$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: TZDO5F1Ry9fcu+60Mv88Gw0Ms1L69iuhlyLENjs61KM= Subject key identifier: AB:B2:CE:79:F0:B4:26:6C:78:7D:B3:58:9D:34:90:8E:9E:7A:1B:3D Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 043D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 0435 Signing time: Wed 13 May 2026 00:26:21 +0000 Manifest this update: Wed 13 May 2026 00:26:21 +0000 Manifest next update: Wed 20 May 2026 00:26:21 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: 58PDW3nPeZNzg4v+ZHy009exKiEbWUzwvoy/bQKlm0g=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: fIfbNfI4LK0sIc8YlB3yB2MWelYN+TJwvhzmec0KKmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: May 13 00:26:21 2026 GMT Not After : May 20 00:26:21 2026 GMT Subject: CN=6a03c52d-f0ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:06:fe:cc:2e:73:db:ce:36:4c:3e:fb:fd: 7c:34:fb:c0:b1:fd:ce:78:07:be:bc:e8:13:16:2a: 46:71:6e:e5:d4:8b:55:5b:98:45:5e:34:c8:ed:da: 04:1a:1c:66:27:5c:d8:6f:8d:4f:6f:38:d2:d1:69: 47:75:2e:5e:2c:55:cf:b9:6a:88:25:dc:98:6c:a2: f1:44:3c:a1:e2:63:f3:23:94:a0:30:47:36:ca:ea: fb:44:09:dc:1b:47:fa:65:f1:23:c3:33:8d:59:89: aa:e3:53:06:6b:a7:9d:9a:cd:d8:bc:83:09:4f:99: f0:9c:c3:6f:cf:10:cf:6c:58:16:3b:44:42:b2:6a: c4:1f:cb:13:86:ed:35:ce:5c:71:61:d2:6d:ac:e2: 99:e9:31:13:3b:0a:a7:69:44:c2:7f:42:70:e4:23: 1b:0b:9f:e2:65:d5:93:98:3b:e0:79:a2:46:26:75: b6:6c:c8:03:71:df:8c:70:96:a0:06:b7:f4:a3:96: 21:ce:8b:e3:41:59:e8:64:b7:0e:c5:c4:7c:a8:00: 0d:ae:dd:07:2f:1d:cd:fd:8e:37:b8:01:30:19:6a: 7e:c7:47:15:47:2b:8b:e5:03:56:29:6b:54:a3:c3: ff:74:8d:45:db:7a:85:3a:20:f8:cc:35:f6:58:48: 05:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:B2:CE:79:F0:B4:26:6C:78:7D:B3:58:9D:34:90:8E:9E:7A:1B:3D X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:2c:8b:5e:cd:3c:82:fe:54:bf:a6:4a:7c:f1:e6:28:24:29: 16:28:c0:1a:74:96:ae:21:31:89:da:67:06:6f:74:d9:b2:3f: f0:eb:ab:a3:2f:0b:76:1c:0e:12:99:89:20:ba:cc:b5:3b:82: 20:d5:42:a0:04:12:99:2a:fb:10:e1:73:d1:2b:bd:53:39:91: 8c:0e:04:2e:6e:25:2a:f0:78:67:57:97:56:e4:09:bb:30:a6: a3:85:b8:6b:7a:d3:6a:3e:07:5b:eb:6d:dd:f7:83:1b:38:19: b4:74:a3:5f:cd:ce:f3:a9:5b:ab:34:46:0c:66:f7:f4:ac:a7: 74:49:28:22:b0:bc:81:bd:e9:cc:2c:77:ce:86:7b:ad:2d:98: 99:10:11:25:5e:8b:93:be:63:53:e2:e9:d2:a4:15:38:12:98: 7a:e9:f2:6a:98:98:03:c9:31:ed:09:6f:ae:c0:35:63:9e:1a: b2:79:54:a0:2a:5b:e1:b5:cd:9a:f7:ae:c0:79:f7:db:79:dc: 9a:0d:ef:6c:b1:4a:0c:56:72:db:bd:a6:ae:04:b5:3d:61:f6: cc:3f:5c:a9:a6:b9:15:4e:03:ce:1a:17:96:70:7a:6e:d4:1e: 44:53:d6:e8:c6:45:83:15:d1:90:c6:41:5a:b7:06:1a:58:e6: 9e:9c:fe:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjYwNTEzMDAyNjIxWhcNMjYwNTIwMDAyNjIxWjAYMRYwFAYD VQQDEw02YTAzYzUyZC1mMGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPoG/swuc9vONkw++/18NPvAsf3OeAe+vOgTFipGcW7l1ItVW5hFXjTI7doE GhxmJ1zYb41PbzjS0WlHdS5eLFXPuWqIJdyYbKLxRDyh4mPzI5SgMEc2yur7RAnc G0f6ZfEjwzONWYmq41MGa6edms3YvIMJT5nwnMNvzxDPbFgWO0RCsmrEH8sThu01 zlxxYdJtrOKZ6TETOwqnaUTCf0Jw5CMbC5/iZdWTmDvgeaJGJnW2bMgDcd+McJag Brf0o5YhzovjQVnoZLcOxcR8qAANrt0HLx3N/Y43uAEwGWp+x0cVRyuL5QNWKWtU o8P/dI1F23qFOiD4zDX2WEgFOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKuyznnw tCZseH2zWJ00kI6eehs9MB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA2SyLXs08gv5Uv6ZKfPHmKCQpFijAGnSWriExidpnBm902bI/8Ouroy8LdhwO EpmJILrMtTuCINVCoAQSmSr7EOFz0Su9UzmRjA4ELm4lKvB4Z1eXVuQJuzCmo4W4 a3rTaj4HW+tt3feDGzgZtHSjX83O86lbqzRGDGb39KyndEkoIrC8gb3pzCx3zoZ7 rS2YmRARJV6Lk75jU+Lp0qQVOBKYeunyapiYA8kx7QlvrsA1Y54asnlUoCpb4bXN mveuwHn323ncmg3vbLFKDFZy272mrgS1PWH2zD9cqaa5FU4DzhoXlnB6btQeRFPW 6MZFgxXRkMZBWrcGGljmnpz+8Q== -----END CERTIFICATE-----Generated at Wed May 13 16:54:03 2026 by rpki-client