$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft File: km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json) Hash identifier: F04L3xDK97FvwfarZHvsRmRaUufzh4XmWaFV2EnSF3s= Subject key identifier: FF:5E:2A:EE:F9:CA:23:F1:90:BB:38:14:EC:06:FC:D8:97:79:D0:E3 Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft Manifest number: 0262 Signing time: Wed 13 May 2026 02:21:09 +0000 Manifest this update: Wed 13 May 2026 02:21:08 +0000 Manifest next update: Wed 20 May 2026 02:21:08 +0000 Files and hashes: 1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: jkJJU76wlZ/th6C5QQFJ7NRRM1jxYodg4mEDyTrrs2Y=) 2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: fY7nCOHqK93oVhC5DmscMwb888TwpZD1ZSvnmNHDxkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: May 13 02:21:08 2026 GMT Not After : May 20 02:21:08 2026 GMT Subject: CN=6a03e014-00ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bc:66:34:3a:7a:b4:da:46:6c:1b:21:3d:bf: b3:29:05:23:4b:2e:a5:e7:ce:a9:8f:57:5b:76:35: c5:71:8f:9d:66:fb:5c:d3:af:2f:4b:49:48:4a:3b: 36:ce:cf:d8:d1:8e:e4:73:9a:9c:eb:46:0b:c1:08: 87:ee:63:13:38:13:d9:cb:6b:bf:b8:15:6b:52:3d: 82:4a:80:f7:c5:63:25:c9:6a:75:01:46:e5:8e:7f: b8:3a:62:5f:46:96:c3:b1:26:ff:4c:95:32:f7:c0: d3:3c:0e:48:b2:2e:56:af:f1:81:6e:61:6e:bd:42: 15:56:17:45:fb:30:62:8e:71:c1:66:d6:60:8e:9f: 3b:28:78:4b:d8:ca:67:20:63:69:3a:eb:d6:d3:c4: 93:57:84:f7:21:f5:b8:48:90:73:3a:ef:f5:cf:cf: c3:0e:fb:f6:46:33:1d:65:5d:29:5a:67:c7:12:f0: fc:ed:e1:8e:d9:5b:ed:4e:ce:1f:25:da:dc:a5:3f: b7:27:56:f7:81:74:4b:43:84:63:c8:a4:2b:4c:0b: 37:91:0f:51:8a:44:1d:6e:01:72:28:81:9c:27:4a: 7c:bd:ab:2c:ca:93:aa:e2:dc:81:0c:f8:a1:12:b3: 9b:4f:05:25:4b:b9:f7:7c:91:65:ee:94:b6:47:e5: fb:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5E:2A:EE:F9:CA:23:F1:90:BB:38:14:EC:06:FC:D8:97:79:D0:E3 X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:68:ef:1f:39:82:2a:6a:55:96:e8:db:36:d6:b9:0c:00:af: 7b:9c:fe:a6:db:22:37:03:0c:3b:e3:f5:0c:eb:16:8b:61:d2: a8:82:39:13:a4:d8:4b:d9:38:6a:84:da:2e:ec:37:54:7c:ba: 92:4b:e4:32:67:86:ee:ec:ab:e9:9c:f1:53:80:d6:2e:db:e9: 59:4e:11:dc:b0:ff:26:10:cf:48:93:dc:e0:c3:4e:88:01:22: 2f:ec:aa:28:37:1b:e3:77:a7:db:53:e8:2d:7a:8a:18:6a:7e: ca:a9:83:93:04:60:9c:c7:4c:f4:17:51:ac:0a:cc:7f:b3:85: 80:46:d5:88:15:8a:85:00:cd:91:79:e2:85:57:e6:10:4d:be: 82:00:cf:6d:30:e8:48:c2:45:b3:13:f9:c2:24:7d:64:9c:bf: 1c:cd:46:e0:45:25:f3:d6:ec:13:4b:2c:09:fc:e1:de:c5:45: 5a:27:51:5e:84:7f:59:32:87:0d:a2:61:87:97:ea:6e:86:63: 53:dc:a9:66:45:8f:07:e7:0e:e2:28:60:86:f1:26:d3:70:94: ef:06:77:84:8b:ba:51:1a:f2:e6:bf:d5:11:3c:35:9e:42:72: 1f:31:64:8b:5d:b0:19:8d:50:44:3b:c4:f2:c3:56:98:d6:bc: cb:a3:99:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjYwNTEzMDIyMTA4WhcNMjYwNTIwMDIyMTA4WjAYMRYwFAYD VQQDEw02YTAzZTAxNC0wMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbxmNDp6tNpGbBshPb+zKQUjSy6l586pj1dbdjXFcY+dZvtc068vS0lISjs2 zs/Y0Y7kc5qc60YLwQiH7mMTOBPZy2u/uBVrUj2CSoD3xWMlyWp1AUbljn+4OmJf RpbDsSb/TJUy98DTPA5Isi5Wr/GBbmFuvUIVVhdF+zBijnHBZtZgjp87KHhL2Mpn IGNpOuvW08STV4T3IfW4SJBzOu/1z8/DDvv2RjMdZV0pWmfHEvD87eGO2VvtTs4f JdrcpT+3J1b3gXRLQ4RjyKQrTAs3kQ9RikQdbgFyKIGcJ0p8vassypOq4tyBDPih ErObTwUlS7n3fJFl7pS2R+X7xwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP9eKu75 yiPxkLs4FOwG/NiXedDjMB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkEwRS9EQkJFRDIwNkMwMDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5 ZGx1MEVpY29EQjhSaEc3aGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnmjvHzmCKmpVlujbNta5DACve5z+ptsiNwMMO+P1DOsWi2HSqII5E6TYS9k4 aoTaLuw3VHy6kkvkMmeG7uyr6ZzxU4DWLtvpWU4R3LD/JhDPSJPc4MNOiAEiL+yq KDcb43en21PoLXqKGGp+yqmDkwRgnMdM9BdRrArMf7OFgEbViBWKhQDNkXnihVfm EE2+ggDPbTDoSMJFsxP5wiR9ZJy/HM1G4EUl89bsE0ssCfzh3sVFWidRXoR/WTKH DaJhh5fqboZjU9ypZkWPB+cO4ihghvEm03CU7wZ3hIu6URry5r/VETw1nkJyHzFk i12wGY1QRDvE8sNWmNa8y6OZBg== -----END CERTIFICATE-----Generated at Wed May 13 15:40:44 2026 by rpki-client