$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft File: KxUe1JZstlaQzZqoJiuKau0G5EM.mft (raw, json) Hash identifier: +IyVP11UEBNHuiA5VOF4OiKXUhi5sPRrTuHKt6vbTww= Subject key identifier: 18:EE:88:0E:84:D2:97:0A:33:80:DC:BF:23:04:7B:AD:B5:A0:6C:1E Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0831 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft Manifest number: 0810 Signing time: Thu 16 Apr 2026 21:04:00 +0000 Manifest this update: Thu 16 Apr 2026 21:04:00 +0000 Manifest next update: Thu 23 Apr 2026 21:04:00 +0000 Files and hashes: 1: KxUe1JZstlaQzZqoJiuKau0G5EM.crl (hash: 50VsH1l1W1IcsyFgc3aUw1kuXhYmazzEsx4z3AF83/E=) 2: FF7010DCAE9811F081180758C4F9AE02.roa (hash: m6dAjh3VRiywp2YYqFbpA9pqC5UWocmOlzdiWn/0Kkc=) 3: 8A01BCDC1DA811EBAFA5B44FC4F9AE02.roa (hash: azpIitGefSlvlMwJupckHpHUM74PuPNEm5zYnaQUVWk=) 4: 6F3FE776CF9511F09003FA4DC4F9AE02.roa (hash: rbytNq7zSMq3A/PgT/ftfqGJmoj9sr47JEvc0Ik+KVQ=) 5: 440FC47687C211EEA6A0667BC4F9AE02.roa (hash: OuNbUML34/9s/CXrZPGm/r79NOrwg5tKWUZilkojMKg=) 6: 6FA255F0CF9511F0BB07FA4DC4F9AE02.roa (hash: fvpqpUzd6orBmYsM2LQ9LVbe6tQGwosd6BH+YSEYAM0=) 7: C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa (hash: mlM1LcCow/OwFUOHCekedTzL1znm7NAJ6YdDLrO7EAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871, serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Apr 16 21:04:00 2026 GMT Not After : Apr 23 21:04:00 2026 GMT Subject: CN=69e14ec0-d701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b3:1a:e0:ac:56:0b:b5:e9:74:4a:67:ef:40: b1:40:4a:52:ae:61:2c:4a:c4:d7:1e:0a:05:8a:4e: bc:42:28:0e:ab:1b:a4:17:2a:f2:51:f9:cd:fc:45: 80:65:40:f3:71:05:19:93:40:27:95:b6:18:78:2a: aa:52:fd:dc:a4:19:23:9f:5b:0c:b4:b4:e2:fe:c4: 27:e0:e7:bc:2e:04:fd:b0:36:3f:61:3c:d6:59:fc: 2b:7d:e8:e3:11:3a:45:d5:f3:31:8f:d7:ff:75:1b: 38:25:71:91:b0:99:c8:f8:ff:7a:26:18:f2:40:0e: 70:d9:25:23:b9:11:96:8f:03:40:6c:77:f9:2d:a2: ff:d1:52:09:27:7b:54:3b:64:77:6b:6e:64:9e:9b: c6:c4:c3:3a:29:2b:6f:bc:54:c9:2c:00:6e:26:b6: d1:a6:20:a8:7b:f0:2a:9c:0e:4a:4e:26:57:73:be: c6:0d:58:24:c3:9a:3d:e6:44:73:13:83:db:b7:fb: 2d:85:62:d5:83:f6:96:5b:db:9e:a1:ca:67:bb:a8: f8:56:00:b9:d9:73:9b:b5:38:69:cd:10:59:96:61: ba:bc:a5:77:f8:9a:66:3c:4d:0e:d3:ce:52:29:e4: