$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: cgCyx+Lo/3oMg7q15kSOfm925W6dvpdKaIpuR/Trht0= Subject key identifier: 14:39:8C:0B:30:C3:B4:E0:6B:B6:CE:B7:CF:E7:AD:F1:0F:D1:2E:7C Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: DA Signing time: Fri 17 Apr 2026 06:29:46 +0000 Manifest this update: Fri 17 Apr 2026 06:29:45 +0000 Manifest next update: Fri 24 Apr 2026 06:29:45 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: yFKPQotX/jfCDuqrgF8LvFchseBveU/uiQzOLmio9V8=) 2: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: NMXSh4M1f9PUVYv8eikRIhD24GRVnVb8u5tWxsJCUME=) 3: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: N4HTYSfJRwG01pC5CAe1D/sq8bILUh+qrNfqBe3K/Mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Apr 17 06:29:45 2026 GMT Not After : Apr 24 06:29:45 2026 GMT Subject: CN=69e1d35a-360c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1f:96:af:47:10:2f:c0:c6:91:d0:2f:27:e3: ef:8e:b5:a0:de:50:1b:c7:85:f5:dc:c3:39:ad:e6: 60:68:8b:e9:0e:47:15:ec:7a:b0:4b:46:b0:7c:6a: be:bc:34:de:f2:b8:a8:70:3d:63:15:bd:37:bd:29: 84:3a:1d:b9:6d:ba:e4:8f:68:44:ef:fa:5e:04:d5: 4b:22:ad:48:91:90:f4:95:b1:ed:af:7e:1a:6a:c9: 43:ad:96:a7:ed:32:75:6b:b2:8c:21:fa:f0:e5:20: 37:6e:cc:ca:be:7e:9c:60:1e:00:25:26:ea:db:50: cb:84:50:f5:40:46:4d:c8:89:6f:9b:fa:d6:2a:42: a1:c8:01:49:4a:f0:11:ad:78:2a:39:b2:30:75:17: c4:fe:73:96:e8:fa:b5:37:69:86:5b:1a:17:04:93: 1b:e5:40:65:cd:34:01:1a:a5:a6:93:11:be:a6:16: 2d:48:fe:0c:a2:bc:4d:54:36:8e:aa:91:1e:8b:b8: 56:30:33:fa:dd:40:19:e2:42:7a:32:f8:61:14:d9: ea:3a:1c:89:ae:26:46:f2:36:25:dd:7a:c7:c0:79: 13:42:4d:b1:1e:0c:72:a3:2b:52:7c:2a:86:02:4c: a5:e1:d6:9e:32:de:90:bf:dd:38:8a:88:bd:95:82: 20:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:39:8C:0B:30:C3:B4:E0:6B:B6:CE:B7:CF:E7:AD:F1:0F:D1:2E:7C X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:ed:c0:02:3b:6b:c5:0a:ff:99:3b:cd:23:a2:ac:a0:23:49: e9:24:7b:ce:c8:96:c2:9c:9f:32:00:26:89:04:94:2e:51:86: 56:04:5a:0a:8a:e7:f8:9b:5d:d6:c4:53:62:e9:9f:88:49:b5: 1e:39:68:e6:36:fb:a0:71:0b:d0:62:75:40:f3:2c:73:c9:7e: e6:48:4f:7a:c4:b8:31:a0:d4:ad:59:a8:72:cd:3b:d6:0f:eb: ea:e1:d8:f5:08:5f:3e:d9:2a:15:e4:eb:5b:b9:5a:96:90:3b: d6:be:92:20:6d:41:64:b8:87:56:51:cb:48:2b:1e:ee:87:69: 2a:df:e7:26:10:60:a1:6c:11:f8:c8:dd:dd:f1:09:38:cd:46: 6e:ef:02:3e:70:f4:24:db:b2:45:20:e4:3d:60:7b:80:0e:22: b9:7f:4b:bc:b2:9f:4e:41:ef:65:da:8d:fc:d8:3c:a1:de:23: 5c:19:ae:7b:92:10:0e:1f:b7:27:f0:a0:f9:81:48:ed:0a:2c: 48:ed:e3:07:ad:38:47:36:4a:fa:87:4e:4b:29:6a:6e:9b:24: eb:9a:a3:cc:a8:7e:ec:99:a1:16:21:df:00:d9:8e:be:34:f8: d1:9d:01:ce:09:9e:c0:af:ad:07:2c:fd:ab:84:bf:89:78:d2: 80:58:56:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjYwNDE3MDYyOTQ1WhcNMjYwNDI0MDYyOTQ1WjAYMRYwFAYD VQQDEw02OWUxZDM1YS0zNjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnR+Wr0cQL8DGkdAvJ+PvjrWg3lAbx4X13MM5reZgaIvpDkcV7HqwS0awfGq+ vDTe8riocD1jFb03vSmEOh25bbrkj2hE7/peBNVLIq1IkZD0lbHtr34aaslDrZan 7TJ1a7KMIfrw5SA3bszKvn6cYB4AJSbq21DLhFD1QEZNyIlvm/rWKkKhyAFJSvAR rXgqObIwdRfE/nOW6Pq1N2mGWxoXBJMb5UBlzTQBGqWmkxG+phYtSP4MorxNVDaO qpEei7hWMDP63UAZ4kJ6MvhhFNnqOhyJriZG8jYl3XrHwHkTQk2xHgxyoytSfCqG Akyl4daeMt6Qv904ioi9lYIgEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBQ5jAsw w7Tga7bOt8/nrfEP0S58MB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAre3AAjtrxQr/mTvNI6KsoCNJ6SR7zsiWwpyfMgAmiQSULlGGVgRaCorn+Jtd 1sRTYumfiEm1Hjlo5jb7oHEL0GJ1QPMsc8l+5khPesS4MaDUrVmocs071g/r6uHY 9QhfPtkqFeTrW7lalpA71r6SIG1BZLiHVlHLSCse7odpKt/nJhBgoWwR+Mjd3fEJ OM1Gbu8CPnD0JNuyRSDkPWB7gA4iuX9LvLKfTkHvZdqN/Ng8od4jXBmue5IQDh+3 J/Cg+YFI7QosSO3jB604RzZK+odOSylqbpsk65qjzKh+7JmhFiHfANmOvjT40Z0B zgmewK+tByz9q4S/iXjSgFhWVg== -----END CERTIFICATE-----Generated at Fri Apr 17 11:36:10 2026 by rpki-client