$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: y0gCD0xcgT+3jaStlyibY8MntGm69yZMTDaSv4Tef6w= Subject key identifier: D1:35:73:C1:BE:C6:AC:E8:CB:D7:AB:D4:CB:5B:2F:76:5E:2D:97:DD Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0AC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0AB7 Signing time: Thu 16 Apr 2026 19:23:10 +0000 Manifest this update: Thu 16 Apr 2026 19:23:09 +0000 Manifest next update: Thu 23 Apr 2026 19:23:09 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: 9wcj2hjT6wgai95oreYz1ubXMJ2sya+yApKokZRc2Nc=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: gSKNogEshZnmN/3zaUCV8zHvFUQUbigi4NIpUM9EKFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2753 (0xac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Apr 16 19:23:09 2026 GMT Not After : Apr 23 19:23:09 2026 GMT Subject: CN=69e1371d-1dcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:51:05:a3:27:b0:c0:32:2d:50:d7:a9:12:2f: 3b:3a:99:95:0e:d7:dc:b1:eb:ef:3a:1f:eb:57:ab: 3a:dc:8c:c0:63:68:64:f1:99:c6:81:a0:a0:22:b8: ac:0e:1f:62:0c:51:11:d4:5b:7b:3c:ee:e2:d6:cf: 6b:c2:21:55:5e:31:10:4a:da:de:9c:af:dc:8e:16: cc:fa:cf:3e:0f:e4:e5:67:34:3f:bd:05:49:64:fa: b5:d4:ec:57:bf:da:d6:b5:fb:96:ad:97:9b:9d:44: 52:98:2b:3a:5c:f3:0d:07:69:0e:30:f5:f8:39:20: 5b:d9:76:9b:ac:aa:58:00:90:fc:3a:1d:d1:e5:05: e6:05:8a:25:94:74:1b:fb:7a:0d:24:0c:11:2e:70: 6b:ad:53:b4:34:cf:49:90:c4:15:36:9b:0d:18:4e: 69:de:04:d3:a2:e6:6c:da:11:ca:d0:2f:2f:0b:c5: f1:33:2e:52:65:6a:3f:c0:de:b1:19:1a:eb:1c:4d: b0:02:c4:5e:d1:19:35:d7:15:1e:e4:72:e0:5b:32: 84:a9:f2:18:6b:fa:d8:15:db:54:a1:59:f6:7b:17: 8a:ed:91:4e:eb:ff:a2:1e:59:5f:27:0d:6a:a4:2c: a7:91:76:92:7c:b4:eb:d1:36:02:2b:a4:56:3a:d9: 7c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:35:73:C1:BE:C6:AC:E8:CB:D7:AB:D4:CB:5B:2F:76:5E:2D:97:DD X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:11:de:a8:a8:07:13:2b:78:61:25:99:6c:e0:c7:a3:e4:61: b8:fc:ff:ca:2c:b5:38:60:16:5d:aa:4f:2b:37:56:f0:93:98: bd:60:fa:7b:3b:10:02:a0:50:bf:34:1c:41:d9:31:b4:b9:82: 63:3b:21:80:fe:9d:40:9d:87:71:43:37:13:a1:b5:d2:0a:ff: 26:cd:14:0c:23:fa:fd:85:06:b3:fc:be:e0:d3:59:b7:b5:01: d5:7a:1c:ee:a6:88:c2:6f:c9:a3:84:b0:0d:41:3a:ce:ca:70: 71:a8:5a:9f:fb:bc:d6:88:a0:b7:44:c6:8b:90:5c:cb:94:87: d2:fb:6d:d6:ac:bd:e1:96:1c:35:fc:28:f5:f7:a9:c4:5a:c7: 9f:0b:1d:21:c2:93:b9:28:c1:1f:93:a2:39:90:32:68:1d:6c: 01:a0:6a:07:2c:e3:84:5d:1d:42:c0:34:54:8b:4f:82:c9:c8: 61:f5:f4:f5:e6:ae:f7:ed:90:c8:16:66:dc:48:70:23:97:23: 9a:2e:00:0e:bf:c9:53:d8:4e:da:f6:c8:25:df:00:ec:c5:96: ce:9f:17:87:a9:c8:01:9d:9e:63:04:df:53:60:24:0d:cf:62: 35:ff:4e:9c:c2:74:82:f6:20:d2:f4:f7:fb:06:6a:fe:c1:ca: a3:46:bb:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjYwNDE2MTkyMzA5WhcNMjYwNDIzMTkyMzA5WjAYMRYwFAYD VQQDEw02OWUxMzcxZC0xZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFEFoyewwDItUNepEi87OpmVDtfcsevvOh/rV6s63IzAY2hk8ZnGgaCgIris Dh9iDFER1Ft7PO7i1s9rwiFVXjEQStrenK/cjhbM+s8+D+TlZzQ/vQVJZPq11OxX v9rWtfuWrZebnURSmCs6XPMNB2kOMPX4OSBb2XabrKpYAJD8Oh3R5QXmBYollHQb +3oNJAwRLnBrrVO0NM9JkMQVNpsNGE5p3gTTouZs2hHK0C8vC8XxMy5SZWo/wN6x GRrrHE2wAsRe0Rk11xUe5HLgWzKEqfIYa/rYFdtUoVn2exeK7ZFO6/+iHllfJw1q pCynkXaSfLTr0TYCK6RWOtl81QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNE1c8G+ xqzoy9er1MtbL3ZeLZfdMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPhHeqKgHEyt4YSWZbODHo+RhuPz/yiy1OGAWXapPKzdW8JOYvWD6ezsQAqBQ vzQcQdkxtLmCYzshgP6dQJ2HcUM3E6G10gr/Js0UDCP6/YUGs/y+4NNZt7UB1Xoc 7qaIwm/Jo4SwDUE6zspwcahan/u81oigt0TGi5Bcy5SH0vtt1qy94ZYcNfwo9fep xFrHnwsdIcKTuSjBH5OiOZAyaB1sAaBqByzjhF0dQsA0VItPgsnIYfX09eau9+2Q yBZm3EhwI5cjmi4ADr/JU9hO2vbIJd8A7MWWzp8Xh6nIAZ2eYwTfU2AkDc9iNf9O nMJ0gvYg0vT3+wZq/sHKo0a7jQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:24:24 2026 by rpki-client