$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: NhmcArBORpOkSAbMz413iedrda4aWcD1XmeT2fCcf9U= Subject key identifier: E4:93:74:29:D3:EA:DA:F3:89:89:EC:CA:22:B6:16:4A:D3:F2:E3:7C Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 0252 Signing time: Fri 17 Apr 2026 02:07:53 +0000 Manifest this update: Fri 17 Apr 2026 02:07:52 +0000 Manifest next update: Fri 24 Apr 2026 02:07:52 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: VxHFe02rCsIg7k3ReM5Y8+JdFWplZeMwBeS9XbXKy18=) 2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: gF+wRybYqzRDn6Gcs13+OYJlZyu3AwVXsipzWwYqmyI=) 3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: UK3A/oQxQUdjUg4kSQf+8LqIPors4EamqRUdq1d2ntQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Apr 17 02:07:52 2026 GMT Not After : Apr 24 02:07:52 2026 GMT Subject: CN=69e195f9-672c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:e8:fa:4d:c5:7c:c8:66:4c:22:88:3d:5b: e4:aa:1e:4f:48:53:48:b8:c5:e4:58:42:cf:1d:4d: 67:35:80:af:3a:22:58:f5:26:5a:55:db:a8:fc:74: 68:a0:61:89:ff:f8:59:d4:db:48:2a:23:83:69:64: 9a:db:f6:7d:23:28:e4:73:39:2b:89:7c:f2:83:71: 6f:b3:10:31:60:d1:44:49:a2:fe:e4:9b:17:13:7e: 62:9b:54:86:73:cb:bb:f3:f1:28:54:9d:4b:5d:2c: 0c:0b:1e:9a:9a:10:fe:06:27:6b:20:e8:39:b9:08: 60:c0:29:c2:d2:da:1a:fc:70:6a:33:bc:35:d7:78: e2:cd:d0:24:3a:3d:2f:03:74:b5:0e:ba:83:b6:5f: 54:a3:01:39:51:bc:e6:18:b4:a0:98:d8:04:e7:be: b9:eb:4a:df:c7:b2:cf:63:02:f8:be:1c:3e:74:ba: ee:4f:3d:c0:d4:94:6a:06:96:06:d9:06:64:64:cd: 9b:df:4f:f8:fc:64:61:fa:1c:5f:e9:25:fa:e7:6b: 8d:aa:c5:ae:cb:2a:d7:72:09:dc:29:a0:e4:af:85: 1d:b4:e4:56:0b:a0:fa:a7:3a:df:21:7f:37:00:9f: f1:65:c0:2b:e7:10:1d:2e:6a:8f:cb:8c:a8:b9:4b: 61:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:93:74:29:D3:EA:DA:F3:89:89:EC:CA:22:B6:16:4A:D3:F2:E3:7C X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:bd:38:9d:33:99:10:03:15:2c:cd:68:02:ab:56:d6:24:e2: 78:4f:df:96:ed:58:58:db:30:c5:61:6e:ab:12:0d:6a:5b:1a: 16:a6:0f:0f:98:76:87:ba:a8:8e:95:4e:96:70:03:05:e3:a8: 76:7f:2c:80:e0:f2:1d:a3:2b:9b:43:0b:d8:18:85:1f:23:1e: 2c:1c:4a:49:80:42:b3:8c:b7:15:7a:6c:b4:31:36:3c:87:01: e5:48:a9:61:10:54:5e:34:39:01:1b:68:d0:24:e0:21:be:ee: 06:84:ee:09:85:41:10:cd:bf:e6:85:e4:3e:37:50:38:84:53: 18:85:91:7b:bd:5d:2f:08:2e:58:0c:57:a1:88:11:4c:06:2f: 85:2d:65:00:39:84:10:e4:ed:c7:9f:58:a4:b4:43:e5:25:f5: bc:f3:47:ca:3a:89:0e:40:cf:47:da:f1:e3:fb:8b:89:38:8c: a3:1c:4b:30:db:36:6e:70:88:98:90:fb:3f:e5:c2:99:24:8d: cd:7e:8d:07:78:1f:ab:72:ea:32:87:03:a1:c3:2c:07:ab:35: a6:e3:76:24:81:43:57:2e:5d:1a:c5:8a:52:ef:c6:c3:50:bb: 6b:29:5f:03:ba:24:b0:84:59:41:5b:b5:46:7a:ec:e0:df:30: 6b:19:44:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjYwNDE3MDIwNzUyWhcNMjYwNDI0MDIwNzUyWjAYMRYwFAYD VQQDEw02OWUxOTVmOS02NzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHbo+k3FfMhmTCKIPVvkqh5PSFNIuMXkWELPHU1nNYCvOiJY9SZaVduo/HRo oGGJ//hZ1NtIKiODaWSa2/Z9IyjkczkriXzyg3FvsxAxYNFESaL+5JsXE35im1SG c8u78/EoVJ1LXSwMCx6amhD+BidrIOg5uQhgwCnC0toa/HBqM7w113jizdAkOj0v A3S1DrqDtl9UowE5UbzmGLSgmNgE576560rfx7LPYwL4vhw+dLruTz3A1JRqBpYG 2QZkZM2b30/4/GRh+hxf6SX652uNqsWuyyrXcgncKaDkr4UdtORWC6D6pzrfIX83 AJ/xZcAr5xAdLmqPy4youUthcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOSTdCnT 6trziYnsyiK2FkrT8uN8MB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyL04nTOZEAMVLM1oAqtW1iTieE/flu1YWNswxWFuqxINalsaFqYPD5h2h7qo jpVOlnADBeOodn8sgODyHaMrm0ML2BiFHyMeLBxKSYBCs4y3FXpstDE2PIcB5Uip YRBUXjQ5ARto0CTgIb7uBoTuCYVBEM2/5oXkPjdQOIRTGIWRe71dLwguWAxXoYgR TAYvhS1lADmEEOTtx59YpLRD5SX1vPNHyjqJDkDPR9rx4/uLiTiMoxxLMNs2bnCI mJD7P+XCmSSNzX6NB3gfq3LqMocDocMsB6s1puN2JIFDVy5dGsWKUu/Gw1C7aylf A7oksIRZQVu1Rnrs4N8waxlEgg== -----END CERTIFICATE-----Generated at Fri Apr 17 21:26:53 2026 by rpki-client