$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: vLJd7vyA22sfg1Xs/9RbJBlUT6SbJP2bT5On9ifRNn8= Subject key identifier: 52:A9:5E:52:3C:47:36:62:D3:AD:25:37:A8:1B:D5:E5:20:C1:FF:B1 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: CA Signing time: Fri 17 Apr 2026 06:33:24 +0000 Manifest this update: Fri 17 Apr 2026 06:33:24 +0000 Manifest next update: Fri 24 Apr 2026 06:33:24 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: pv20oRyGZCyPHu6tfGm4IbUYqDG8k0rWGu3IIKiUC88=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: hjH+zU9sP1L/kx7kYtoqwAc4xuGtYd3WJlGp2RTUPCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Apr 17 06:33:24 2026 GMT Not After : Apr 24 06:33:24 2026 GMT Subject: CN=69e1d434-47c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:13:44:6d:0a:eb:59:a0:b4:82:22:ca:8b:90: d4:a0:fe:2c:f5:2f:df:b6:a0:76:56:26:9d:16:7a: 50:d0:00:d5:8c:70:f3:51:54:ff:26:b7:fc:36:81: d8:85:30:96:4f:75:49:4a:51:ec:e7:ef:72:e4:1e: 65:01:31:d6:e1:e4:6d:d8:96:59:fe:a3:b3:f1:82: 61:b4:8f:ef:fc:1b:55:56:25:0e:00:b5:a7:a4:f3: e1:17:72:b8:73:90:ab:cf:47:5b:30:bc:42:2b:ab: dc:25:4e:4a:a8:2c:f8:4f:f0:f7:09:96:d7:11:f8: b9:28:8e:8e:4f:e2:cf:ff:f9:bb:01:09:06:d1:17: 29:83:99:eb:91:f2:37:4e:6e:3a:6e:9f:51:4b:cc: 4b:3d:0a:4e:dd:ad:d4:a5:a7:fc:b2:17:78:ca:1d: 66:7b:9e:b4:08:1e:4b:cb:1b:f7:8c:b5:f8:3a:89: 4e:c9:93:50:0e:96:0d:23:6e:9b:13:c4:21:ca:49: 6e:e4:04:35:5d:d1:71:c1:87:0a:1e:47:8a:68:60: 9c:8d:18:f3:f3:65:35:91:87:65:65:6e:62:35:47: 2d:76:12:49:09:93:f8:51:f3:42:4c:fb:1c:88:18: a5:67:28:5c:79:3d:26:c9:21:76:b6:ea:25:46:e1: ca:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A9:5E:52:3C:47:36:62:D3:AD:25:37:A8:1B:D5:E5:20:C1:FF:B1 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:34:1a:96:cc:ad:4a:8e:66:61:d2:34:b7:83:e1:0d:22:14: c5:48:65:a9:5d:d0:4f:30:18:89:a8:ed:22:f8:30:49:e9:dc: 57:f9:b5:0b:5e:ac:75:5b:4f:72:2e:07:3a:12:f5:1e:8f:f8: f8:f8:a3:df:08:86:71:0a:21:4b:a5:ac:1e:8c:d4:de:eb:6f: 9c:d6:e0:b2:bb:ea:60:dd:ad:9f:5a:0e:4c:d6:e6:9f:31:a3: 9c:5f:78:c4:c7:08:02:43:4e:69:cd:1e:73:60:ff:fc:12:27: 9a:eb:57:fc:4a:fc:71:8f:8a:29:32:a3:67:0c:e5:02:a0:5f: 33:c9:a5:bb:2a:03:05:c6:14:f6:69:cd:41:db:28:70:45:16: c6:2f:9b:0e:d7:3e:eb:98:4c:bf:30:96:ae:37:df:f4:06:94: cc:db:f4:85:f7:d6:c7:c0:00:3c:71:70:69:31:92:1c:27:93: 26:79:05:02:a3:75:a3:af:3b:47:34:a5:e1:7c:07:81:83:5a: 43:ad:a9:ef:25:96:81:d2:aa:8e:73:ee:38:c7:7a:36:70:65: 38:c2:ee:c2:26:0b:5a:22:b5:39:9e:e7:d4:2f:8f:8b:36:99: 7f:20:8f:9a:d1:3a:5f:82:5d:bd:a3:f2:e7:96:09:1b:9d:a6: 1f:a3:15:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFCN0UxMTAvBgNVBAUTKDJBNkJGMDU0QUQyM0VBRDJEQjM5NTMxQjY0NjcyNkNB OTQ1QUM0OTIwHhcNMjYwNDE3MDYzMzI0WhcNMjYwNDI0MDYzMzI0WjAYMRYwFAYD VQQDEw02OWUxZDQzNC00N2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBNEbQrrWaC0giLKi5DUoP4s9S/ftqB2ViadFnpQ0ADVjHDzUVT/Jrf8NoHY hTCWT3VJSlHs5+9y5B5lATHW4eRt2JZZ/qOz8YJhtI/v/BtVViUOALWnpPPhF3K4 c5Crz0dbMLxCK6vcJU5KqCz4T/D3CZbXEfi5KI6OT+LP//m7AQkG0Rcpg5nrkfI3 Tm46bp9RS8xLPQpO3a3Upaf8shd4yh1me560CB5Lyxv3jLX4OolOyZNQDpYNI26b E8Qhyklu5AQ1XdFxwYcKHkeKaGCcjRjz82U1kYdlZW5iNUctdhJJCZP4UfNCTPsc iBilZyhceT0mySF2tuolRuHKJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFKpXlI8 RzZi060lN6gb1eUgwf+xMB8GA1UdIwQYMBaAFCpr8FStI+rS2zlTG2RnJsqUWsSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUI3RS9GNzU5Nzk2RTA4 ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0TGJPVk1iWkdjbXlwUmF4 SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUI3RS9GNzU5Nzk2RTA4ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0 TGJPVk1iWkdjbXlwUmF4SkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALDQalsytSo5mYdI0t4PhDSIUxUhlqV3QTzAYiajtIvgwSencV/m1C16sdVtP ci4HOhL1Ho/4+Pij3wiGcQohS6WsHozU3utvnNbgsrvqYN2tn1oOTNbmnzGjnF94 xMcIAkNOac0ec2D//BInmutX/Er8cY+KKTKjZwzlAqBfM8mluyoDBcYU9mnNQdso cEUWxi+bDtc+65hMvzCWrjff9AaUzNv0hffWx8AAPHFwaTGSHCeTJnkFAqN1o687 RzSl4XwHgYNaQ62p7yWWgdKqjnPuOMd6NnBlOMLuwiYLWiK1OZ7n1C+PizaZfyCP mtE6X4JdvaPy55YJG52mH6MV+w== -----END CERTIFICATE-----Generated at Fri Apr 17 17:01:02 2026 by rpki-client