e9:69:89:29:aa:82:67:77:1a:89:fa:c5:6d:30:49: b5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EE:88:0E:84:D2:97:0A:33:80:DC:BF:23:04:7B:AD:B5:A0:6C:1E X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:14:7a:d6:2c:2e:f5:b7:27:94:77:e5:77:99:e4:d3:3a:c8: 0b:b6:d8:5d:4e:00:c5:3e:8e:df:a0:71:9d:65:32:63:c6:7c: aa:7e:c5:7e:91:28:eb:e8:0a:d7:ca:24:bf:ec:1c:9e:28:fb: 2b:3b:68:b1:71:9c:c8:7a:3b:bb:f5:d5:1d:15:00:a3:ed:57: f4:23:d7:0d:2d:eb:52:9e:6e:1d:18:3c:fa:f9:fe:f7:e2:c5: 9b:c5:ee:3a:c4:f0:5e:19:8b:be:3c:e6:02:8e:d6:58:dc:8c: c4:8c:38:fb:1d:f4:af:ab:fe:56:de:62:94:13:0d:9e:d1:3a: 46:e4:a4:35:1b:0e:7b:98:95:51:73:c1:7d:76:06:97:8d:18: c2:e2:b3:31:3f:32:99:50:5a:ef:09:a4:eb:2d:91:2b:4c:aa: b7:02:94:63:6b:fe:1e:4b:f4:e1:3d:13:f0:76:ca:81:3f:7f: de:4c:c1:de:f5:14:8e:b4:54:be:e8:c9:28:cf:10:b0:00:06: c4:cb:68:b5:11:a3:fd:07:50:30:a1:cd:f4:83:69:19:f9:34: 5a:ec:5f:fb:72:88:4d:3f:ae:a5:bf:09:ba:c3:3b:b8:e0:1c: 5d:70:02:e7:9f:a2:97:f0:4c:a9:d8:1f:d5:08:44:46:8f:bb: 5e:68:a8:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjYwNDE2MjEwNDAwWhcNMjYwNDIzMjEwNDAwWjAYMRYwFAYD VQQDEw02OWUxNGVjMC1kNzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbMa4KxWC7XpdEpn70CxQEpSrmEsSsTXHgoFik68QigOqxukFyryUfnN/EWA ZUDzcQUZk0AnlbYYeCqqUv3cpBkjn1sMtLTi/sQn4Oe8LgT9sDY/YTzWWfwrfejj ETpF1fMxj9f/dRs4JXGRsJnI+P96JhjyQA5w2SUjuRGWjwNAbHf5LaL/0VIJJ3tU O2R3a25knpvGxMM6KStvvFTJLABuJrbRpiCoe/AqnA5KTiZXc77GDVgkw5o95kRz E4Pbt/sthWLVg/aWW9ueocpnu6j4VgC52XObtThpzRBZlmG6vKV3+JpmPE0O085S KeTpaYkpqoJndxqJ+sVtMEm1NwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBjuiA6E 0pcKM4DcvyMEe621oGweMB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qjg3MS84QTJEQUJFMDFEQTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3Rs YVF6WnFvSml1S2F1MEc1RU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQhR61iwu9bcnlHfld5nk0zrIC7bYXU4AxT6O36BxnWUyY8Z8qn7FfpEo6+gK 18okv+wcnij7KztosXGcyHo7u/XVHRUAo+1X9CPXDS3rUp5uHRg8+vn+9+LFm8Xu OsTwXhmLvjzmAo7WWNyMxIw4+x30r6v+Vt5ilBMNntE6RuSkNRsOe5iVUXPBfXYG l40YwuKzMT8ymVBa7wmk6y2RK0yqtwKUY2v+Hkv04T0T8HbKgT9/3kzB3vUUjrRU vujJKM8QsAAGxMtotRGj/QdQMKHN9INpGfk0Wuxf+3KITT+upb8JusM7uOAcXXAC 55+il/BMqdgf1QhERo+7Xmiokg== -----END CERTIFICATE-----Generated at Fri Apr 17 12:04:38 2026 by rpki-client