$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: ptRffhc9fGjHb3AS0ZLoGJ2tXeeVaAerN+b0Yfb4hX8= Subject key identifier: 14:6C:F7:1B:AE:26:A7:FE:71:78:26:09:41:5A:95:94:76:00:4A:54 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 045A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 044E Signing time: Wed 13 May 2026 00:23:16 +0000 Manifest this update: Wed 13 May 2026 00:23:15 +0000 Manifest next update: Wed 20 May 2026 00:23:15 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: 7yCp7EFRrVr49gvGwU+FLNKxnpGDXQn3zBJRozXPvts=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: I3945a68aAj4Bezh1bF6xRl/WpfQZcBM/2Xudp6szlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: May 13 00:23:15 2026 GMT Not After : May 20 00:23:15 2026 GMT Subject: CN=6a03c474-dc63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:94:b1:86:1c:29:4f:9c:2a:e8:ea:02:65:40: e5:7a:e3:0e:03:32:a9:33:3f:04:48:00:c9:5f:4e: 63:32:2d:43:6a:43:51:46:9c:d8:47:3d:62:a0:be: 36:27:85:78:22:53:7a:c2:fd:a7:d7:79:d2:3d:9f: ab:28:7c:05:bd:bc:d6:db:ad:8b:e4:10:3e:80:d6: 71:29:aa:1e:23:25:22:3d:a9:0b:d3:4c:21:98:8f: 97:89:a0:18:2a:52:32:10:c1:b0:6c:95:3c:cd:8f: d4:79:22:47:b5:9b:42:1f:b2:ab:5e:d2:a7:76:ce: 06:61:f5:44:c2:3d:c1:a4:6b:75:81:05:52:77:2b: c3:15:61:fb:75:e6:ca:ff:d9:45:31:fb:d1:18:37: 0d:9f:c3:5f:54:7a:f9:1a:22:85:5d:48:c0:19:9e: 0f:fc:ba:91:2a:8b:0a:5c:cf:74:fc:79:cc:9f:65: 10:72:a3:44:45:ca:04:c2:77:a7:c3:9d:5d:3b:7f: dd:c7:9e:9d:f7:50:06:93:fa:6b:23:6a:f8:83:c4: 21:c3:e2:25:37:7d:c6:0e:76:15:76:7c:83:e8:57: 73:b4:8f:33:c1:05:61:cc:a3:2f:28:74:67:a1:48: 74:a5:77:fe:51:02:40:cd:01:ff:b4:9a:04:e3:94: 77:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:6C:F7:1B:AE:26:A7:FE:71:78:26:09:41:5A:95:94:76:00:4A:54 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:3b:7c:b4:69:e0:42:f3:56:e0:1a:61:4b:ff:52:7f:07:84: f1:8c:7b:2d:f3:22:27:3c:3c:8a:a5:76:d0:69:a7:9b:68:b8: 47:5a:1a:01:72:a1:ec:cc:1b:8b:cd:5c:ee:30:ed:76:8c:06: 4a:72:19:31:dd:6b:d9:c1:15:27:d4:3c:76:f1:d1:7a:66:01: eb:6a:75:29:d4:40:e7:c0:14:f8:f1:5a:ab:56:8d:29:23:6b: ed:3d:73:5a:88:45:88:04:4b:6b:b4:76:d3:64:48:b8:00:a7: 40:b4:ad:e8:58:c8:34:d9:da:57:6f:ae:ae:d6:c9:ed:e1:2f: c6:32:e5:9b:50:93:b5:5f:8e:d6:73:99:92:73:3b:1b:64:d9: 54:58:fe:e2:5e:9a:be:53:4e:84:22:e5:5c:b1:c3:1e:17:c5: 2c:21:af:0e:97:24:68:42:3e:a0:95:6d:f8:9a:59:4e:fc:31: 1e:c3:7b:12:7f:0d:6a:9f:cc:33:b5:53:f5:c4:d8:83:92:23: 8f:fe:d5:7d:11:10:88:9d:30:03:2a:7a:b0:80:c3:a4:fc:4c: 44:24:74:92:a5:f6:99:34:25:7d:7e:c8:36:30:d5:35:3b:23: 12:62:41:01:08:d5:51:09:1b:59:3c:8c:76:d7:60:0b:97:41: b9:1a:e9:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjYwNTEzMDAyMzE1WhcNMjYwNTIwMDAyMzE1WjAYMRYwFAYD VQQDEw02YTAzYzQ3NC1kYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpSxhhwpT5wq6OoCZUDleuMOAzKpMz8ESADJX05jMi1DakNRRpzYRz1ioL42 J4V4IlN6wv2n13nSPZ+rKHwFvbzW262L5BA+gNZxKaoeIyUiPakL00whmI+XiaAY KlIyEMGwbJU8zY/UeSJHtZtCH7KrXtKnds4GYfVEwj3BpGt1gQVSdyvDFWH7debK /9lFMfvRGDcNn8NfVHr5GiKFXUjAGZ4P/LqRKosKXM90/HnMn2UQcqNERcoEwnen w51dO3/dx56d91AGk/prI2r4g8Qhw+IlN33GDnYVdnyD6FdztI8zwQVhzKMvKHRn oUh0pXf+UQJAzQH/tJoE45R39wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBRs9xuu Jqf+cXgmCUFalZR2AEpUMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWjt8tGngQvNW4BphS/9SfweE8Yx7LfMiJzw8iqV20Gmnm2i4R1oaAXKh7Mwb i81c7jDtdowGSnIZMd1r2cEVJ9Q8dvHRemYB62p1KdRA58AU+PFaq1aNKSNr7T1z WohFiARLa7R202RIuACnQLSt6FjINNnaV2+urtbJ7eEvxjLlm1CTtV+O1nOZknM7 G2TZVFj+4l6avlNOhCLlXLHDHhfFLCGvDpckaEI+oJVt+JpZTvwxHsN7En8Nap/M M7VT9cTYg5Ijj/7VfREQiJ0wAyp6sIDDpPxMRCR0kqX2mTQlfX7INjDVNTsjEmJB AQjVUQkbWTyMdtdgC5dBuRrpYQ== -----END CERTIFICATE-----Generated at Wed May 13 03:53:49 2026 by rpki-client