$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: zLHifamE2AjVRBZ+m+Ry21tmGXOzFhYraDtd4DQW0Bk= Subject key identifier: 92:67:46:87:C3:6D:B4:19:1C:94:CF:D3:DF:FC:DE:51:16:D0:ED:48 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 07A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 0796 Signing time: Tue 12 May 2026 21:35:24 +0000 Manifest this update: Tue 12 May 2026 21:35:23 +0000 Manifest next update: Tue 19 May 2026 21:35:23 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: CPyqWWhLer7JXShJ/36/+O+J0NMNuWx4fVXo074aNRA=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: aBoUkT3XfOno4ZFpM1LCowGFp8BTgYEHGaCNCAbFWpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1954 (0x7a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: May 12 21:35:23 2026 GMT Not After : May 19 21:35:23 2026 GMT Subject: CN=6a039d1c-e993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a7:b4:f7:20:c0:6b:7f:ef:ec:f8:43:33:bc: c0:50:7d:e0:41:a2:0b:07:d9:82:76:65:ba:5a:47: c2:7d:4e:c4:6e:7d:2f:0b:af:a0:b3:67:13:58:f6: 4d:2c:28:24:97:f5:a4:3e:06:5f:86:e4:63:34:d3: df:7d:43:64:71:f5:7a:76:88:f3:ee:32:49:a0:1e: 62:46:83:3a:42:b1:96:2e:1b:c6:c6:c9:f1:5d:1e: 6c:06:f9:95:92:c9:55:9d:f9:e4:62:09:85:23:85: dd:f0:15:ef:ad:8b:b4:bf:fc:96:75:5c:83:d8:ea: 11:68:9c:70:5f:40:57:ec:cc:8e:5d:0e:c5:5e:46: da:e6:23:04:09:99:0a:73:84:fe:92:ee:3d:b2:af: 95:b3:84:fd:d3:74:1d:05:b4:0a:e8:28:3f:6d:f2: 2c:75:22:33:82:44:00:95:41:3c:5a:d7:08:7a:ce: 51:44:12:b3:6f:9c:99:d5:77:b0:c5:12:fb:0f:40: af:d5:c9:1a:c5:6e:55:48:b9:56:08:d9:a5:d1:0e: b1:23:cf:7e:4d:5d:ea:c3:a9:71:35:0f:0c:93:90: d9:f3:d3:b1:58:e0:0a:a4:5a:ca:75:97:84:27:28: d9:1c:a2:99:28:87:aa:09:00:49:7b:5d:f7:48:af: 41:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:67:46:87:C3:6D:B4:19:1C:94:CF:D3:DF:FC:DE:51:16:D0:ED:48 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:cc:8f:33:0f:93:88:c5:2b:2c:52:49:7c:e0:ec:35:d7:6e: 2b:48:a5:c4:13:6b:97:b0:3b:b8:49:20:8e:83:2d:c2:45:97: 99:a8:05:d5:a6:33:76:f7:34:59:f2:46:be:27:42:91:a8:fd: 12:9d:37:2f:30:53:b1:85:5e:19:6b:47:a2:9c:b2:11:b1:e5: c6:22:6f:f0:06:a0:3f:b1:a0:61:a2:86:2b:2c:9d:46:92:9e: f7:5a:ec:ca:97:02:63:66:08:24:1a:6d:9d:f7:ab:ab:72:47: 5b:d6:20:be:ec:0b:8d:f5:51:63:d3:0f:9b:06:6a:19:c2:7d: b6:e2:83:4e:d8:b8:4d:d4:ed:c4:f3:17:6e:d7:aa:b1:1d:e1: 9f:c3:2e:dc:56:1b:2c:ad:20:30:a6:00:e4:39:ba:88:ca:dd: 47:8a:e6:c5:28:d1:75:5c:cc:a7:fc:27:2b:dc:6f:01:21:f4: c1:10:5d:be:11:41:e6:17:91:1b:ec:d7:0b:c9:34:5a:f2:6e: 2f:fa:e3:fe:cc:52:a7:f9:ea:92:c3:58:03:8f:6d:37:28:05: ca:0b:3f:11:07:e3:57:ec:0b:9c:1e:fb:75:58:87:ce:c6:91: 1b:c6:bf:55:28:aa:85:eb:fb:6e:3d:c8:71:5b:1a:31:d3:5a: ce:6f:4c:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjYwNTEyMjEzNTIzWhcNMjYwNTE5MjEzNTIzWjAYMRYwFAYD VQQDEw02YTAzOWQxYy1lOTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6e09yDAa3/v7PhDM7zAUH3gQaILB9mCdmW6WkfCfU7Ebn0vC6+gs2cTWPZN LCgkl/WkPgZfhuRjNNPffUNkcfV6dojz7jJJoB5iRoM6QrGWLhvGxsnxXR5sBvmV kslVnfnkYgmFI4Xd8BXvrYu0v/yWdVyD2OoRaJxwX0BX7MyOXQ7FXkba5iMECZkK c4T+ku49sq+Vs4T903QdBbQK6Cg/bfIsdSIzgkQAlUE8WtcIes5RRBKzb5yZ1Xew xRL7D0Cv1ckaxW5VSLlWCNml0Q6xI89+TV3qw6lxNQ8Mk5DZ89OxWOAKpFrKdZeE JyjZHKKZKIeqCQBJe133SK9B4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJJnRofD bbQZHJTP09/83lEW0O1IMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACsyPMw+TiMUrLFJJfODsNdduK0ilxBNrl7A7uEkgjoMtwkWXmagF1aYzdvc0 WfJGvidCkaj9Ep03LzBTsYVeGWtHopyyEbHlxiJv8AagP7GgYaKGKyydRpKe91rs ypcCY2YIJBptnferq3JHW9YgvuwLjfVRY9MPmwZqGcJ9tuKDTti4TdTtxPMXbteq sR3hn8Mu3FYbLK0gMKYA5Dm6iMrdR4rmxSjRdVzMp/wnK9xvASH0wRBdvhFB5heR G+zXC8k0WvJuL/rj/sxSp/nqksNYA49tNygFygs/EQfjV+wLnB77dViHzsaRG8a/ VSiqhev7bj3IcVsaMdNazm9MvQ== -----END CERTIFICATE-----Generated at Wed May 13 01:21:38 2026 by rpki-client