$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: +k4+2yY3v3gSNjIt75CAcIAdM/uUZAeDR+nG7yblZiM= Subject key identifier: 4F:86:8E:B4:91:8E:FA:29:7D:E9:DA:19:EE:4B:CA:78:76:17:75:C9 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: DA Signing time: Wed 13 May 2026 06:47:07 +0000 Manifest this update: Wed 13 May 2026 06:47:06 +0000 Manifest next update: Wed 20 May 2026 06:47:06 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: lG+XB5IgcEddwcGvbTyWXL/5Y7N5IAT5pA/C/nnugjk=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: xg+5Kz8DfP64v+0K6uLKgS3hlywm1P1UwcX/Q9P2caM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: May 13 06:47:06 2026 GMT Not After : May 20 06:47:06 2026 GMT Subject: CN=6a041e6b-1164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ea:93:f0:44:1d:2a:0f:34:25:44:70:d5:bf: 28:c3:d6:57:42:3c:b1:a7:78:f5:86:a8:42:f6:8c: 74:9c:27:39:c2:cb:b5:c9:59:4e:41:27:f5:eb:d9: c3:02:7e:f7:76:13:81:0d:80:dc:e6:7f:98:05:33: 60:e7:89:1b:a7:93:95:85:6c:97:a0:68:f3:75:4b: 24:41:dd:9b:0a:e4:ef:10:52:d4:3e:16:05:30:20: 4c:98:78:ba:93:86:0b:8a:f2:8c:42:c4:65:24:53: f7:63:68:49:a4:da:df:7a:14:2a:ae:1d:ce:cc:dc: 23:a7:00:7d:9b:8c:cf:61:08:53:4c:31:64:cc:e2: c7:ab:80:4c:2d:01:b7:7d:f9:a6:e3:da:b1:8e:b1: df:a9:ff:aa:00:16:e4:29:48:a7:63:2a:0c:50:a9: b8:ab:38:fb:57:6e:5c:97:35:43:e2:92:bc:76:51: d1:c0:ef:a6:77:50:e3:24:fd:51:9e:01:98:66:cc: 68:91:dd:11:40:9d:fc:ec:c5:49:cc:04:9d:fb:32: 3e:6e:cb:e1:8f:f4:21:ca:53:b1:4e:ec:8e:de:c8: da:82:4c:00:84:b3:a8:07:9f:db:8d:54:1d:b8:0e: ee:8f:ea:0f:fe:31:ab:4a:4b:89:48:70:79:72:2c: 7f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:86:8E:B4:91:8E:FA:29:7D:E9:DA:19:EE:4B:CA:78:76:17:75:C9 X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:9c:73:2c:d1:ae:2e:34:14:fe:a0:1d:5d:1a:7b:4b:8d:48: b4:70:fb:57:1b:cc:6c:d5:97:76:e5:22:7a:dd:48:1d:82:63: e2:17:46:68:8e:29:e6:60:de:0e:b5:c6:39:13:1b:46:49:59: b3:a8:39:02:52:74:ed:99:7b:68:63:7f:7d:69:1b:83:12:3e: ac:54:02:bf:9c:e3:40:c8:dc:4a:91:6c:06:2d:1c:ed:ad:f4: da:9c:9a:aa:63:1c:85:ce:e3:2e:bc:24:dc:c5:90:23:43:be: e4:d4:93:ef:17:5f:58:90:17:cb:5e:fe:79:c3:f3:e8:7f:43: 59:9e:c2:64:70:d5:6f:e7:b7:b0:85:f1:8c:d5:b0:1d:a6:8d: 20:12:e0:80:55:14:30:cc:12:99:9d:cc:6f:51:d4:ea:1f:d6: 84:96:4f:43:27:22:17:69:29:e0:e0:b2:9f:cf:60:63:b9:55: 18:7a:ae:56:06:36:76:bc:22:67:93:af:93:04:c3:d2:46:49: a4:da:64:04:db:40:63:0b:bf:ab:e9:eb:a6:69:fd:5d:1a:71: 03:9e:fb:25:03:f7:8f:ac:93:c2:6b:09:2e:83:79:c4:3c:c7: 50:0d:ad:b1:c3:a8:3e:9d:7e:27:56:3e:77:c2:16:12:78:02: 54:90:2e:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyODcxMTAvBgNVBAUTKDJBNDVBNDFENjBFMkYxMDREM0REMzlDODZGMTRCQzU5 MDA4ODNGNEIwHhcNMjYwNTEzMDY0NzA2WhcNMjYwNTIwMDY0NzA2WjAYMRYwFAYD VQQDEw02YTA0MWU2Yi0xMTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uqT8EQdKg80JURw1b8ow9ZXQjyxp3j1hqhC9ox0nCc5wsu1yVlOQSf169nD An73dhOBDYDc5n+YBTNg54kbp5OVhWyXoGjzdUskQd2bCuTvEFLUPhYFMCBMmHi6 k4YLivKMQsRlJFP3Y2hJpNrfehQqrh3OzNwjpwB9m4zPYQhTTDFkzOLHq4BMLQG3 ffmm49qxjrHfqf+qABbkKUinYyoMUKm4qzj7V25clzVD4pK8dlHRwO+md1DjJP1R ngGYZsxokd0RQJ387MVJzASd+zI+bsvhj/QhylOxTuyO3sjagkwAhLOoB5/bjVQd uA7uj+oP/jGrSkuJSHB5cix/MQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE+GjrSR jvopfenaGe5Lynh2F3XJMB8GA1UdIwQYMBaAFCpFpB1g4vEE0905yG8UvFkAiD9L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI4Ny8zNzI3OEMxNjA0 NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThRVFQzVG5JYnhTOFdRQ0lQ MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI4Ny8zNzI3OEMxNjA0NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThR VFQzVG5JYnhTOFdRQ0lQMHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbJxzLNGuLjQU/qAdXRp7S41ItHD7VxvMbNWXduUiet1IHYJj4hdGaI4p5mDe DrXGORMbRklZs6g5AlJ07Zl7aGN/fWkbgxI+rFQCv5zjQMjcSpFsBi0c7a302pya qmMchc7jLrwk3MWQI0O+5NST7xdfWJAXy17+ecPz6H9DWZ7CZHDVb+e3sIXxjNWw HaaNIBLggFUUMMwSmZ3Mb1HU6h/WhJZPQyciF2kp4OCyn89gY7lVGHquVgY2drwi Z5OvkwTD0kZJpNpkBNtAYwu/q+nrpmn9XRpxA577JQP3j6yTwmsJLoN5xDzHUA2t scOoPp1+J1Y+d8IWEngCVJAukw== -----END CERTIFICATE-----Generated at Wed May 13 09:58:17 2026 by rpki-client