$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: oi3MEnnprH5qIY3KjZYpAKnWnbNCYQq4xDWD1k0onmo= Subject key identifier: 69:F2:7A:12:4E:08:37:A2:E2:55:15:A2:64:FE:5E:DC:69:A0:A8:87 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 10BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 10A9 Signing time: Tue 12 May 2026 17:22:04 +0000 Manifest this update: Tue 12 May 2026 17:22:03 +0000 Manifest next update: Tue 19 May 2026 17:22:03 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: rALhCQw4xS9MGQuKjxvVP6GjWpcfKrlhSnHCWUkE0to=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: xjuxHTm+G9he/JFBNF/J7ScezC0X5PCaznrRtGeATtQ=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: vMIdusdjtj9hlcGq2gI+hsj/mLp2lRpI2Yrz/QIdsz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:22:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4286 (0x10be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: May 12 17:22:03 2026 GMT Not After : May 19 17:22:03 2026 GMT Subject: CN=6a0361bc-9dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:04:97:e4:c7:91:cb:10:44:2c:c0:e6:47:45: aa:5e:62:19:bf:81:db:7e:24:b1:af:23:50:72:4e: 9d:95:73:62:7d:af:38:51:c3:49:7b:a1:d8:ea:72: 73:9a:f1:0d:8b:ee:b0:0d:6f:af:bc:dd:01:ed:17: 4e:c5:02:b6:d9:5e:1c:e7:a8:87:e8:5d:6c:99:cc: 90:06:15:8b:fa:30:41:2b:f7:4a:3e:d6:41:b8:ef: 60:23:52:70:26:39:60:b0:e0:4b:cd:19:74:b7:23: a3:ff:25:96:6d:8f:87:ec:23:c9:43:32:a8:08:6d: b6:15:51:e9:c3:ad:a7:60:37:45:23:e4:57:de:82: 54:70:33:2e:f0:4d:4c:dc:8d:e2:69:cb:bd:9c:39: 5a:ba:75:fe:ed:12:95:20:3e:ba:c1:5f:1a:da:96: 6d:ce:5f:f5:78:df:0d:28:aa:9b:4e:19:ed:a7:c1: 68:a5:ad:43:d2:ba:2a:6d:29:ff:35:08:4e:a2:c6: f9:5b:69:c3:ac:f1:76:8f:c2:eb:60:63:7f:81:a4: 86:30:81:2c:d3:79:91:f5:1b:14:35:fd:a8:da:8d: 25:c8:4d:97:6f:23:05:e3:f2:00:96:bf:28:76:b7: 1f:21:b9:4b:37:93:72:97:26:bb:72:c2:52:72:48: 87:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F2:7A:12:4E:08:37:A2:E2:55:15:A2:64:FE:5E:DC:69:A0:A8:87 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:54:3b:2c:b8:00:06:94:b3:94:b1:18:d4:c8:4d:0b:b4:f6: 20:15:20:4b:d7:4a:6c:fc:10:cd:a5:f2:11:ea:d7:e4:c3:30: 0e:71:7f:ec:0c:09:16:b9:0d:b9:08:4d:44:cc:0d:74:e8:3c: 87:5f:74:6c:f4:2b:e7:04:77:f3:16:32:f1:dc:35:ef:8d:cd: 5f:8f:a1:1d:da:f2:aa:c1:57:2f:f1:ec:c4:68:48:63:ce:c2: d8:de:0a:8e:9a:ce:7c:4c:a7:14:1f:b6:9e:40:6e:8f:6d:8e: 06:5f:0f:40:54:72:72:cd:f1:28:75:7c:e8:cb:72:9b:53:40: a8:32:a0:2b:0d:38:5b:c6:36:bc:92:df:7c:55:8b:5e:59:f6: e1:f6:99:d5:42:ed:31:a2:f8:15:00:47:0c:8f:9c:80:4b:b7: 36:1e:d6:9e:1c:4c:f5:a7:19:33:92:97:3e:8d:96:f3:93:ba: c1:c7:9b:3a:59:38:6f:a5:c1:78:ed:2c:3a:ac:4b:ac:e7:20: 78:4a:2d:0c:06:5e:69:9f:6e:1b:bd:54:4f:2d:e0:77:da:70: 52:de:2b:d7:56:c9:ba:bf:33:ca:56:93:33:84:ff:e2:39:62: e6:05:41:63:72:0b:ae:49:29:6b:eb:dc:9b:ba:f1:21:5f:d3: 74:39:39:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjYwNTEyMTcyMjAzWhcNMjYwNTE5MTcyMjAzWjAYMRYwFAYD VQQDEw02YTAzNjFiYy05ZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApASX5MeRyxBELMDmR0WqXmIZv4HbfiSxryNQck6dlXNifa84UcNJe6HY6nJz mvENi+6wDW+vvN0B7RdOxQK22V4c56iH6F1smcyQBhWL+jBBK/dKPtZBuO9gI1Jw JjlgsOBLzRl0tyOj/yWWbY+H7CPJQzKoCG22FVHpw62nYDdFI+RX3oJUcDMu8E1M 3I3iacu9nDlaunX+7RKVID66wV8a2pZtzl/1eN8NKKqbThntp8Fopa1D0roqbSn/ NQhOosb5W2nDrPF2j8LrYGN/gaSGMIEs03mR9RsUNf2o2o0lyE2XbyMF4/IAlr8o drcfIblLN5Nylya7csJSckiHJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGnyehJO CDei4lUVomT+XtxpoKiHMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ1Q7LLgABpSzlLEY1MhNC7T2IBUgS9dKbPwQzaXyEerX5MMwDnF/7AwJFrkN uQhNRMwNdOg8h190bPQr5wR38xYy8dw1743NX4+hHdryqsFXL/HsxGhIY87C2N4K jprOfEynFB+2nkBuj22OBl8PQFRycs3xKHV86Mtym1NAqDKgKw04W8Y2vJLffFWL Xln24faZ1ULtMaL4FQBHDI+cgEu3Nh7WnhxM9acZM5KXPo2W85O6wcebOlk4b6XB eO0sOqxLrOcgeEotDAZeaZ9uG71UTy3gd9pwUt4r11bJur8zylaTM4T/4jli5gVB Y3ILrkkpa+vcm7rxIV/TdDk5Zw== -----END CERTIFICATE-----Generated at Wed May 13 11:29:06 2026 by rpki-client