$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: fq5fvZ18AoWIqIkbgVdsYRqQPeYrmavlZLMbgXlkANo= Subject key identifier: B9:DA:D0:FA:44:0A:C1:90:B8:95:FA:D1:A5:DA:BE:94:2A:0C:D9:6E Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 013D Signing time: Fri 17 Apr 2026 05:10:24 +0000 Manifest this update: Fri 17 Apr 2026 05:10:24 +0000 Manifest next update: Fri 24 Apr 2026 05:10:24 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: Np/+n4DKpopo+z48Xuu5TFSAAlTwMd1J3Fi8OTkLHaM=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: vOf/o1JHkb8wuECkMMHoKSsb6jXZeHUN4IdzhUHE9fc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Apr 17 05:10:24 2026 GMT Not After : Apr 24 05:10:24 2026 GMT Subject: CN=69e1c0c0-2c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:5e:2c:ce:d4:8d:22:8c:68:8a:6f:e9:35: ce:f2:bb:c0:4a:67:9a:9b:03:68:a1:77:6a:ab:54: 88:a8:27:f5:bd:45:08:65:d5:dd:a7:b9:7c:a2:89: 51:5a:29:21:0b:a6:ae:b2:5e:88:12:dd:49:dc:a4: 14:d4:27:68:2e:40:7b:af:ee:ba:6f:29:cc:6b:ff: a3:55:a8:e2:73:cd:7e:a3:3a:4b:c1:0f:4e:37:86: a0:2e:fa:44:f5:2b:19:f8:09:22:af:89:c2:1b:6e: a6:43:05:52:c0:7c:ea:80:76:8a:47:2a:12:b1:21: 2a:da:e6:fa:72:11:22:d2:eb:0b:77:21:e8:a4:b5: 57:76:47:a3:61:bb:56:45:f0:ad:e7:b4:f1:16:de: 9c:c8:07:8b:8b:09:a3:d1:b9:0f:ce:cf:e8:ba:ed: d0:18:0a:04:f0:9a:84:4f:15:09:cb:c8:7d:b8:0e: 22:cb:b0:9d:66:8f:c4:1e:be:f0:fc:8a:c5:e1:8c: 96:0f:94:4c:85:ab:71:0a:54:22:52:7d:49:8f:1e: 19:81:e1:65:46:f0:6b:47:24:fd:85:b9:ce:3e:5a: e5:a2:42:29:78:e6:3f:7b:1a:cf:22:5f:02:c3:c7: 88:8f:11:66:b9:d6:40:44:1f:41:39:a7:42:85:bd: fd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DA:D0:FA:44:0A:C1:90:B8:95:FA:D1:A5:DA:BE:94:2A:0C:D9:6E X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:d9:c3:10:8c:fc:b1:a9:4b:10:5d:ce:74:f6:06:98:cc:e5: 68:f4:2a:c6:3c:6d:0c:26:e8:1e:0c:91:7c:21:3b:15:90:cd: 2b:b1:4e:e8:5a:ee:0f:e7:0e:ff:98:f7:b1:2c:3c:5f:61:30: 47:40:20:d4:9a:7f:7d:ea:2e:82:56:a6:1f:fb:be:6e:04:26: 67:67:c0:59:42:ce:63:83:3c:5a:ef:97:34:9c:d4:28:20:de: 25:93:a1:54:84:f0:c1:ea:76:10:3c:ba:2f:a4:81:4e:85:cb: 8d:bd:41:73:33:ac:9c:1a:cb:11:5d:13:4d:b1:27:3e:b2:f8: 1f:0b:8e:10:4f:19:10:3a:60:72:cf:7d:3c:2a:cc:34:a0:3d: 9d:56:c3:d7:fd:0f:e6:a4:26:b0:c0:24:17:98:9e:52:d7:06: b5:57:e5:9f:db:aa:ca:c7:66:53:41:29:58:55:2d:4d:28:1c: 7d:9f:13:64:c9:f1:19:3d:55:24:7c:2c:a5:91:df:6a:49:78: 15:c0:75:01:3b:a0:44:e1:b0:dd:d2:cc:7e:50:d0:5c:61:ad: 53:28:74:41:7d:9c:cd:7f:93:d6:c1:b9:52:cc:dc:89:30:20: df:ad:34:7c:a0:04:6a:5c:51:f1:f3:47:9e:3e:3a:0e:52:20: b3:d9:1d:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjYwNDE3MDUxMDI0WhcNMjYwNDI0MDUxMDI0WjAYMRYwFAYD VQQDEw02OWUxYzBjMC0yYzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLBeLM7UjSKMaIpv6TXO8rvASmeamwNooXdqq1SIqCf1vUUIZdXdp7l8oolR WikhC6ausl6IEt1J3KQU1CdoLkB7r+66bynMa/+jVajic81+ozpLwQ9ON4agLvpE 9SsZ+Akir4nCG26mQwVSwHzqgHaKRyoSsSEq2ub6chEi0usLdyHopLVXdkejYbtW RfCt57TxFt6cyAeLiwmj0bkPzs/ouu3QGAoE8JqETxUJy8h9uA4iy7CdZo/EHr7w /IrF4YyWD5RMhatxClQiUn1Jjx4ZgeFlRvBrRyT9hbnOPlrlokIpeOY/exrPIl8C w8eIjxFmudZARB9BOadChb39hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLna0PpE CsGQuJX60aXavpQqDNluMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI9nDEIz8salLEF3OdPYGmMzlaPQqxjxtDCboHgyRfCE7FZDNK7FO6FruD+cO /5j3sSw8X2EwR0Ag1Jp/feouglamH/u+bgQmZ2fAWULOY4M8Wu+XNJzUKCDeJZOh VITwwep2EDy6L6SBToXLjb1BczOsnBrLEV0TTbEnPrL4HwuOEE8ZEDpgcs99PCrM NKA9nVbD1/0P5qQmsMAkF5ieUtcGtVfln9uqysdmU0EpWFUtTSgcfZ8TZMnxGT1V JHwspZHfakl4FcB1ATugROGw3dLMflDQXGGtUyh0QX2czX+T1sG5UszciTAg3600 fKAEalxR8fNHnj46DlIgs9kdRQ== -----END CERTIFICATE-----Generated at Sat Apr 18 00:39:20 2026 by rpki-client