$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: PEMhT6dl8XdFYUNRwqbVwRCE1uhi0W6Chk2LJ6P8bU8= Subject key identifier: 5B:A5:80:E5:0C:0D:27:40:51:ED:CD:6A:9D:82:3B:2E:EF:5A:88:9D Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0845 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 083A Signing time: Wed 20 May 2026 21:00:41 +0000 Manifest this update: Wed 20 May 2026 21:00:41 +0000 Manifest next update: Wed 27 May 2026 21:00:41 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: Y/Cl38J3Wv/ZBWb36QH0dvQKPZUZlt5f6HTrFGfP2Fs=) 2: E7BAB834B5F511F0B410AD78C4F9AE02.roa (hash: uxSAnvR6R6IbVNUOgDxpWGpdmYbvPquJW1vjjs3knts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2117 (0x845) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: May 20 21:00:41 2026 GMT Not After : May 27 21:00:41 2026 GMT Subject: CN=6a0e20f9-9bb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:c2:92:b4:db:45:af:63:62:be:73:80:63: 67:fc:63:54:2c:60:28:40:70:dd:91:3e:dc:33:76: 29:db:8a:3b:1a:14:28:7e:da:ca:43:b2:d0:28:74: b0:af:69:7d:1f:ff:fc:3a:3c:7d:68:8e:a2:91:a0: 12:90:7f:2f:db:08:43:5b:f5:57:a1:df:69:28:c8: 7b:fe:8d:98:fb:92:97:38:37:33:9c:60:ea:79:bd: fc:1e:4f:75:c0:d1:b5:10:2c:b0:45:11:b2:bf:89: e5:c3:93:d3:94:c9:e4:79:7b:15:31:a8:85:2b:62: 46:a8:09:7d:6a:ea:02:04:c3:ae:11:7b:28:f7:fd: 79:ad:da:36:81:29:8c:ac:2c:c3:90:91:f5:42:e8: 85:51:04:8a:75:83:18:96:25:91:ff:d8:ea:d0:42: 14:f0:44:aa:7e:06:c2:5b:60:60:89:f2:7a:36:f9: c2:96:35:ae:e0:a3:bd:0e:c0:64:bb:bd:33:49:b8: 5e:3b:b4:84:a1:f9:a3:2c:60:19:25:79:d3:70:9c: 73:1c:f2:8c:3d:52:85:80:53:c9:1a:13:d4:2f:95: c5:b8:5b:21:e7:68:2d:34:c1:5c:6b:55:e4:66:33: 13:de:f4:da:e6:df:46:5e:c3:9f:8a:f6:a4:5c:16: b9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A5:80:E5:0C:0D:27:40:51:ED:CD:6A:9D:82:3B:2E:EF:5A:88:9D X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:2c:42:16:3c:a3:2a:ce:3a:7e:c5:f9:a8:ee:e7:32:36:8d: 2f:e7:a8:3b:c9:4d:5b:8f:b1:c6:83:4c:21:c3:cf:34:60:29: 70:36:04:bc:ca:82:47:d5:20:13:af:80:88:39:75:e8:b1:e9: 87:49:4b:c7:09:75:9b:31:93:7d:bc:b2:be:ba:38:8c:4c:81: 79:6a:e5:d0:4a:c7:49:8f:05:81:03:93:c5:98:26:27:53:c5: bb:99:8b:21:22:f2:60:e9:1b:bd:8f:f7:cf:e8:8f:02:ea:4e: b2:f3:63:fc:6b:f3:6f:a4:fe:41:40:b6:35:11:78:52:01:41: e0:36:96:85:e8:da:9f:80:c1:32:59:4e:ab:10:85:a1:5b:71: 8f:38:93:84:be:d3:5e:28:0e:ec:aa:40:a2:47:e0:3e:9e:a9: b7:3b:d1:bb:6e:8a:73:3d:a0:63:df:b7:df:68:b2:20:4e:1a: b3:97:38:dd:de:2f:bc:ad:47:5a:85:76:68:4c:0a:9e:cf:e1: 52:d1:e6:9d:da:d7:92:d0:2a:13:5f:d6:b3:97:95:91:04:ff: e8:c9:d1:26:62:cf:f6:29:f6:dd:c5:dd:24:c8:3b:d5:17:5e: c8:d1:86:a9:fb:98:a4:77:76:91:40:41:6c:74:35:3e:47:51: da:f7:a0:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjYwNTIwMjEwMDQxWhcNMjYwNTI3MjEwMDQxWjAYMRYwFAYD VQQDEw02YTBlMjBmOS05YmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApt/CkrTbRa9jYr5zgGNn/GNULGAoQHDdkT7cM3Yp24o7GhQoftrKQ7LQKHSw r2l9H//8Ojx9aI6ikaASkH8v2whDW/VXod9pKMh7/o2Y+5KXODcznGDqeb38Hk91 wNG1ECywRRGyv4nlw5PTlMnkeXsVMaiFK2JGqAl9auoCBMOuEXso9/15rdo2gSmM rCzDkJH1QuiFUQSKdYMYliWR/9jq0EIU8ESqfgbCW2BgifJ6NvnCljWu4KO9DsBk u70zSbheO7SEofmjLGAZJXnTcJxzHPKMPVKFgFPJGhPUL5XFuFsh52gtNMFca1Xk ZjMT3vTa5t9GXsOfivakXBa5jQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFulgOUM DSdAUe3Nap2COy7vWoidMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEixCFjyjKs46fsX5qO7nMjaNL+eoO8lNW4+xxoNMIcPPNGApcDYEvMqCR9Ug E6+AiDl16LHph0lLxwl1mzGTfbyyvro4jEyBeWrl0ErHSY8FgQOTxZgmJ1PFu5mL ISLyYOkbvY/3z+iPAupOsvNj/Gvzb6T+QUC2NRF4UgFB4DaWhejan4DBMllOqxCF oVtxjziThL7TXigO7KpAokfgPp6ptzvRu26Kcz2gY9+332iyIE4as5c43d4vvK1H WoV2aEwKns/hUtHmndrXktAqE1/Ws5eVkQT/6MnRJmLP9in23cXdJMg71RdeyNGG qfuYpHd2kUBBbHQ1PkdR2vegoQ== -----END CERTIFICATE-----Generated at Thu May 21 10:27:37 2026 by rpki-client