$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: IRlOayngO5rmxH8NtANu8WsKRt02nkHYOmkfc5dIeZg= Subject key identifier: 59:20:92:6A:8A:1B:4B:5C:BB:DC:D1:65:B7:4A:5A:F0:41:3F:E8:52 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 1173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 2528 Signing time: Sat 18 Apr 2026 16:51:29 +0000 Manifest this update: Sat 18 Apr 2026 16:51:29 +0000 Manifest next update: Sat 25 Apr 2026 16:51:29 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: EJCn4yr9deOdrBvEnXZsKR4zWne7+suI4G3Q/miIt9Y=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: FaFqBcKylUM1Ik2J0LQMDMkip4pQ4QSSImVSUK0dY18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 16:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4467 (0x1173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Apr 18 16:51:29 2026 GMT Not After : Apr 25 16:51:29 2026 GMT Subject: CN=69e3b691-8c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c3:2c:b2:7a:8b:c1:1d:fb:0a:a3:d5:72:e8: 7a:84:f2:6e:62:ef:cd:df:40:be:90:ed:97:dd:d2: 72:c8:16:46:e7:26:40:36:df:b3:2b:43:bb:85:d3: 26:a6:64:e6:fd:da:3d:f9:57:73:ad:cd:11:b3:c5: 08:8b:4f:7f:a0:5c:02:e9:0a:26:94:07:73:0d:a7: 29:1f:70:d0:c3:3c:3f:aa:59:68:24:06:f0:ec:e7: 7e:c7:de:d6:a8:a0:c0:5c:17:78:e6:a3:b5:97:b2: 91:d0:75:ad:7d:8c:94:4c:ca:8a:1c:0e:ec:42:fa: 3d:77:4b:fc:0f:d5:74:4e:d9:3a:0a:04:69:87:f9: b0:de:bf:84:47:44:cc:e2:23:0a:4f:b4:f1:98:a7: 03:ab:82:12:40:be:a6:90:df:6c:dc:a1:c6:9b:a2: 08:86:24:12:6d:4e:04:39:14:a0:ce:9e:58:f2:0a: 22:2b:e5:cf:8e:79:2d:e6:a0:76:63:12:e9:3d:86: 37:c6:8e:95:c6:35:4f:f9:0e:e2:25:71:51:99:41: 95:a2:a5:17:df:03:93:96:ec:c6:54:87:11:fa:e1: b1:5e:76:f9:ff:d7:52:55:27:7a:5e:4d:a9:6e:b1: b5:c6:9d:20:50:a2:a2:f6:fc:68:19:8b:ef:31:66: 65:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:20:92:6A:8A:1B:4B:5C:BB:DC:D1:65:B7:4A:5A:F0:41:3F:E8:52 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:3a:f3:07:f5:bf:f4:db:71:d9:74:04:22:0d:f2:5d:b0:e2: f2:49:60:32:37:51:bb:31:8a:17:6d:4a:dd:97:66:eb:51:1c: 6e:4e:a7:17:23:5d:4e:e3:ba:04:ef:6d:2e:62:0b:e2:94:85: 03:bd:52:07:d2:25:39:28:91:50:7e:75:9c:14:65:84:4d:cd: fc:29:47:d7:fb:f6:df:3f:7e:24:85:5a:da:29:b4:48:99:0a: 30:25:86:ba:61:03:fb:64:2f:32:1c:b1:09:f3:b6:98:8d:97: dd:a3:8a:42:7f:d5:d5:70:41:83:92:dd:60:61:8e:2a:f2:02: 7b:1e:cf:a0:be:57:84:f6:11:8b:0e:cd:f5:b1:6e:d2:28:46: cd:82:b4:27:03:7a:90:d0:2e:11:ab:ba:d0:d1:10:b0:f9:b4: ed:7a:05:f0:06:b6:89:e1:f8:b4:b3:70:4d:fd:81:fa:50:ff: a1:b6:6c:fe:07:81:39:d9:68:26:0c:50:06:c8:f2:9d:9b:a2: a4:80:4a:5d:a5:08:6c:0d:d9:bb:53:7d:59:df:b3:59:b7:79: 05:7e:b4:50:08:da:55:1b:54:18:88:d7:a2:2f:fa:55:8f:e1: 63:e2:32:92:58:94:26:0d:3f:bd:5c:c2:a7:ca:3e:14:79:74: a5:65:b1:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjYwNDE4MTY1MTI5WhcNMjYwNDI1MTY1MTI5WjAYMRYwFAYD VQQDEw02OWUzYjY5MS04YzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncMssnqLwR37CqPVcuh6hPJuYu/N30C+kO2X3dJyyBZG5yZANt+zK0O7hdMm pmTm/do9+Vdzrc0Rs8UIi09/oFwC6QomlAdzDacpH3DQwzw/qlloJAbw7Od+x97W qKDAXBd45qO1l7KR0HWtfYyUTMqKHA7sQvo9d0v8D9V0Ttk6CgRph/mw3r+ER0TM 4iMKT7TxmKcDq4ISQL6mkN9s3KHGm6IIhiQSbU4EORSgzp5Y8goiK+XPjnkt5qB2 YxLpPYY3xo6VxjVP+Q7iJXFRmUGVoqUX3wOTluzGVIcR+uGxXnb5/9dSVSd6Xk2p brG1xp0gUKKi9vxoGYvvMWZlGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFkgkmqK G0tcu9zRZbdKWvBBP+hSMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJDrzB/W/9Ntx2XQEIg3yXbDi8klgMjdRuzGKF21K3Zdm61Ecbk6nFyNdTuO6 BO9tLmIL4pSFA71SB9IlOSiRUH51nBRlhE3N/ClH1/v23z9+JIVa2im0SJkKMCWG umED+2QvMhyxCfO2mI2X3aOKQn/V1XBBg5LdYGGOKvICex7PoL5XhPYRiw7N9bFu 0ihGzYK0JwN6kNAuEau60NEQsPm07XoF8Aa2ieH4tLNwTf2B+lD/obZs/geBOdlo JgxQBsjynZuipIBKXaUIbA3Zu1N9Wd+zWbd5BX60UAjaVRtUGIjXoi/6VY/hY+Iy kliUJg0/vVzCp8o+FHl0pWWxmg== -----END CERTIFICATE-----Generated at Sun Apr 19 11:38:58 2026 by rpki-client