$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: fZa21Vl+r8YVOQHwtcAS3HDVKjspYiCoYEBqJ8xlj30= Subject key identifier: E2:73:D6:7A:32:A9:7E:FF:EA:B3:DD:EF:01:B6:F5:45:19:EC:30:51 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: 012D Signing time: Wed 13 May 2026 05:40:29 +0000 Manifest this update: Wed 13 May 2026 05:40:29 +0000 Manifest next update: Wed 20 May 2026 05:40:29 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: PigqKlowYuWevUWn3RjcM4IcxDHErMqQcrAiaTaAgpc=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: Sej2V4OlsP7Ps6e9ZpabG+sOD+K5ClIDNHh6GA9v3Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: May 13 05:40:29 2026 GMT Not After : May 20 05:40:29 2026 GMT Subject: CN=6a040ecd-dcf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:26:bb:0c:30:82:37:ae:e9:2b:db:ad:90:11: 3c:16:4c:94:28:5b:15:78:32:de:d3:9f:66:7b:56: 07:c9:c1:03:ea:84:a4:0d:a8:4d:4c:3a:6c:64:f1: f7:cb:a3:71:72:a6:7c:a6:d4:ac:eb:3e:cf:21:8e: fc:11:fa:11:cc:9d:8a:50:78:b6:56:b2:6d:85:12: 88:bf:22:29:2a:f3:10:d5:1d:4e:41:d5:41:41:de: da:ba:f8:2a:5c:27:ae:77:52:a5:7e:92:70:e9:15: df:c3:ab:99:a9:fe:13:f7:f3:5e:6f:8b:ca:5c:d5: 63:0c:ee:f8:d5:75:98:ec:13:42:a3:db:e3:25:44: 6c:aa:ef:4f:3c:27:62:01:18:1b:26:57:6c:c0:99: 64:c4:cb:b4:17:b5:8a:bd:0d:0d:a7:b2:b8:b1:65: 64:26:67:17:50:48:28:0e:13:d9:60:b7:a6:94:50: 5b:bc:78:5d:dc:91:15:a9:8a:af:63:0f:d8:60:b9: 30:06:72:58:dd:bd:06:81:28:50:d3:3b:a5:fe:74: 04:e2:05:91:ed:32:f9:e0:6d:33:57:ed:39:16:9d: 42:39:fb:30:7d:29:ea:49:87:5b:87:23:b4:19:32: 0a:07:cd:14:be:f1:50:21:dc:91:f9:78:54:68:93: bc:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:73:D6:7A:32:A9:7E:FF:EA:B3:DD:EF:01:B6:F5:45:19:EC:30:51 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:16:19:47:23:54:bf:91:17:ab:38:4b:cd:0e:a6:c9:08:65: 10:dc:af:ac:27:b3:59:46:90:1b:eb:1b:4b:8c:0c:f0:bb:49: 85:49:30:2e:f2:6c:14:c9:37:08:bc:1a:b6:63:0c:a8:fa:f5: 9a:be:fa:ce:7e:a6:4c:0f:63:08:db:1b:78:79:62:42:cd:aa: cb:c6:ca:7d:1a:39:80:39:43:77:5d:1f:5b:48:09:8f:24:6e: eb:eb:75:4a:c1:13:2b:cf:fb:f0:35:d2:27:85:51:a8:ce:ea: c9:f7:53:2c:a1:ea:30:63:53:dc:b3:65:62:17:9c:a2:9d:bd: d7:5e:57:2a:79:a9:82:6a:af:c5:91:5b:ce:69:4d:b2:6b:1e: eb:40:7d:b1:29:ed:c0:45:86:3f:7c:11:a1:ad:4b:b4:ae:7d: 2e:c1:af:5a:4b:87:71:2c:4b:4b:90:66:a4:94:79:2b:4c:80: e6:ff:2b:c1:39:ac:aa:f6:6d:1d:98:a9:25:0b:6e:9b:2f:0c: 3c:52:f1:ea:ed:e4:4c:c2:b3:a1:fa:98:4f:b4:ea:b7:a9:bc: 68:ee:3d:a6:91:da:26:9a:06:6a:3f:40:b6:29:f7:2f:6e:0e: 50:dd:a4:86:e1:92:5e:0c:36:01:fc:13:c3:39:fb:d0:6d:f0: 18:06:c6:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjYwNTEzMDU0MDI5WhcNMjYwNTIwMDU0MDI5WjAYMRYwFAYD VQQDEw02YTA0MGVjZC1kY2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Sa7DDCCN67pK9utkBE8FkyUKFsVeDLe059me1YHycED6oSkDahNTDpsZPH3 y6NxcqZ8ptSs6z7PIY78EfoRzJ2KUHi2VrJthRKIvyIpKvMQ1R1OQdVBQd7auvgq XCeud1KlfpJw6RXfw6uZqf4T9/Neb4vKXNVjDO741XWY7BNCo9vjJURsqu9PPCdi ARgbJldswJlkxMu0F7WKvQ0Np7K4sWVkJmcXUEgoDhPZYLemlFBbvHhd3JEVqYqv Yw/YYLkwBnJY3b0GgShQ0zul/nQE4gWR7TL54G0zV+05Fp1COfswfSnqSYdbhyO0 GTIKB80UvvFQIdyR+XhUaJO8HQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOJz1noy qX7/6rPd7wG29UUZ7DBRMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbhYZRyNUv5EXqzhLzQ6myQhlENyvrCezWUaQG+sbS4wM8LtJhUkwLvJsFMk3 CLwatmMMqPr1mr76zn6mTA9jCNsbeHliQs2qy8bKfRo5gDlDd10fW0gJjyRu6+t1 SsETK8/78DXSJ4VRqM7qyfdTLKHqMGNT3LNlYhecop29115XKnmpgmqvxZFbzmlN smse60B9sSntwEWGP3wRoa1LtK59LsGvWkuHcSxLS5BmpJR5K0yA5v8rwTmsqvZt HZipJQtumy8MPFLx6u3kTMKzofqYT7Tqt6m8aO49ppHaJpoGaj9Atin3L24OUN2k huGSXgw2AfwTwzn70G3wGAbGFQ== -----END CERTIFICATE-----Generated at Wed May 13 12:07:16 2026 by rpki-client