$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: /GaHbSvYgqM9zZwh1VNuQ9zIznacWCkcVbZxTZzHyB4= Subject key identifier: 81:EB:8C:20:00:2E:5A:C4:10:63:FD:51:E0:DA:53:84:16:78:3C:8A Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 014C Signing time: Wed 13 May 2026 05:14:35 +0000 Manifest this update: Wed 13 May 2026 05:14:34 +0000 Manifest next update: Wed 20 May 2026 05:14:34 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: 8eDQSnz9jnaHf4n4Nm2cktFDVP+Y0EOOzdOwGgTIbyk=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: jP6TZWwRFPY1LK/E2kOV63Xfi0StNXGzAgbQFJN0A6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: May 13 05:14:34 2026 GMT Not After : May 20 05:14:34 2026 GMT Subject: CN=6a0408bb-9333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:26:cf:93:4f:9e:b5:65:f2:82:39:b1:2c:a4: ed:ef:ec:03:9d:a0:b3:7c:fd:01:d7:a4:ee:25:d6: 3e:05:ff:f4:18:53:e5:f6:d0:7c:36:eb:33:61:66: 52:11:9b:0b:d0:8a:d0:75:9b:5d:bf:a0:54:cf:fe: 9c:bf:a3:86:1a:e9:df:b9:ad:f9:0e:38:7b:37:d2: d0:81:2e:c6:66:4e:74:6e:9b:2c:0c:92:b7:88:e8: 7e:0e:63:a9:70:4c:aa:7a:db:c5:0d:4e:bf:b6:33: 25:d2:70:15:45:c8:fd:21:a5:a5:37:61:69:da:94: 1d:76:d0:93:a5:41:db:de:9b:08:ab:6c:69:76:ef: b5:b9:1a:48:84:dc:19:c0:3f:12:83:aa:de:b5:95: 9f:ba:9f:2d:04:93:a6:b1:ee:30:a4:05:7f:8c:5a: e5:5b:65:18:33:8c:f0:5b:57:cb:35:77:5b:ee:30: 6f:20:d1:9c:e3:90:9f:f7:e4:c0:ad:0a:27:e0:ba: 6f:4b:8d:b9:94:1e:c4:1c:5e:1a:ad:d3:8c:78:be: d4:a1:34:d4:36:8a:c8:1c:36:42:e1:7d:09:c1:21: c1:eb:eb:a3:8e:2d:fd:c9:ce:50:e7:7a:05:d1:5a: 74:b3:b1:e5:36:4e:fd:ca:18:97:54:7c:96:55:d2: 7c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:EB:8C:20:00:2E:5A:C4:10:63:FD:51:E0:DA:53:84:16:78:3C:8A X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:f1:dd:54:67:d4:b9:bd:90:82:79:44:45:68:9a:42:54:11: 48:3c:28:47:87:ee:54:46:ec:44:cc:27:35:47:86:62:ef:1d: aa:61:c3:a6:53:24:dd:f7:a8:86:cb:9d:f8:53:82:4b:a6:e8: d9:5a:f7:e0:84:9c:86:de:f7:71:8d:b5:85:b1:15:61:36:82: f2:b3:f6:3b:9d:33:26:36:96:1d:5a:0e:32:9c:23:b2:5d:d0: b0:39:1a:56:6a:ea:cc:62:54:3f:e1:5f:b5:31:ab:42:38:b9: 46:dc:c5:eb:bc:b2:d3:95:2e:96:c0:96:df:ed:ff:2c:ce:5e: 7b:11:5c:c2:fd:c1:ef:fa:f1:a7:d9:21:16:80:13:c4:3b:5d: 8e:db:43:0c:6f:12:20:fe:cb:b8:90:bc:6b:67:9d:99:7b:63: db:6f:e7:1c:66:d7:2c:ba:73:4a:d2:9b:58:d9:35:45:af:23: 13:fe:da:06:54:d3:79:55:d1:77:16:4c:84:bc:00:66:f2:5a: cf:4c:0b:75:7f:5f:09:a8:fd:58:7e:51:00:fa:b5:36:4b:6e: a3:86:ec:ff:81:94:2d:aa:ef:28:c9:74:21:8c:00:00:07:6e: 4f:46:6f:b8:23:3a:fa:ae:b3:82:f7:17:ef:90:e0:6a:42:ea: 30:f1:ba:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjYwNTEzMDUxNDM0WhcNMjYwNTIwMDUxNDM0WjAYMRYwFAYD VQQDEw02YTA0MDhiYi05MzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuybPk0+etWXygjmxLKTt7+wDnaCzfP0B16TuJdY+Bf/0GFPl9tB8NuszYWZS EZsL0IrQdZtdv6BUz/6cv6OGGunfua35Djh7N9LQgS7GZk50bpssDJK3iOh+DmOp cEyqetvFDU6/tjMl0nAVRcj9IaWlN2Fp2pQddtCTpUHb3psIq2xpdu+1uRpIhNwZ wD8Sg6retZWfup8tBJOmse4wpAV/jFrlW2UYM4zwW1fLNXdb7jBvINGc45Cf9+TA rQon4LpvS425lB7EHF4ardOMeL7UoTTUNorIHDZC4X0JwSHB6+ujji39yc5Q53oF 0Vp0s7HlNk79yhiXVHyWVdJ8twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIHrjCAA LlrEEGP9UeDaU4QWeDyKMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADfHdVGfUub2QgnlERWiaQlQRSDwoR4fuVEbsRMwnNUeGYu8dqmHDplMk3feo hsud+FOCS6bo2Vr34IScht73cY21hbEVYTaC8rP2O50zJjaWHVoOMpwjsl3QsDka VmrqzGJUP+FftTGrQji5RtzF67yy05UulsCW3+3/LM5eexFcwv3B7/rxp9khFoAT xDtdjttDDG8SIP7LuJC8a2edmXtj22/nHGbXLLpzStKbWNk1Ra8jE/7aBlTTeVXR dxZMhLwAZvJaz0wLdX9fCaj9WH5RAPq1Nktuo4bs/4GULarvKMl0IYwAAAduT0Zv uCM6+q6zgvcX75DgakLqMPG6zg== -----END CERTIFICATE-----Generated at Wed May 13 09:32:17 2026 by rpki-client