0f:b7:c2:bf:25:b1:f9:db:99:c2:2a:b4: 84:00:37:7e:30:e3:24:66:7b:5f:24:03:fd:4a:0b: c2:c6:3c:3d:a8:e4:ff:e0:d0:17:5f:b4:f1:94:d5: a0:31:07:81:31:1e:9b:7d:6e:8d:38:da:14:db:5b: a6:f7:7d:21:f3:0d:31:88:3a:f0:61:2a:80:4c:f0: a2:8f:ed:8c:a1:d1:a3:d8:93:ed:c4:4d:12:12:b3: 98:4f:b9:e7:41:25:2f:0f:46:d4:79:57:36:0e:97: 33:e8:ab:04:e7:37:f3:95:27:11:36:2c:a3:c6:ec: 6f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A4:D3:F2:BF:D5:54:0A:1A:E8:4E:73:7D:27:F0:7A:F7:09:F9:26 X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:50:7d:73:9f:30:45:13:c2:13:b5:ef:2b:ab:b3:18:5d:ec: 1a:3a:f4:b0:ea:dc:05:f0:5f:c8:95:1e:a0:89:43:18:f8:0f: 6d:62:c4:b6:3b:d1:05:f4:83:61:b2:b3:c3:3d:96:ff:f3:d9: 97:f9:86:9f:52:c8:99:27:c5:ab:df:da:69:cc:d3:81:0d:09: 18:09:dc:30:ba:f1:00:69:17:b3:e8:72:ef:11:3d:26:d3:2c: f7:7b:e4:a9:70:cd:11:ec:7b:73:9b:fb:32:ec:f7:1d:53:57: 2b:df:ae:27:be:2a:40:8f:35:57:70:c8:aa:ef:9f:87:9f:ba: cc:0d:0c:8d:80:69:71:27:74:9e:76:26:ae:4e:a0:ee:64:60: f6:4b:2d:19:c4:b6:0f:01:11:f8:cb:eb:16:58:c0:06:93:5e: 02:d5:cd:c0:6c:e5:1a:e2:07:4e:6a:f5:f1:97:3e:a9:13:e2: cd:60:ed:5d:30:3e:fb:c7:50:22:31:b4:d6:30:ad:4a:b5:78: a9:3d:0c:2d:d9:77:b6:2f:a8:5d:ae:14:42:a0:ca:07:e6:60: e1:51:3f:3c:5a:d5:6d:1a:71:dc:7a:60:7f:f0:40:5b:64:86: 4c:9b:f2:b3:a3:8d:da:80:35:fc:15:d9:be:ec:5b:a2:9f:7d: 5e:2b:ed:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjYwNTIxMDMwOTQ1WhcNMjYwNTI4MDMwOTQ1WjAYMRYwFAYD VQQDEw02YTBlNzc3OS1mMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNaMCi5SQmdL5dMs0vFnDrgaI+4cxAlnoemtq//Ev2OHGOPMtQsxdxt+F4/k QR4x3+mxTaDURoAdA9R722l8YAQh9FC5/Pi49gSesMd4/RSmEt6CjB0aIwYI+iOu ZDaefT3vbv2lhdZ1cupsf9OSv+TeH3YbJ4IAuDLapgSrmjQIzQeOnUWlTdMPt8K/ JbH525nCKrSEADd+MOMkZntfJAP9SgvCxjw9qOT/4NAXX7TxlNWgMQeBMR6bfW6N ONoU21um930h8w0xiDrwYSqATPCij+2ModGj2JPtxE0SErOYT7nnQSUvD0bUeVc2 Dpcz6KsE5zfzlScRNiyjxuxv/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIGk0/K/ 1VQKGuhOc30n8Hr3CfkmMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALFB9c58wRRPCE7XvK6uzGF3sGjr0sOrcBfBfyJUeoIlDGPgPbWLEtjvRBfSD YbKzwz2W//PZl/mGn1LImSfFq9/aaczTgQ0JGAncMLrxAGkXs+hy7xE9JtMs93vk qXDNEex7c5v7Muz3HVNXK9+uJ74qQI81V3DIqu+fh5+6zA0MjYBpcSd0nnYmrk6g 7mRg9kstGcS2DwER+MvrFljABpNeAtXNwGzlGuIHTmr18Zc+qRPizWDtXTA++8dQ IjG01jCtSrV4qT0MLdl3ti+oXa4UQqDKB+Zg4VE/PFrVbRpx3Hpgf/BAW2SGTJvy s6ON2oA1/BXZvuxbop99XivtBg== -----END CERTIFICATE-----Generated at Thu May 21 09:30:21 2026 by rpki-client