$ rpki-client -vvf rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft File: kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft (raw, json) Hash identifier: jQeNunSTbWWaZBGBGsAj9Z/Ka1TEZIkzbY6/WDI2mAM= Subject key identifier: A3:E2:72:F6:3F:32:33:6D:F7:E6:38:CB:80:DD:2A:AB:EE:8B:F8:CE Authority key identifier: 90:B9:BA:BD:74:2B:27:57:43:FB:71:5E:13:59:75:63:8E:9C:2F:25 Certificate issuer: /CN=A9157378/serialNumber=90B9BABD742B275743FB715E135975638E9C2F25 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft Manifest number: 01BE Signing time: Fri 17 Apr 2026 03:37:26 +0000 Manifest this update: Fri 17 Apr 2026 03:37:26 +0000 Manifest next update: Fri 24 Apr 2026 03:37:26 +0000 Files and hashes: 1: kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl (hash: TyYoAZI6TwI2Afr4XvVq8st0gRWe9pN141f0TwDh/y8=) 2: 38F9C792948F11EEAE636E0FC4F9AE02.roa (hash: R+cgAiGLFnxqgUaeTBzigI0telk5/iO6S+thcp6pkZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157378, serialNumber=90B9BABD742B275743FB715E135975638E9C2F25 Validity Not Before: Apr 17 03:37:26 2026 GMT Not After : Apr 24 03:37:26 2026 GMT Subject: CN=69e1aaf6-e108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:25:c7:7f:f3:c0:4e:e8:bd:42:ff:99:51:21: f3:d6:5f:cb:2b:ce:62:9e:d8:cb:6b:c7:50:e9:23: 68:27:08:56:34:8d:2e:67:70:4a:38:92:4f:6e:bf: c2:19:a3:4f:7f:df:02:8f:8b:4e:7b:2e:15:a0:09: 3b:b9:fc:d4:c3:0c:42:1e:11:ac:53:31:91:5e:14: eb:c3:89:44:82:73:1c:2b:46:17:de:b0:5f:25:a5: dc:a0:bc:33:90:45:2a:76:37:d6:aa:02:2a:c7:90: ba:04:bb:3b:36:2d:de:08:03:2e:46:64:48:8f:fb: 76:34:33:be:2e:41:53:7e:b9:db:1a:8d:ae:e8:09: 4e:93:ad:2e:62:30:02:66:2f:7e:71:64:c0:6e:e1: 30:a4:5e:96:28:50:2a:5e:08:57:9b:59:95:15:1a: ef:fa:5b:fe:50:92:62:61:b0:f4:0a:2d:2c:67:f0: ab:2e:df:2c:f2:67:e4:36:97:ed:dc:7c:8a:12:29: 59:0d:98:45:5e:43:0e:55:0e:95:a5:d8:4a:02:62: 2a:7f:bb:1d:50:ed:b5:f9:fe:5d:18:28:18:13:6e: 95:1f:63:31:65:18:30:55:f8:e3:cc:fc:a0:5b:16: 2b:90:87:5b:6e:7f:f2:bf:de:a3:08:e1:12:e1:81: 7d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E2:72:F6:3F:32:33:6D:F7:E6:38:CB:80:DD:2A:AB:EE:8B:F8:CE X509v3 Authority Key Identifier: keyid:90:B9:BA:BD:74:2B:27:57:43:FB:71:5E:13:59:75:63:8E:9C:2F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c2:8f:06:9d:1a:9a:ad:ae:09:14:91:57:2b:85:42:e5:20: