$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: AUQtHGGX+P5Nw8tG5tpNuI/wBRvlhcRwzk2BSP1uFJk= Subject key identifier: A4:EA:12:18:82:BE:82:56:DF:16:91:99:18:90:87:FA:0C:D9:2C:4E Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 01E6 Signing time: Fri 17 Apr 2026 03:08:34 +0000 Manifest this update: Fri 17 Apr 2026 03:08:34 +0000 Manifest next update: Fri 24 Apr 2026 03:08:34 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: KEcV7evjHpTgZT/KqhUhjLC0JAMTZzHhLxJ5p5GiT1U=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: cTlf1NxuIouKXNPDJnnCsmUtnsb/nG3rM1WrAqOmy6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Apr 17 03:08:34 2026 GMT Not After : Apr 24 03:08:34 2026 GMT Subject: CN=69e1a432-2d77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:58:97:dc:bb:76:cc:22:22:69:fb:6c:0a:40: d6:8c:2f:88:c6:c4:aa:90:d4:fe:8c:4d:44:0c:6a: 43:cb:76:70:16:84:67:f1:d2:b9:5b:6e:2c:de:23: 16:17:0b:79:e8:6f:84:6c:05:2e:bf:f1:2b:f6:48: f7:5b:4f:2e:f1:d5:7d:50:0a:ab:8a:29:30:d5:55: a3:c5:32:14:62:f9:7c:23:d4:d5:68:bc:20:f0:42: d4:0a:da:fa:55:3f:e8:b0:c6:f3:43:06:ac:ae:fc: df:37:ec:0f:62:40:51:aa:62:da:b9:0d:d5:41:98: c0:58:69:c3:f8:a0:13:9f:83:5c:af:6a:9e:42:20: 52:33:82:80:c4:da:f5:79:89:90:0a:a4:d1:78:ca: f6:92:b7:3b:0b:f7:2d:59:cd:31:46:c3:5c:bc:06: c8:c1:24:1a:61:eb:44:12:e1:6b:5c:ef:2f:85:0c: 9a:c0:c6:fd:03:7b:d5:3f:40:08:67:ed:ee:eb:1a: 2d:b4:41:01:a2:a2:f9:ec:24:84:c0:15:43:bb:c5: 8d:be:1a:cc:7c:10:c5:b2:69:55:b2:42:a8:c6:ee: f4:ed:68:b6:0e:f6:f5:4f:2e:3b:5d:d0:72:c0:7d: f5:52:68:bf:9d:55:ea:e3:45:2d:b8:b9:10:65:86: fd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EA:12:18:82:BE:82:56:DF:16:91:99:18:90:87:FA:0C:D9:2C:4E X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:a9:65:46:cb:fd:5e:78:90:2f:cb:db:3d:2e:09:a8:94:3d: 3f:db:a8:6b:d5:0f:9f:50:d7:47:3d:73:67:ba:8a:02:73:44: eb:c5:85:18:ce:55:a3:82:88:33:9b:e9:03:6d:67:56:26:c4: fb:50:39:b0:08:51:0f:51:47:e0:88:c5:4b:d4:8e:f5:d7:8e: 4d:6a:9b:de:6f:76:1f:75:65:86:25:ec:dc:97:1b:46:41:a5: e0:b9:07:46:bb:1f:d1:ab:f4:c4:45:c4:05:5b:7c:30:56:07: 05:d5:c5:35:85:25:5e:22:50:b4:2c:d3:0e:39:f7:65:50:c0: 75:d0:88:a2:08:92:90:9d:0c:b0:38:fe:e0:f6:50:d5:9c:8b: e1:db:59:70:4c:51:e1:bb:93:97:0f:94:92:75:ca:64:77:25: a9:c2:8b:b4:9e:1a:56:cf:7b:66:0f:d6:a7:7e:c4:3c:0b:4a: dd:23:2a:24:ee:46:61:c1:5c:8c:a8:40:7d:da:84:7f:6a:8e: 4b:3f:75:6d:01:86:26:e1:de:03:14:08:af:b0:4e:0e:5e:f0: 49:9e:29:a5:e5:2a:18:9a:f6:de:9c:42:f2:d1:96:53:26:77: a9:80:fa:26:c3:c8:8f:19:bf:5e:22:8e:0c:f6:2c:06:0c:19: 44:8b:54:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjYwNDE3MDMwODM0WhcNMjYwNDI0MDMwODM0WjAYMRYwFAYD VQQDEw02OWUxYTQzMi0yZDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1iX3Lt2zCIiaftsCkDWjC+IxsSqkNT+jE1EDGpDy3ZwFoRn8dK5W24s3iMW Fwt56G+EbAUuv/Er9kj3W08u8dV9UAqriikw1VWjxTIUYvl8I9TVaLwg8ELUCtr6 VT/osMbzQwasrvzfN+wPYkBRqmLauQ3VQZjAWGnD+KATn4Ncr2qeQiBSM4KAxNr1 eYmQCqTReMr2krc7C/ctWc0xRsNcvAbIwSQaYetEEuFrXO8vhQyawMb9A3vVP0AI Z+3u6xottEEBoqL57CSEwBVDu8WNvhrMfBDFsmlVskKoxu707Wi2Dvb1Ty47XdBy wH31Umi/nVXq40UtuLkQZYb9JwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKTqEhiC voJW3xaRmRiQh/oM2SxOMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArallRsv9XniQL8vbPS4JqJQ9P9uoa9UPn1DXRz1zZ7qKAnNE68WFGM5Vo4KI M5vpA21nVibE+1A5sAhRD1FH4IjFS9SO9deOTWqb3m92H3VlhiXs3JcbRkGl4LkH Rrsf0av0xEXEBVt8MFYHBdXFNYUlXiJQtCzTDjn3ZVDAddCIogiSkJ0MsDj+4PZQ 1ZyL4dtZcExR4buTlw+UknXKZHclqcKLtJ4aVs97Zg/Wp37EPAtK3SMqJO5GYcFc jKhAfdqEf2qOSz91bQGGJuHeAxQIr7BODl7wSZ4ppeUqGJr23pxC8tGWUyZ3qYD6 JsPIjxm/XiKODPYsBgwZRItUPQ== -----END CERTIFICATE-----Generated at Fri Apr 17 07:33:10 2026 by rpki-client