$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: re+opBy6L3UfWRTohEbSvoq7XGy4BE2DyPImFC0cp8A= Subject key identifier: 12:01:CD:B6:2A:AB:8D:CD:9D:C5:C0:33:56:9C:0E:01:0A:15:8D:C6 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 01F3 Signing time: Wed 13 May 2026 03:18:09 +0000 Manifest this update: Wed 13 May 2026 03:18:09 +0000 Manifest next update: Wed 20 May 2026 03:18:09 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: xFBByx0bzIw7rvb24mTFNKKiabV0Jdj4ZIOChx2KlIo=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: KWX82VUSGhT9UsPkifLZyX4n6ROSHucaBgxHHGSJG/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:18:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: May 13 03:18:09 2026 GMT Not After : May 20 03:18:09 2026 GMT Subject: CN=6a03ed71-492c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f4:28:bc:de:9f:60:a7:ca:23:53:24:6e:37: 78:d4:6f:cc:b7:b1:93:4c:f9:c6:e6:ef:5e:90:2a: 96:5c:c3:21:4a:bb:b6:d5:27:67:71:ec:1b:4e:c6: 73:59:8d:0b:2c:71:50:25:3e:3c:46:70:e3:61:65: d4:4a:b6:7a:5d:da:0e:6c:8a:d9:c1:c3:c5:4a:ae: 70:5f:9a:30:a9:a2:b1:cc:34:6e:a5:83:9e:bd:c6: 28:74:93:24:fc:32:d4:a1:cb:70:a4:42:27:01:89: 24:83:14:d6:e3:0a:4d:68:bf:70:8c:b9:bf:bc:7a: 54:1c:ee:d5:a5:3f:99:e7:17:11:13:35:37:e7:ae: 9a:20:25:79:be:ca:06:14:30:60:72:3c:50:1b:d2: b2:4e:a8:09:f4:e5:22:20:cb:1c:f8:57:05:ba:3a: ab:b5:02:53:fa:18:84:2a:d1:a3:c0:de:d9:d4:99: a3:c2:8c:97:4a:f9:57:70:62:b9:31:c4:33:95:34: 89:42:56:07:64:2f:07:9f:af:6a:07:fd:2b:99:93: 32:55:af:23:8b:33:fd:48:fc:cc:a4:7f:0b:ab:d3: 21:76:07:e6:f0:21:12:32:6e:78:82:f1:5b:ef:04: 16:c4:42:f9:ad:51:c1:cd:c8:f3:a6:60:a2:3a:11: 93:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:01:CD:B6:2A:AB:8D:CD:9D:C5:C0:33:56:9C:0E:01:0A:15:8D:C6 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:6b:d7:57:39:62:56:2c:46:62:86:5d:8e:12:1e:a1:52:15: f8:b6:20:3e:db:1e:68:3c:2b:6a:14:5e:a6:a6:8c:2b:50:71: 2d:48:de:68:0d:12:a2:e7:54:e1:ae:2f:76:c0:2e:9e:fc:b1: 63:88:67:6b:c4:52:58:0a:87:27:e8:e1:8f:de:40:90:29:fc: f1:a6:e5:a4:63:7f:d0:5e:f9:7d:e9:4d:61:dd:84:17:7b:db: 4d:11:c4:21:db:e7:c3:de:f4:75:da:98:12:bc:5c:f9:c9:07: b9:33:1b:ad:35:58:c1:44:7d:a7:36:ff:2f:cb:29:7d:43:b3: ba:17:96:6b:c3:81:16:ee:4a:b0:0c:5c:8a:89:2d:56:f9:9f: 0c:f4:08:59:3a:68:e3:95:1f:5f:39:11:ce:0d:1e:7f:9c:ff: 3f:7a:a2:31:10:b3:d2:7c:b4:bc:0e:33:71:03:1e:3f:5f:c5: f6:93:35:0c:d2:06:b1:e4:35:ca:25:9e:1a:f4:3d:26:f7:b4: e9:a5:0f:34:f1:04:d2:6b:fc:41:41:4a:3e:78:6c:a7:c6:30: e3:9b:ce:0a:44:5b:c4:49:fb:5a:54:e2:c4:56:16:f5:2e:37: 37:80:f1:4f:54:a6:74:49:5e:a9:3a:df:84:4b:11:0d:a8:a7: 94:72:9b:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjYwNTEzMDMxODA5WhcNMjYwNTIwMDMxODA5WjAYMRYwFAYD VQQDEw02YTAzZWQ3MS00OTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovQovN6fYKfKI1Mkbjd41G/Mt7GTTPnG5u9ekCqWXMMhSru21SdncewbTsZz WY0LLHFQJT48RnDjYWXUSrZ6XdoObIrZwcPFSq5wX5owqaKxzDRupYOevcYodJMk /DLUoctwpEInAYkkgxTW4wpNaL9wjLm/vHpUHO7VpT+Z5xcREzU3566aICV5vsoG FDBgcjxQG9KyTqgJ9OUiIMsc+FcFujqrtQJT+hiEKtGjwN7Z1JmjwoyXSvlXcGK5 McQzlTSJQlYHZC8Hn69qB/0rmZMyVa8jizP9SPzMpH8Lq9Mhdgfm8CESMm54gvFb 7wQWxEL5rVHBzcjzpmCiOhGTEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBIBzbYq q43NncXAM1acDgEKFY3GMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG2vXVzliVixGYoZdjhIeoVIV+LYgPtseaDwrahRepqaMK1BxLUjeaA0SoudU 4a4vdsAunvyxY4hna8RSWAqHJ+jhj95AkCn88ablpGN/0F75felNYd2EF3vbTRHE Idvnw970ddqYErxc+ckHuTMbrTVYwUR9pzb/L8spfUOzuheWa8OBFu5KsAxciokt VvmfDPQIWTpo45UfXzkRzg0ef5z/P3qiMRCz0ny0vA4zcQMeP1/F9pM1DNIGseQ1 yiWeGvQ9Jve06aUPNPEE0mv8QUFKPnhsp8Yw45vOCkRbxEn7WlTixFYW9S43N4Dx T1SmdEleqTrfhEsRDainlHKbkQ== -----END CERTIFICATE-----Generated at Wed May 13 07:34:06 2026 by rpki-client