$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: G67u4pAICN/cxNqEI2+w59wbNPhDJ4FLbOElIC2g/TU= Subject key identifier: AF:6A:94:50:8F:AA:18:BE:4B:06:56:80:0D:95:5F:9E:97:E3:62:DD Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 13DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 13D3 Signing time: Tue 12 May 2026 16:57:13 +0000 Manifest this update: Tue 12 May 2026 16:57:13 +0000 Manifest next update: Tue 19 May 2026 16:57:13 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: UEyV7LVMA/TLfY3Mxthiinn9gBl+ATABbTlFkoo5NBI=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: RPjXeL3Zl8P6QkaRaUeCd76+wyQHC30Y9Dr1jaF8lPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5086 (0x13de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: May 12 16:57:13 2026 GMT Not After : May 19 16:57:13 2026 GMT Subject: CN=6a035be9-7412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:33:03:50:65:32:70:c5:0a:e6:98:75:3a:67: c3:3d:af:26:1b:08:62:da:c9:14:ff:e8:54:09:87: cb:fa:06:e8:8f:58:59:48:5e:87:0c:7b:8c:a3:17: a7:25:09:b2:48:85:c5:87:06:1c:ba:40:f8:ce:b6: 9b:d1:66:77:29:d0:31:ac:eb:99:13:c8:fc:f2:d0: 3b:7e:8e:7b:6d:e4:04:66:e4:91:74:19:ed:46:b0: 0d:5d:67:44:88:d1:2a:d8:93:b9:77:98:d8:d6:f7: 6e:05:39:dc:d4:b9:f0:12:79:b1:89:cc:25:92:4b: 98:f3:8f:96:b1:22:81:5c:2e:d0:b5:9a:fe:94:61: 13:87:9b:ac:28:34:47:7d:09:99:2d:f8:04:06:d2: ea:8e:96:a2:51:ff:c6:7d:6c:c8:d8:5f:7e:d9:e9: 06:60:ae:01:2d:bf:1d:69:76:7f:94:b7:63:6b:73: a2:88:b8:be:a9:c3:da:2e:c7:07:54:8c:4b:dc:4c: 1e:d4:02:d9:99:b2:97:60:54:5f:d9:7b:2c:62:eb: ba:8a:c7:07:3b:50:61:13:90:99:2e:0e:4e:95:c7: 59:4d:fd:18:2b:7b:d1:bb:56:9b:9a:4a:7c:ae:a0: cc:44:28:88:e2:2e:be:a4:93:b7:24:66:78:39:a3: 37:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:6A:94:50:8F:AA:18:BE:4B:06:56:80:0D:95:5F:9E:97:E3:62:DD X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:88:18:f5:9a:b8:fe:25:99:45:98:65:85:ed:75:eb:ab:e6: d5:98:52:ec:59:f3:5b:31:e8:98:3f:d5:83:e4:cf:cf:35:e2: c2:d5:f3:5f:32:a2:da:b4:85:78:e7:43:b4:9b:81:d4:ea:56: 58:8f:b3:fa:1e:4d:91:81:46:41:69:23:58:86:ca:47:b4:67: 9e:e4:d0:8c:88:55:7e:e3:36:73:c2:f4:f4:7b:e9:b9:74:f7: ca:3d:d4:fa:57:da:82:1d:7a:f0:c5:cd:c2:6d:36:41:4f:08: 07:9e:7f:8a:8d:37:02:b1:59:55:b8:84:06:66:ec:34:aa:3b: 57:c9:80:4d:3e:d2:a3:f5:74:bc:38:69:5f:da:92:12:8c:c2: c5:ba:d4:0e:e6:d6:bc:90:25:46:6a:c8:2c:76:fe:f5:72:3f: 01:69:3c:36:2a:63:83:ac:ea:ab:bf:4e:a6:1e:cd:c7:2a:76: 9b:58:f4:86:b1:82:73:5a:9b:d0:ed:40:20:71:f1:74:e8:af: c5:ba:ef:15:c2:61:9a:f3:87:9d:6e:74:5e:0c:f8:0e:d6:aa: 2d:9f:31:a9:bb:56:de:be:0d:b7:76:cf:31:d2:de:57:74:16: 4a:ea:cc:ab:7e:d4:5d:bb:27:53:5c:e7:8a:94:57:a1:d4:9f: 6b:98:09:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjYwNTEyMTY1NzEzWhcNMjYwNTE5MTY1NzEzWjAYMRYwFAYD VQQDEw02YTAzNWJlOS03NDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjMDUGUycMUK5ph1OmfDPa8mGwhi2skU/+hUCYfL+gboj1hZSF6HDHuMoxen JQmySIXFhwYcukD4zrab0WZ3KdAxrOuZE8j88tA7fo57beQEZuSRdBntRrANXWdE iNEq2JO5d5jY1vduBTnc1LnwEnmxicwlkkuY84+WsSKBXC7QtZr+lGETh5usKDRH fQmZLfgEBtLqjpaiUf/GfWzI2F9+2ekGYK4BLb8daXZ/lLdja3OiiLi+qcPaLscH VIxL3Ewe1ALZmbKXYFRf2XssYuu6iscHO1BhE5CZLg5OlcdZTf0YK3vRu1abmkp8 rqDMRCiI4i6+pJO3JGZ4OaM33QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK9qlFCP qhi+SwZWgA2VX56X42LdMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt4gY9Zq4/iWZRZhlhe1166vm1ZhS7FnzWzHomD/Vg+TPzzXiwtXzXzKi2rSF eOdDtJuB1OpWWI+z+h5NkYFGQWkjWIbKR7RnnuTQjIhVfuM2c8L09HvpuXT3yj3U +lfagh168MXNwm02QU8IB55/io03ArFZVbiEBmbsNKo7V8mATT7So/V0vDhpX9qS EozCxbrUDubWvJAlRmrILHb+9XI/AWk8Nipjg6zqq79Oph7Nxyp2m1j0hrGCc1qb 0O1AIHHxdOivxbrvFcJhmvOHnW50Xgz4DtaqLZ8xqbtW3r4Nt3bPMdLeV3QWSurM q37UXbsnU1znipRXodSfa5gJPg== -----END CERTIFICATE-----Generated at Wed May 13 15:30:48 2026 by rpki-client