$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: sT1kLXytKjyxFjadEW0zameGP88OIDzA82MHfEegNCQ= Subject key identifier: B6:E6:C4:9E:97:66:5F:A4:04:D6:DD:DE:75:82:27:3A:76:AB:14:22 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0F76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0F12 Signing time: Tue 12 May 2026 17:42:28 +0000 Manifest this update: Tue 12 May 2026 17:42:28 +0000 Manifest next update: Tue 19 May 2026 17:42:28 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: YoX7phHy1BEdRoU/S8WmjLcTzMSIHmsY5nG+EA7ThSc=) 2: 10E905682CCE11F1BB1925E192833773.roa (hash: 6g6Ja4w+RYbHzuKLTfgElgeDFmZnmZ9tKzWcakJqqZs=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: rIqL842ksTXKO2fhExD42Yq0dnrl1cNwx4ESowKkH4A=) 4: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: g+9ZIN0bzKl4hPUjZROdg1CsqMAMZorZF/Wv0UBIawM=) 5: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: j5kN5uvsFGRLFFFzFP46xJ6l0wo2CCqq8dwowySMLUk=) 6: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: KOAlra/c7OfhaqRuBqqmBdCQXMOimlFzYXSJ4DGlkSM=) 7: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: yBAKdOeuYpOHwpfvu2EJBrKJc+IZbXKkxfMi4yfRU/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3958 (0xf76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: May 12 17:42:28 2026 GMT Not After : May 19 17:42:28 2026 GMT Subject: CN=6a036684-e52c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:3b:5f:81:70:2c:ee:ee:cc:8f:a0:c7:8f: 9a:28:96:cd:c2:ce:2f:e1:2a:fd:d4:c4:c6:08:6a: fe:5d:8c:ce:40:ed:5e:4b:26:e9:33:8f:36:bd:75: e4:e9:90:85:9f:bf:2d:d5:73:cf:08:86:33:b7:51: 92:09:10:5b:bc:ac:76:c0:11:a2:b4:e0:04:1f:0e: c1:ac:5c:9b:45:3d:4c:9b:70:6d:d5:07:8d:80:6f: db:74:44:4d:3e:5a:bb:ba:31:bb:35:60:24:96:49: 36:b6:ae:c0:99:7a:c8:c2:5c:22:cd:9f:a9:a8:82: 5e:5f:e5:9a:fd:9c:b5:d9:83:3b:17:4e:ab:cb:ce: c3:f1:ce:d7:20:c7:64:a6:7a:9d:fc:9e:5c:18:8b: 59:50:53:9a:40:eb:eb:e9:9b:d9:28:3c:bc:83:2f: b5:43:fc:80:a5:25:1f:0f:fd:b7:63:a8:40:98:31: 15:45:5c:48:dd:f1:4c:14:c4:f5:ab:b2:be:fb:40: bb:fe:bb:95:7e:e2:fb:ff:a2:84:7b:4d:75:af:a5: cb:f1:ce:b9:af:44:a9:a7:7d:89:79:6b:14:6b:5e: df:af:a7:0b:3e:35:0e:3d:db:f1:d1:cf:ab:20:36: ad:a2:f8:7a:2f:ac:32:fa:1f:32:76:8a:c1:44:dd: c2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E6:C4:9E:97:66:5F:A4:04:D6:DD:DE:75:82:27:3A:76:AB:14:22 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e2:ec:93:2c:8a:6b:01:07:8f:a9:9c:d8:d4:6b:2f:34:bc: 0c:de:89:31:41:a7:0f:8f:60:61:17:ef:bb:4d:7f:5f:69:52: 49:e6:80:a7:cc:ca:a2:c7:6a:29:cb:e9:de:0a:28:88:b9:6b: 18:88:df:34:f7:f6:93:c4:0c:e4:8f:a5:c8:ca:97:91:42:b9: bb:0f:58:03:a0:4f:27:85:e7:04:90:25:39:de:4b:20:d4:21: cf:6d:d6:1e:84:45:4c:e2:fe:2e:70:8f:28:08:5c:9d:d7:19: 2a:b7:bf:0f:00:28:e1:80:22:e3:59:70:8c:b2:25:0f:9e:03: 92:46:92:17:98:42:03:84:11:cd:69:2b:0f:da:6e:f7:a1:1c: ec:7b:08:a3:0f:f7:7b:bf:12:0b:30:24:ab:44:6a:95:63:43: 33:40:cd:cd:f3:50:76:30:71:1c:dc:00:26:f1:e5:e3:81:f5: fc:66:8a:1c:42:fb:71:33:45:6c:1f:9f:b4:e3:0a:ea:6d:83: 33:00:9b:55:76:34:0a:3e:8f:72:b5:36:e0:72:bd:12:d9:25: 62:c2:5c:79:74:5c:59:ec:b2:6e:72:fc:a7:b0:56:ee:ee:9e: 60:bd:25:51:90:d5:a6:55:19:06:06:f8:a0:7c:a1:8a:76:65: 53:f8:9c:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjYwNTEyMTc0MjI4WhcNMjYwNTE5MTc0MjI4WjAYMRYwFAYD VQQDEw02YTAzNjY4NC1lNTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDs7X4FwLO7uzI+gx4+aKJbNws4v4Sr91MTGCGr+XYzOQO1eSybpM482vXXk 6ZCFn78t1XPPCIYzt1GSCRBbvKx2wBGitOAEHw7BrFybRT1Mm3Bt1QeNgG/bdERN Plq7ujG7NWAklkk2tq7AmXrIwlwizZ+pqIJeX+Wa/Zy12YM7F06ry87D8c7XIMdk pnqd/J5cGItZUFOaQOvr6ZvZKDy8gy+1Q/yApSUfD/23Y6hAmDEVRVxI3fFMFMT1 q7K++0C7/ruVfuL7/6KEe011r6XL8c65r0Spp32JeWsUa17fr6cLPjUOPdvx0c+r IDatovh6L6wy+h8ydorBRN3CuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLbmxJ6X Zl+kBNbd3nWCJzp2qxQiMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQeLskyyKawEHj6mc2NRrLzS8DN6JMUGnD49gYRfvu01/X2lSSeaAp8zKosdq Kcvp3gooiLlrGIjfNPf2k8QM5I+lyMqXkUK5uw9YA6BPJ4XnBJAlOd5LINQhz23W HoRFTOL+LnCPKAhcndcZKre/DwAo4YAi41lwjLIlD54DkkaSF5hCA4QRzWkrD9pu 96Ec7HsIow/3e78SCzAkq0RqlWNDM0DNzfNQdjBxHNwAJvHl44H1/GaKHEL7cTNF bB+ftOMK6m2DMwCbVXY0Cj6PcrU24HK9EtklYsJceXRcWeyybnL8p7BW7u6eYL0l UZDVplUZBgb4oHyhinZlU/iciw== -----END CERTIFICATE-----Generated at Wed May 13 15:35:28 2026 by rpki-client