$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: hWIPlQdGJA+tDNEepK2fDdgkLN3M8PGcP3dLfOmBRdw= Subject key identifier: 03:71:A4:DB:82:B7:E9:F4:31:58:C2:86:3F:AC:49:00:9C:64:FA:D0 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0CB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0CA3 Signing time: Sat 18 Apr 2026 18:26:29 +0000 Manifest this update: Sat 18 Apr 2026 18:26:28 +0000 Manifest next update: Sat 25 Apr 2026 18:26:28 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: DKVG4S2kWBZQvOT0XtY2dGiKEbkEtRWPJMgLVdKhjtk=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: tYlucwaBIGBa2s5M7XxozTf4DKKXocCk+qxS/KAjPVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 18:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3251 (0xcb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Apr 18 18:26:28 2026 GMT Not After : Apr 25 18:26:28 2026 GMT Subject: CN=69e3ccd5-5897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f2:eb:7d:47:aa:1e:25:1f:11:77:db:3a:31: 32:44:01:f9:f0:ba:97:11:06:e1:73:96:27:b3:8d: c2:cd:8f:29:19:57:cc:48:49:b1:df:75:af:49:c2: 0b:df:8e:a8:6e:f7:f7:c8:e5:60:b5:a9:48:55:d3: a9:d9:3e:27:35:41:73:4d:e2:b6:26:14:8b:45:83: f6:d0:59:18:53:76:5e:6b:0f:bc:16:13:b9:24:f9: e2:48:9c:e3:11:8b:6a:57:17:e0:d0:63:cd:1f:66: 5e:24:a5:09:5e:47:c7:af:aa:8c:b8:af:bb:00:77: 4b:c8:d7:07:21:c8:90:93:b7:0e:0a:d1:b7:d1:44: 7b:04:89:c1:00:14:ed:d6:2f:a2:fe:c3:0d:5c:45: 59:88:81:4f:5b:7d:6a:aa:0f:b8:f2:e9:1d:04:48: 7a:df:f5:17:20:64:05:d3:04:f1:fe:4e:7a:b4:8e: df:fe:1c:c6:83:38:55:46:68:25:44:fc:f6:54:a4: 7b:07:e9:0c:30:fa:70:99:70:5b:74:3f:df:85:34: 70:60:37:8b:9b:07:f1:44:ca:30:88:01:bf:65:2d: 1d:d0:1b:df:1e:98:d1:62:5d:a5:44:32:dd:c6:a5: 8a:2c:5d:d0:e5:c0:5c:c8:48:00:13:29:eb:00:b3: 4e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:71:A4:DB:82:B7:E9:F4:31:58:C2:86:3F:AC:49:00:9C:64:FA:D0 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:e4:12:ee:61:87:40:e6:f2:ef:12:34:20:d8:85:ba:93:dc: 1e:44:f2:6c:35:59:cb:12:e4:b0:d8:45:0c:a2:7a:2a:d5:34: d2:bc:f2:14:20:27:f7:2a:8c:46:44:46:0f:91:16:1e:bd:93: ac:b5:a8:d2:3f:dd:52:83:93:74:98:aa:15:bc:fa:36:bf:82: 08:43:85:52:3b:07:9d:6e:5f:71:ae:c8:2c:35:75:62:65:6c: e1:6d:c8:a7:de:94:46:b1:dc:fb:ff:48:a9:7d:ab:7f:78:71: 15:6f:77:92:47:36:1f:93:f9:6c:eb:a2:c6:db:1f:8c:07:7e: 45:a3:0e:b0:82:ef:16:af:88:2a:2f:46:f6:04:69:ed:1a:38: ff:ee:30:79:2a:bb:50:d6:ad:2d:04:19:36:a5:83:46:3a:91: 95:1d:2c:37:d8:ba:3b:cb:2d:47:db:60:e5:2b:cf:cb:dd:53: 57:5c:f2:50:85:6a:be:0c:65:8b:90:2f:f0:07:09:ca:9b:6b: 91:c9:a9:00:59:da:e4:47:56:25:e8:69:30:2e:d3:0a:3a:15: 75:6f:bc:f9:ea:74:77:83:8a:95:4d:95:96:77:87:cf:65:54: 5d:80:d1:eb:9b:35:5d:1c:7b:60:1d:50:b2:20:13:51:ee:c4: 91:27:a2:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjYwNDE4MTgyNjI4WhcNMjYwNDI1MTgyNjI4WjAYMRYwFAYD VQQDEw02OWUzY2NkNS01ODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPLrfUeqHiUfEXfbOjEyRAH58LqXEQbhc5Yns43CzY8pGVfMSEmx33WvScIL 346obvf3yOVgtalIVdOp2T4nNUFzTeK2JhSLRYP20FkYU3Zeaw+8FhO5JPniSJzj EYtqVxfg0GPNH2ZeJKUJXkfHr6qMuK+7AHdLyNcHIciQk7cOCtG30UR7BInBABTt 1i+i/sMNXEVZiIFPW31qqg+48ukdBEh63/UXIGQF0wTx/k56tI7f/hzGgzhVRmgl RPz2VKR7B+kMMPpwmXBbdD/fhTRwYDeLmwfxRMowiAG/ZS0d0BvfHpjRYl2lRDLd xqWKLF3Q5cBcyEgAEynrALNOFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFANxpNuC t+n0MVjChj+sSQCcZPrQMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIuQS7mGHQOby7xI0INiFupPcHkTybDVZyxLksNhFDKJ6KtU00rzyFCAn9yqM RkRGD5EWHr2TrLWo0j/dUoOTdJiqFbz6Nr+CCEOFUjsHnW5fca7ILDV1YmVs4W3I p96URrHc+/9IqX2rf3hxFW93kkc2H5P5bOuixtsfjAd+RaMOsILvFq+IKi9G9gRp 7Ro4/+4weSq7UNatLQQZNqWDRjqRlR0sN9i6O8stR9tg5SvPy91TV1zyUIVqvgxl i5Av8AcJyptrkcmpAFna5EdWJehpMC7TCjoVdW+8+ep0d4OKlU2VlneHz2VUXYDR 65s1XRx7YB1QsiATUe7EkSeiJg== -----END CERTIFICATE-----Generated at Sun Apr 19 09:00:43 2026 by rpki-client