e0:df:7f:58:71:45:0c:c0:3b:fc:4a:fa:7d:03:da:d4:85:19: 69:df:b1:b1:d6:2b:be:89:27:d1:37:c7:b9:0c:a5:7b:49:60: 38:98:91:b3:a6:2d:94:42:ac:83:58:7b:f6:da:50:56:30:04: 84:8f:00:3e:8a:7e:97:a4:a1:4f:ca:fd:ed:4f:70:3a:82:4b: af:3f:b4:27:bf:ec:50:6f:ea:72:bc:cf:98:8d:e3:49:16:41: bc:09:b1:25:b6:9b:04:2e:e8:3e:b5:ee:f6:32:d8:82:ae:c4: 88:ca:f9:c8:1a:33:ed:b9:3e:78:6b:f1:88:0f:f0:de:1c:8b: f9:a6:19:dd:12:d6:fd:27:7b:b6:23:c0:d2:e3:7f:b1:2d:4a: 86:b2:e6:eb:c7:06:90:75:f1:d8:7d:00:c1:f3:c8:16:a6:dd: 6e:2d:47:8d:ed:4f:e1:c5:7b:41:60:df:5d:45:59:8a:7a:6a: 7e:8b:25:df:05:e4:98:73:47:c0:e7:ea:38:56:6a:78:9e:6b: 4a:16:1f:c8:c9:1d:d0:d1:7a:eb:cf:6c:27:f2:33:a9:7d:e1: 65:50:92:04:24:31:6e:3d:82:c3:96:37:dc:fc:78:ab:79:71: 73:af:52:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTczNzgxMTAvBgNVBAUTKDkwQjlCQUJENzQyQjI3NTc0M0ZCNzE1RTEzNTk3NTYz OEU5QzJGMjUwHhcNMjYwNDE3MDMzNzI2WhcNMjYwNDI0MDMzNzI2WjAYMRYwFAYD VQQDEw02OWUxYWFmNi1lMTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yXHf/PATui9Qv+ZUSHz1l/LK85intjLa8dQ6SNoJwhWNI0uZ3BKOJJPbr/C GaNPf98Cj4tOey4VoAk7ufzUwwxCHhGsUzGRXhTrw4lEgnMcK0YX3rBfJaXcoLwz kEUqdjfWqgIqx5C6BLs7Ni3eCAMuRmRIj/t2NDO+LkFTfrnbGo2u6AlOk60uYjAC Zi9+cWTAbuEwpF6WKFAqXghXm1mVFRrv+lv+UJJiYbD0Ci0sZ/CrLt8s8mfkNpft 3HyKEilZDZhFXkMOVQ6VpdhKAmIqf7sdUO21+f5dGCgYE26VH2MxZRgwVfjjzPyg WxYrkIdbbn/yv96jCOES4YF9UwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKPicvY/ MjNt9+Y4y4DdKqvui/jOMB8GA1UdIwQYMBaAFJC5ur10KydXQ/txXhNZdWOOnC8l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzM3OC8wQTg4QzdGMjkz RTMxMUVFOTNDOEU1ODJDNEY5QUUwMi9rTG02dlhRckoxZEQtM0ZlRTFsMVk0NmNM eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tMbTZ2WFFySjFkRC0zRmVFMWwxWTQ2Y0x5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzM3OC8wQTg4QzdGMjkzRTMxMUVFOTNDOEU1ODJDNEY5QUUwMi9rTG02dlhRckox ZEQtM0ZlRTFsMVk0NmNMeVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfMKPBp0amq2uCRSRVyuFQuUg4N9/WHFFDMA7/Er6fQPa1IUZad+xsdYrvokn 0TfHuQyle0lgOJiRs6YtlEKsg1h79tpQVjAEhI8APop+l6ShT8r97U9wOoJLrz+0 J7/sUG/qcrzPmI3jSRZBvAmxJbabBC7oPrXu9jLYgq7EiMr5yBoz7bk+eGvxiA/w 3hyL+aYZ3RLW/Sd7tiPA0uN/sS1KhrLm68cGkHXx2H0AwfPIFqbdbi1Hje1P4cV7 QWDfXUVZinpqfosl3wXkmHNHwOfqOFZqeJ5rShYfyMkd0NF6689sJ/IzqX3hZVCS BCQxbj2Cw5Y33Px4q3lxc69S6w== -----END CERTIFICATE-----Generated at Fri Apr 17 16:08:17 2026 by rpki-client