$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft File: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft (raw, json) Hash identifier: QjVKg1KhOKvUbt4R3VkqDv7yb6mqzQJhU+UEn36rVLo= Subject key identifier: F2:88:F4:FF:00:50:EC:59:62:22:7B:81:3D:BA:53:6F:FD:BD:F1:90 Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Certificate serial: 0E62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft Manifest number: 0E44 Signing time: Thu 16 Apr 2026 17:43:46 +0000 Manifest this update: Thu 16 Apr 2026 17:43:45 +0000 Manifest next update: Thu 23 Apr 2026 17:43:45 +0000 Files and hashes: 1: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl (hash: HN4hMskyUpLUFBKJktEdN9SSdc/vRuld/QW4FtGzeho=) 2: 757320342E4011EEBC464879C4F9AE02.roa (hash: PNck+uUGNd+dXPiz0RHoIOTdAVNh1nYpLyv0JCvf9SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F521, serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Validity Not Before: Apr 16 17:43:45 2026 GMT Not After : Apr 23 17:43:45 2026 GMT Subject: CN=69e11fd2-c333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cd:cc:f1:9a:01:09:b1:83:86:e1:38:bc:da: a2:f7:e7:7f:11:62:4d:eb:71:22:96:9c:2d:83:4c: fc:e0:92:e4:f7:c0:17:51:23:31:48:3c:2b:dd:be: 1f:0f:ae:8d:23:23:c0:c4:3d:a9:8b:fe:4d:f9:f9: 33:5f:48:42:1f:39:cf:31:1e:9c:cb:68:37:01:9e: cb:45:5a:8d:07:a0:c1:d1:7b:66:6b:29:e3:50:bb: e4:bb:ad:73:a8:6b:aa:d6:30:27:ed:9d:fb:07:89: 7d:59:80:9d:13:61:c7:65:da:93:31:c2:0d:da:24: a6:ad:39:b2:ef:39:7b:a8:ab:2c:d6:34:ed:e2:5e: 9f:f0:2b:19:a7:6b:57:d4:43:74:34:fc:14:46:0d: a6:a9:67:75:7c:01:1d:36:6d:06:a6:6e:ca:96:89: c9:43:6f:c3:dc:10:16:9c:df:a2:47:f7:f5:68:9b: 2e:7d:50:3f:d3:d3:70:33:40:12:d8:b7:c4:57:9b: 45:a3:8c:b1:d5:2d:7e:2c:55:01:59:77:5c:36:7c: 78:b6:b9:86:98:7d:99:63:ce:74:30:97:13:ec:9c: 03:f3:b8:a3:48:3c:03:29:c7:40:7d:8e:3a:bb:b4: 8e:06:b8:12:99:08:23:5f:9d:ab:7d:52:97:eb:cf: 1c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:88:F4:FF:00:50:EC:59:62:22:7B:81:3D:BA:53:6F:FD:BD:F1:90 X509v3 Authority Key Identifier: keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b8:9d:3a:bc:a4:8c:26:2b:28:72:b0:b7:82:e5:a3:c6:8e: 7f:0b:f9:b9:b6:35:73:11:8a:e7:70:56:c8:15:8e:8e:a6:20: 67:d8:93:02:e5:d1:3e:9c:9a:8d:df:c0:80:48:33:d9:b0:9f: c6:03:3a:be:26:c0:ec:7d:2a:b3:ea:e8:8d:23:84:49:6c:1c: a9:7d:a8:e1:e7:5b:26:70:0e:84:b9:ca:6f:f9:a5:72:57:ab: 32:f9:be:84:21:6b:93:6b:76:a7:b9:9c:83:15:f2:d1:d0:c7: 38:b5:f7:82:21:0c:53:7d:44:03:fa:82:12:af:8b:0b:83:61: c5:cd:5e:49:93:5f:45:e6:94:4e:5f:4c:dd:c6:5f:a7:1a:c3: 94:46:2e:6d:62:f1:0e:ae:18:20:31:61:39:4a:23:35:23:70: 7e:9a:7d:3a:19:83:c5:f6:95:c9:c0:cc:76:80:35:6a:40:51: c5:53:25:ad:db:24:e6:00:d7:44:c3:5c:56:7d:b0:4e:be:8d: dd:00:1e:cc:8f:94:80:46:67:46:ef:81:ef:f2:0f:f6:c9:97: 4c:e1:6c:4e:0e:69:5f:3e:32:e5:c5:2d:9f:18:c8:5f:1c:0c: f6:d2:85:53:9a:4b:60:91:17:78:d7:4a:a1:b1:f6:e5:40:27: 53:4f:88:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1 MDc5N0M5NDgwHhcNMjYwNDE2MTc0MzQ1WhcNMjYwNDIzMTc0MzQ1WjAYMRYwFAYD VQQDEw02OWUxMWZkMi1jMzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw83M8ZoBCbGDhuE4vNqi9+d/EWJN63Eilpwtg0z84JLk98AXUSMxSDwr3b4f D66NIyPAxD2pi/5N+fkzX0hCHznPMR6cy2g3AZ7LRVqNB6DB0XtmaynjULvku61z qGuq1jAn7Z37B4l9WYCdE2HHZdqTMcIN2iSmrTmy7zl7qKss1jTt4l6f8CsZp2tX 1EN0NPwURg2mqWd1fAEdNm0Gpm7KlonJQ2/D3BAWnN+iR/f1aJsufVA/09NwM0AS 2LfEV5tFo4yx1S1+LFUBWXdcNnx4trmGmH2ZY850MJcT7JwD87ijSDwDKcdAfY46 u7SOBrgSmQgjX52rfVKX688c1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPKI9P8A UOxZYiJ7gT26U2/9vfGQMB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2 N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5 VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjUyMS8yMTY1ODgyMEM2N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZX S255b1hqNmVqZmRRZVh5VWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJridOrykjCYrKHKwt4Llo8aOfwv5ubY1cxGK53BWyBWOjqYgZ9iTAuXRPpya jd/AgEgz2bCfxgM6vibA7H0qs+rojSOESWwcqX2o4edbJnAOhLnKb/mlclerMvm+ hCFrk2t2p7mcgxXy0dDHOLX3giEMU31EA/qCEq+LC4Nhxc1eSZNfReaUTl9M3cZf pxrDlEYubWLxDq4YIDFhOUojNSNwfpp9OhmDxfaVycDMdoA1akBRxVMlrdsk5gDX RMNcVn2wTr6N3QAezI+UgEZnRu+B7/IP9smXTOFsTg5pXz4y5cUtnxjIXxwM9tKF U5pLYJEXeNdKobH25UAnU0+I7g== -----END CERTIFICATE-----Generated at Fri Apr 17 14:58:51 2026 by rpki-client