$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: LgmSmn7jnT+zVLRvkLEmcpXUqsrBDXc9uvJMQyB8y3s= Subject key identifier: 5C:26:D0:6D:C3:54:8C:95:62:9C:57:4A:A5:10:C7:32:05:C8:EC:C7 Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 0446 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 043E Signing time: Wed 13 May 2026 00:25:01 +0000 Manifest this update: Wed 13 May 2026 00:25:01 +0000 Manifest next update: Wed 20 May 2026 00:25:01 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: bBh12pCPnhEedHnmHxQwk+OkXp6eRUrsPwoJ9awmJx8=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 0n2WFP3OGMlXX26nzPcGgu1jYPaSSjw1YClglsZ8Waw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1094 (0x446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: May 13 00:25:01 2026 GMT Not After : May 20 00:25:01 2026 GMT Subject: CN=6a03c4dd-bfec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f5:fa:70:d9:52:1a:c8:45:5f:a5:9f:d4:f3: 66:ae:2c:04:3e:36:ce:17:4c:44:68:98:5e:0c:70: 23:9d:ac:5b:ca:24:03:05:8e:19:da:3d:1b:3e:f9: fe:1e:46:54:06:29:7c:46:f2:93:12:d0:a6:f6:73: bc:e1:16:30:4e:7e:8f:a7:8b:29:4a:aa:53:94:a5: e6:67:5a:ad:36:83:7a:f4:3d:58:fc:ac:25:d0:f8: 34:d4:2b:fe:3f:5b:63:e5:0a:1a:18:ed:74:71:ca: 53:1f:81:ac:d6:78:72:bc:d5:85:5a:a0:b0:1c:fb: cb:6d:cf:45:3c:4c:5c:b5:31:b9:fc:de:2a:1d:bd: 84:4d:e8:66:98:9b:f2:6a:5d:60:a0:88:36:71:17: 55:fc:f6:d4:13:8f:75:a2:c1:94:8f:41:64:ca:9b: e9:53:9c:a7:9e:6c:d3:73:d1:23:32:a5:68:60:2f: ce:16:e4:42:74:85:42:e5:a1:02:aa:2c:b7:c4:fe: d5:60:0c:89:ad:00:79:74:01:49:e8:fb:2a:30:ff: 9e:62:be:f4:dd:2b:18:b4:fd:fd:be:bd:15:97:f9: ed:29:85:52:61:48:9d:fa:ad:27:ee:de:72:60:83: 74:99:54:1d:73:9f:ab:34:a5:cd:ad:fa:6b:ee:47: c5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:26:D0:6D:C3:54:8C:95:62:9C:57:4A:A5:10:C7:32:05:C8:EC:C7 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b9:c4:ad:f0:5e:8d:9a:69:ea:11:63:f0:fe:2b:f4:77:3f: a7:35:e7:14:13:6e:a0:e4:ba:32:bc:f5:f6:f5:cf:a4:37:d7: 42:5c:4c:7a:d8:1a:8c:d8:88:42:c0:96:81:8e:98:e3:d9:b2: de:9b:1d:70:e7:4b:0f:0a:06:b1:2f:f8:15:67:9b:78:95:7e: e6:0f:f5:18:47:c8:fe:15:58:e5:52:bf:7f:11:13:c0:c7:54: 50:95:c4:00:41:8c:fe:aa:df:9d:87:f7:dc:68:2f:77:f9:ae: e0:73:4b:9a:db:83:ad:69:cc:8d:82:e3:33:79:70:4c:02:a8: b0:88:f7:47:ad:8a:6f:5c:4b:fe:d7:6f:05:e7:da:e9:e2:b0: fe:f9:61:cf:fa:40:d5:a7:bc:b5:81:db:88:e0:89:dd:6c:c8: 15:f4:f7:dd:35:d9:1c:2f:a9:c8:af:5a:2d:12:fb:ff:b4:c2: 99:e4:18:b9:a5:17:da:92:dd:2e:8e:97:9a:b0:b6:3c:05:73: 62:3a:22:ba:f2:a7:6a:b8:a4:69:cf:d6:52:98:ff:32:af:4f: 50:1f:68:ff:cd:e6:df:a9:a0:45:43:43:4d:ae:62:84:b7:a3: 21:6f:94:25:69:b6:a7:c9:6e:84:8b:85:fc:b5:2c:91:0e:bf: 2b:e7:c4:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjYwNTEzMDAyNTAxWhcNMjYwNTIwMDAyNTAxWjAYMRYwFAYD VQQDEw02YTAzYzRkZC1iZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPX6cNlSGshFX6Wf1PNmriwEPjbOF0xEaJheDHAjnaxbyiQDBY4Z2j0bPvn+ HkZUBil8RvKTEtCm9nO84RYwTn6Pp4spSqpTlKXmZ1qtNoN69D1Y/Kwl0Pg01Cv+ P1tj5QoaGO10ccpTH4Gs1nhyvNWFWqCwHPvLbc9FPExctTG5/N4qHb2ETehmmJvy al1goIg2cRdV/PbUE491osGUj0FkypvpU5ynnmzTc9EjMqVoYC/OFuRCdIVC5aEC qiy3xP7VYAyJrQB5dAFJ6PsqMP+eYr703SsYtP39vr0Vl/ntKYVSYUid+q0n7t5y YIN0mVQdc5+rNKXNrfpr7kfF9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFwm0G3D VIyVYpxXSqUQxzIFyOzHMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH7nErfBejZpp6hFj8P4r9Hc/pzXnFBNuoOS6Mrz19vXPpDfXQlxMetgajNiI QsCWgY6Y49my3psdcOdLDwoGsS/4FWebeJV+5g/1GEfI/hVY5VK/fxETwMdUUJXE AEGM/qrfnYf33Ggvd/mu4HNLmtuDrWnMjYLjM3lwTAKosIj3R62Kb1xL/tdvBefa 6eKw/vlhz/pA1ae8tYHbiOCJ3WzIFfT33TXZHC+pyK9aLRL7/7TCmeQYuaUX2pLd Lo6XmrC2PAVzYjoiuvKnarikac/WUpj/Mq9PUB9o/83m36mgRUNDTa5ihLejIW+U JWm2p8luhIuF/LUskQ6/K+fEag== -----END CERTIFICATE-----Generated at Wed May 13 09:46:07 2026 by rpki-client