$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: wyX6oy9glY73WgwBvUtb7AvxpTtNKbILUUJgTQysrfQ= Subject key identifier: D7:02:10:D3:81:04:F2:33:51:0D:DB:9B:3E:A0:AE:97:EB:26:30:69 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 013D Signing time: Mon 11 May 2026 05:29:00 +0000 Manifest this update: Mon 11 May 2026 05:28:59 +0000 Manifest next update: Mon 18 May 2026 05:28:59 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: yzqp4N9I5mb1xC52/hpeMla3DUzmUZA2NwJ0w3T6b1U=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: 1xxchiebCxLNftly6au7Pkd2xXnWXWVrUcEG++FarVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: May 11 05:28:59 2026 GMT Not After : May 18 05:28:59 2026 GMT Subject: CN=6a01691b-cd62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:df:19:ea:71:ba:63:47:90:a8:74:c9:2d:c3: 17:94:3a:e9:be:01:72:34:f8:03:ed:b3:e7:0b:12: a6:7f:9b:92:31:af:c0:11:41:53:c8:c9:dd:87:30: 49:a0:5a:21:71:3e:0b:33:d0:5b:3b:de:f2:c5:28: 46:fa:ca:ac:7c:d6:8f:8c:cd:2c:95:20:fe:ae:08: 2f:97:5a:16:f8:77:3a:0d:b8:e3:c4:a6:18:95:1a: 9e:75:64:74:16:1a:27:8f:11:99:54:75:00:11:be: 26:a0:ff:ed:3d:53:93:de:aa:9b:94:b7:05:b2:e7: 57:59:be:8c:f9:e7:68:29:ca:83:f7:6d:10:60:f2: bb:f5:48:07:d0:46:75:bb:1e:a2:e3:47:8b:f4:a7: b0:a7:77:85:b6:69:87:2e:b4:07:82:3b:a9:07:c5: 4e:db:af:06:95:b5:c3:32:c7:94:5f:cf:05:1d:c2: 59:c3:87:eb:6e:53:95:ba:e2:cf:db:29:e4:51:45: 27:1f:ee:5c:aa:93:40:f6:c6:ba:2c:a6:67:b3:aa: 64:9a:e6:78:05:11:a5:4e:23:27:b1:37:3f:1e:5c: 83:bc:fb:00:18:1e:87:1d:68:06:76:e4:52:99:92: 87:40:84:20:83:c4:22:ab:79:f4:b0:7e:26:e6:b5: de:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:02:10:D3:81:04:F2:33:51:0D:DB:9B:3E:A0:AE:97:EB:26:30:69 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:d7:cb:e2:c8:12:94:ed:bf:5b:3f:07:6f:4a:94:64:ba:f5: 36:02:ea:93:8f:15:c4:60:74:43:e9:2a:ec:02:4c:b4:33:cb: 65:17:b3:48:75:34:33:bf:5f:de:1b:b6:09:ec:f8:58:2e:1e: cb:56:82:00:4c:62:bb:da:41:ff:1f:42:80:24:10:1c:d8:3f: da:dc:d0:e9:f3:8d:c9:36:9d:0e:61:f1:60:e3:02:a2:de:43: af:03:93:58:8d:24:5b:2f:3c:35:89:27:48:21:56:f9:77:90: 4c:ec:2c:91:c5:51:37:61:69:b5:bb:b2:38:88:e7:9b:29:07: db:b9:37:e2:53:52:04:a2:a6:48:ab:14:b8:3e:7b:38:12:c0: f0:8e:e5:0b:95:0c:53:5e:02:6c:3e:05:4e:df:28:ee:e1:f0: cf:0b:35:1b:4c:af:6f:78:d2:33:be:c3:18:31:39:b2:80:5e: 63:55:f9:33:d2:3d:55:77:1c:3c:46:0c:4a:9a:df:fd:4b:7b: 27:07:10:b2:13:85:27:7e:a4:dd:f2:57:ce:a2:44:db:d3:87: 2c:f8:86:22:ca:20:86:5d:c8:9e:59:3c:7d:13:35:aa:c6:5f: cf:80:12:10:63:5c:18:b7:4f:a3:39:72:45:e7:d8:a7:a8:6b: 97:51:b4:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjYwNTExMDUyODU5WhcNMjYwNTE4MDUyODU5WjAYMRYwFAYD VQQDEw02YTAxNjkxYi1jZDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt98Z6nG6Y0eQqHTJLcMXlDrpvgFyNPgD7bPnCxKmf5uSMa/AEUFTyMndhzBJ oFohcT4LM9BbO97yxShG+sqsfNaPjM0slSD+rggvl1oW+Hc6DbjjxKYYlRqedWR0 FhonjxGZVHUAEb4moP/tPVOT3qqblLcFsudXWb6M+edoKcqD920QYPK79UgH0EZ1 ux6i40eL9Kewp3eFtmmHLrQHgjupB8VO268GlbXDMseUX88FHcJZw4frblOVuuLP 2ynkUUUnH+5cqpNA9sa6LKZns6pkmuZ4BRGlTiMnsTc/HlyDvPsAGB6HHWgGduRS mZKHQIQgg8Qiq3n0sH4m5rXeLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNcCENOB BPIzUQ3bmz6grpfrJjBpMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHtfL4sgSlO2/Wz8Hb0qUZLr1NgLqk48VxGB0Q+kq7AJMtDPLZRezSHU0M79f 3hu2Cez4WC4ey1aCAExiu9pB/x9CgCQQHNg/2tzQ6fONyTadDmHxYOMCot5DrwOT WI0kWy88NYknSCFW+XeQTOwskcVRN2FptbuyOIjnmykH27k34lNSBKKmSKsUuD57 OBLA8I7lC5UMU14CbD4FTt8o7uHwzws1G0yvb3jSM77DGDE5soBeY1X5M9I9VXcc PEYMSprf/Ut7JwcQshOFJ36k3fJXzqJE29OHLPiGIsoghl3Inlk8fRM1qsZfz4AS EGNcGLdPozlyRefYp6hrl1G0KQ== -----END CERTIFICATE-----Generated at Wed May 13 05:23:57 2026 by rpki-client