$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: UpITvAMYPCG1wlJVkXtpkYqkB796L/RlZlxgdXMBmtE= Subject key identifier: A4:87:91:A9:D6:27:36:56:E3:0D:29:29:F0:5D:BC:9F:7F:59:BB:4B Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01FB Signing time: Mon 11 May 2026 03:11:11 +0000 Manifest this update: Mon 11 May 2026 03:11:10 +0000 Manifest next update: Mon 18 May 2026 03:11:10 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: EkM25cvWepvOm7xO6vHr33T1fMMt4YKzVFn0zMdXkZQ=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: CEGrzyVX/R9nXXUQAan2KcsnSM9ycrOqX5vVxIScejc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 03:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: May 11 03:11:10 2026 GMT Not After : May 18 03:11:10 2026 GMT Subject: CN=6a0148cf-91c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:57:b7:3a:85:9e:f7:bb:ad:34:dc:7f:74:dc: c4:32:eb:b3:11:81:19:5d:07:b0:94:2d:a1:56:a7: 3f:44:c8:d9:8d:80:ee:ab:9d:25:5e:73:a1:5b:d8: 77:af:ee:96:d0:55:44:55:2c:54:fe:09:ae:c9:5f: cc:68:f5:04:de:a3:66:af:e9:c9:95:ea:6b:c7:57: 73:4d:24:af:60:92:de:23:93:51:e3:a6:8b:25:21: 53:fb:1a:bf:64:0f:60:27:83:43:9f:d8:3c:30:f2: 2c:4a:bd:2d:af:64:d1:47:83:bf:27:a4:b9:a5:99: ac:50:b1:3f:1b:4f:07:25:83:05:cf:04:39:c4:13: 26:1b:eb:15:d6:b0:e9:c3:b5:a3:db:10:5d:96:26: b2:5a:91:7a:39:7c:8c:c9:fa:f5:46:2d:c9:c5:e1: 38:32:54:b0:ec:4e:e3:0d:4d:81:f5:f1:0b:54:ff: d0:db:6f:53:54:90:5e:e1:98:98:b9:3e:91:90:6c: 19:3c:d0:ed:9a:15:a3:54:52:2e:65:b3:a6:ae:07: 21:03:57:4c:53:96:76:97:f9:06:96:d3:e3:92:d1: 76:85:9e:a5:12:98:cc:0b:c9:85:c1:50:10:6c:3b: 38:3b:33:d9:68:99:6a:76:88:8e:72:ae:4c:a7:d1: 02:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:87:91:A9:D6:27:36:56:E3:0D:29:29:F0:5D:BC:9F:7F:59:BB:4B X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:5b:86:5c:1d:54:e2:99:be:23:b0:00:11:76:3a:58:80:72: 75:20:e4:c7:85:b6:67:c5:18:e1:77:fd:89:43:f9:5c:4a:9e: e1:84:b5:5a:1f:42:d6:2c:c7:c5:c0:6a:f0:f4:ff:3d:74:09: 2c:fd:2b:0b:18:a3:06:6e:16:56:54:19:38:70:a6:9e:6b:0f: ce:94:03:18:7a:cc:46:ff:fe:99:84:62:ff:9d:32:69:32:b4: 76:5c:64:77:94:f0:c8:7f:05:ae:01:21:e5:9e:80:9d:d8:27: d9:12:02:46:10:ba:32:c9:32:b9:82:62:c2:65:66:e2:72:a1: aa:33:c1:3f:30:a2:16:19:23:47:9d:be:e2:20:10:51:a9:27: c2:24:c5:43:74:7c:c1:df:cb:66:7a:96:7a:f3:cc:b3:10:97: 4d:ab:0d:52:fb:01:5d:36:3a:72:69:9a:e5:f1:47:4c:85:88: 46:45:04:80:a5:e7:ad:c4:a2:8a:20:97:75:a3:67:6d:d9:fc: 21:e0:81:8c:52:33:93:78:3f:8b:c9:10:c2:7d:8f:df:5d:62: 05:5a:7c:14:1a:54:b7:60:38:fe:e8:8b:59:ad:4f:20:76:6a: 16:0f:38:ca:b0:00:99:34:71:6c:86:5c:fa:13:14:7a:bb:5b: 46:84:d9:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjYwNTExMDMxMTEwWhcNMjYwNTE4MDMxMTEwWjAYMRYwFAYD VQQDEw02YTAxNDhjZi05MWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1e3OoWe97utNNx/dNzEMuuzEYEZXQewlC2hVqc/RMjZjYDuq50lXnOhW9h3 r+6W0FVEVSxU/gmuyV/MaPUE3qNmr+nJleprx1dzTSSvYJLeI5NR46aLJSFT+xq/ ZA9gJ4NDn9g8MPIsSr0tr2TRR4O/J6S5pZmsULE/G08HJYMFzwQ5xBMmG+sV1rDp w7Wj2xBdliayWpF6OXyMyfr1Ri3JxeE4MlSw7E7jDU2B9fELVP/Q229TVJBe4ZiY uT6RkGwZPNDtmhWjVFIuZbOmrgchA1dMU5Z2l/kGltPjktF2hZ6lEpjMC8mFwVAQ bDs4OzPZaJlqdoiOcq5Mp9ECAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKSHkanW JzZW4w0pKfBdvJ9/WbtLMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARVuGXB1U4pm+I7AAEXY6WIBydSDkx4W2Z8UY4Xf9iUP5XEqe4YS1Wh9C1izH xcBq8PT/PXQJLP0rCxijBm4WVlQZOHCmnmsPzpQDGHrMRv/+mYRi/50yaTK0dlxk d5TwyH8FrgEh5Z6Andgn2RICRhC6MskyuYJiwmVm4nKhqjPBPzCiFhkjR52+4iAQ UaknwiTFQ3R8wd/LZnqWevPMsxCXTasNUvsBXTY6cmma5fFHTIWIRkUEgKXnrcSi iiCXdaNnbdn8IeCBjFIzk3g/i8kQwn2P311iBVp8FBpUt2A4/uiLWa1PIHZqFg84 yrAAmTRxbIZc+hMUertbRoTZcg== -----END CERTIFICATE-----Generated at Wed May 13 01:20:58 2026 by rpki-client