$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: OvYh3QY8aNit9wLU8DU8DfKE+XLtjZtBPqsWz22TXSY= Subject key identifier: 38:D4:66:28:33:95:77:EB:A9:50:CD:E5:A7:76:82:20:E6:A0:4B:15 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0C21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0C13 Signing time: Sat 04 Apr 2026 18:39:04 +0000 Manifest this update: Sat 04 Apr 2026 18:39:04 +0000 Manifest next update: Sat 11 Apr 2026 18:39:04 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: 2D8KQAASqp4eU8+1uxCRj53sNnmXVfGXYGXQ7bt1hLk=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: FbKjiGyoYXtJ+Sip8tCWTgSCfHXUOeTdm95y0Shz3Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:39:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Apr 4 18:39:04 2026 GMT Not After : Apr 11 18:39:04 2026 GMT Subject: CN=69d15ac8-5083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5f:73:06:49:a3:9a:86:8a:0f:0e:cf:10:c0: 4f:20:3d:ed:cb:0b:70:01:a1:c1:98:90:ea:53:01: 52:f6:9f:0c:60:12:ee:90:48:55:12:39:01:8f:a9: 80:9e:4b:4b:58:5d:c7:18:92:86:09:11:61:36:c5: be:e5:6f:98:33:49:c0:cf:02:fb:c5:c5:e6:84:da: 3e:a1:d5:ab:12:e5:4b:0f:53:72:a6:88:27:08:6b: a9:85:8b:fc:b0:9a:17:c1:0c:44:cb:6c:35:11:8a: 40:67:54:cc:16:65:c5:a9:76:af:0e:68:9d:18:49: 75:dc:92:24:f2:03:94:1f:68:41:a1:6b:e1:4d:09: e9:98:c8:52:0d:9a:e8:71:07:ab:81:12:a5:e1:21: 32:d7:bc:b4:0f:a8:14:5e:3d:54:b5:96:f9:4b:fb: fb:71:9b:a2:7a:a7:79:b5:ea:c2:37:32:74:e6:4d: 19:3d:c9:27:74:c5:84:45:3e:a7:15:f3:d2:52:b8: 44:32:5e:29:72:28:95:84:37:9c:51:9c:e1:8f:dd: 24:72:d3:ef:1d:23:ba:af:96:39:7b:bf:5c:89:7d: ab:ec:04:21:17:e3:1f:99:0f:3b:92:d3:a6:fb:94: cf:b7:ee:24:86:86:db:5b:7c:65:93:fa:ac:d1:65: e8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D4:66:28:33:95:77:EB:A9:50:CD:E5:A7:76:82:20:E6:A0:4B:15 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:9d:57:88:bc:d0:c4:5c:42:70:13:92:76:c2:0c:bc:83:4c: bd:b3:90:3f:7a:57:91:2b:f4:06:3b:11:be:40:df:c2:8d:f9: a0:9d:a0:a3:87:ef:73:17:fe:00:51:9f:ce:05:c8:1b:15:0e: 6c:22:54:b6:f0:e4:cd:0c:ba:49:cd:13:1f:ba:82:3a:1a:e3: 49:67:12:0a:e0:85:ed:27:8d:6b:7f:51:38:35:bb:35:c8:1d: 9b:96:25:05:02:4f:4e:68:c8:a6:0d:a2:70:29:85:26:78:76: e7:94:fa:d0:a5:8e:f9:47:1c:d9:3c:0a:56:c7:a1:e4:d8:50: 1d:fa:90:e6:9f:0f:54:e6:0a:0a:f3:53:69:b5:a4:f4:86:96: aa:2b:3d:44:08:21:8a:5d:f1:07:c3:b0:55:85:45:3e:b7:86: 2a:d2:43:e4:8c:d6:3b:0d:e6:82:63:0d:62:fa:e0:3c:42:f1: 30:99:6c:d1:7a:6a:85:87:4f:89:c7:88:f1:af:dd:26:48:c0: 35:64:75:a6:06:60:b2:84:a8:e5:4c:af:f1:b4:11:40:ad:f1: 0a:80:ce:23:36:20:2e:4b:e2:97:4e:1f:07:3e:1a:55:d7:24: 71:bf:95:da:a2:7e:9f:d6:6a:3f:64:39:b2:62:95:9d:fc:97: 1b:09:53:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjYwNDA0MTgzOTA0WhcNMjYwNDExMTgzOTA0WjAYMRYwFAYD VQQDEw02OWQxNWFjOC01MDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1F9zBkmjmoaKDw7PEMBPID3tywtwAaHBmJDqUwFS9p8MYBLukEhVEjkBj6mA nktLWF3HGJKGCRFhNsW+5W+YM0nAzwL7xcXmhNo+odWrEuVLD1NypognCGuphYv8 sJoXwQxEy2w1EYpAZ1TMFmXFqXavDmidGEl13JIk8gOUH2hBoWvhTQnpmMhSDZro cQergRKl4SEy17y0D6gUXj1UtZb5S/v7cZuieqd5terCNzJ05k0ZPckndMWERT6n FfPSUrhEMl4pciiVhDecUZzhj90kctPvHSO6r5Y5e79ciX2r7AQhF+MfmQ87ktOm +5TPt+4khobbW3xlk/qs0WXoBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDjUZigz lXfrqVDN5ad2giDmoEsVMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbp1XiLzQxFxCcBOSdsIMvINMvbOQP3pXkSv0BjsRvkDfwo35oJ2go4fvcxf+ AFGfzgXIGxUObCJUtvDkzQy6Sc0TH7qCOhrjSWcSCuCF7SeNa39RODW7Ncgdm5Yl BQJPTmjIpg2icCmFJnh255T60KWO+Ucc2TwKVseh5NhQHfqQ5p8PVOYKCvNTabWk 9IaWqis9RAghil3xB8OwVYVFPreGKtJD5IzWOw3mgmMNYvrgPELxMJls0XpqhYdP iceI8a/dJkjANWR1pgZgsoSo5Uyv8bQRQK3xCoDOIzYgLkvil04fBz4aVdckcb+V 2qJ+n9ZqP2Q5smKVnfyXGwlTdw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:05:31 2026 by rpki-client