$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: rDqNxBqz5qgevlt3HJearGf41b1rWcAAeIihdAa0kBw= Subject key identifier: 0B:54:AC:05:16:11:C1:C5:A1:D2:26:60:B4:95:3F:98:66:84:FB:CC Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 040E Signing time: Wed 13 May 2026 00:31:44 +0000 Manifest this update: Wed 13 May 2026 00:31:44 +0000 Manifest next update: Wed 20 May 2026 00:31:44 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: e/mCpqOiKkryTXiqK+drla3rN/TGFmib77StPCJSVTo=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: 9Mz8rV54HoMelrPRHK31KXuQst4w6EzFVX+5Qn5V6r8=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: tR+5MDUW4TOJVjv12UKHch7zSjULR/5+u2MVA1fbHas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: May 13 00:31:44 2026 GMT Not After : May 20 00:31:44 2026 GMT Subject: CN=6a03c670-4041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:01:da:49:32:8a:a0:7f:7f:f9:78:67:fd:9b: 9a:30:51:0a:f6:ac:f3:83:ca:01:51:ff:57:ea:46: d1:a1:bf:e2:d1:ad:c6:80:42:64:75:43:b2:ca:a1: e5:92:8c:81:65:c7:05:a1:c4:ef:a6:c9:a7:7b:d0: 38:55:0a:46:50:c4:73:54:e8:cd:b7:a9:a8:1c:2d: 82:41:e6:6d:87:c1:ff:b1:b2:bc:3f:68:8e:5c:89: e4:65:b3:76:ea:91:94:87:b3:4c:6a:b0:e6:66:21: 2d:de:c8:0a:2a:32:93:e9:05:50:52:11:2b:af:76: bc:90:21:43:db:77:6f:48:7d:bf:63:5d:44:26:4b: e4:a7:7a:01:4b:ab:48:4e:12:e6:20:06:52:1a:a7: 7a:cd:f8:a3:f0:21:92:82:34:80:2c:f6:c1:c7:1f: df:ea:34:e0:f7:7c:15:14:35:39:b8:8e:6b:d0:c8: 19:ca:3e:71:1a:69:78:80:8c:74:fd:73:f7:5f:29: d7:57:99:95:96:99:3b:5b:c0:45:5e:33:c2:4b:67: 8c:87:97:80:a9:83:84:f5:0b:2f:1a:aa:2a:60:72: 66:ad:cd:1a:16:7b:23:09:fb:76:c3:02:ff:e9:f4: 0c:48:1f:ea:20:7f:ee:a4:da:b8:dd:35:db:92:7a: e9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:54:AC:05:16:11:C1:C5:A1:D2:26:60:B4:95:3F:98:66:84:FB:CC X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:09:ff:9c:ba:ff:20:f5:85:dd:cd:cf:e7:b3:14:24:ca:9e: c9:03:3f:e2:a7:6f:59:4c:a1:04:26:ed:f3:e5:d9:c0:67:ce: 72:29:01:98:a2:ad:fd:59:6a:74:18:8c:40:8f:48:38:d7:25: 69:56:9b:bf:99:9a:2b:4a:15:18:59:c8:b3:e2:fe:88:33:10: 9f:f5:6b:15:47:72:dc:40:6c:dd:27:bf:9a:92:f9:9a:17:8a: 7f:a4:df:cd:3f:c9:6b:04:6c:4b:bb:b1:9e:da:a6:7d:81:20: 9f:c3:d2:c4:a2:fc:f1:1e:d6:c7:2e:76:b8:46:1b:21:c2:72: 72:f2:41:a7:c4:88:b6:41:76:5b:09:91:5c:25:79:06:93:33: 09:fc:3c:75:1f:3d:7d:da:0a:08:8c:b6:b9:89:6d:8b:fa:cb: 8e:bb:b0:88:84:4f:06:15:ff:ab:4c:da:8e:9f:68:6b:35:d4: d5:55:72:e1:bb:ba:ab:88:b1:a1:b9:19:8f:6f:9d:76:b5:75: b8:1b:37:e8:ca:d4:c9:da:04:36:09:b7:44:f3:0a:3d:f6:d9: 41:1d:b9:94:94:f1:16:5a:f3:63:64:f6:0c:36:5b:bf:b4:eb: 89:63:d2:b1:a2:6c:c1:a2:1f:bb:bc:30:5b:75:ec:2e:55:0a: f0:81:19:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjYwNTEzMDAzMTQ0WhcNMjYwNTIwMDAzMTQ0WjAYMRYwFAYD VQQDEw02YTAzYzY3MC00MDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgHaSTKKoH9/+Xhn/ZuaMFEK9qzzg8oBUf9X6kbRob/i0a3GgEJkdUOyyqHl koyBZccFocTvpsmne9A4VQpGUMRzVOjNt6moHC2CQeZth8H/sbK8P2iOXInkZbN2 6pGUh7NMarDmZiEt3sgKKjKT6QVQUhErr3a8kCFD23dvSH2/Y11EJkvkp3oBS6tI ThLmIAZSGqd6zfij8CGSgjSALPbBxx/f6jTg93wVFDU5uI5r0MgZyj5xGml4gIx0 /XP3XynXV5mVlpk7W8BFXjPCS2eMh5eAqYOE9QsvGqoqYHJmrc0aFnsjCft2wwL/ 6fQMSB/qIH/upNq43TXbknrpFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAtUrAUW EcHFodImYLSVP5hmhPvMMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFwn/nLr/IPWF3c3P57MUJMqeyQM/4qdvWUyhBCbt8+XZwGfOcikBmKKt/Vlq dBiMQI9IONclaVabv5maK0oVGFnIs+L+iDMQn/VrFUdy3EBs3Se/mpL5mheKf6Tf zT/JawRsS7uxntqmfYEgn8PSxKL88R7Wxy52uEYbIcJycvJBp8SItkF2WwmRXCV5 BpMzCfw8dR89fdoKCIy2uYlti/rLjruwiIRPBhX/q0zajp9oazXU1VVy4bu6q4ix obkZj2+ddrV1uBs36MrUydoENgm3RPMKPfbZQR25lJTxFlrzY2T2DDZbv7TriWPS saJswaIfu7wwW3XsLlUK8IEZ+A== -----END CERTIFICATE-----Generated at Wed May 13 13:35:07 2026 by rpki-client