$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: 7bLWc5p4RoY2sz05Qs0ap8tmWaVh28r5WjnbVfk9eOw= Subject key identifier: EA:B0:D9:1E:36:3D:A0:D4:B9:0D:23:83:A1:5B:6A:39:73:C6:D2:43 Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: FA Signing time: Wed 13 May 2026 05:38:06 +0000 Manifest this update: Wed 13 May 2026 05:38:05 +0000 Manifest next update: Wed 20 May 2026 05:38:05 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: UuEuxOkNezzd0Wd0/ZYmrTcCzdLNFow6TqXRkJ4cCwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: May 13 05:38:05 2026 GMT Not After : May 20 05:38:05 2026 GMT Subject: CN=6a040e3d-fd43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:77:2c:34:5e:53:00:0a:07:07:76:c1:d7:e7: aa:24:0f:49:b8:1c:6e:66:15:55:0d:77:6a:e4:9e: 30:39:34:0c:b3:3c:61:66:22:44:93:11:00:f3:05: ee:39:28:4f:ca:09:13:70:48:ad:62:b4:97:b6:4b: 6f:04:4d:13:a8:a2:0c:9b:39:d2:6b:16:b7:b3:4d: f3:f2:f0:d1:86:76:f4:dc:d7:6e:79:08:e1:46:73: a5:eb:fb:e9:70:af:64:62:66:86:17:74:bf:57:c7: f0:62:99:b1:47:9f:a4:66:65:37:1a:32:f8:3e:c5: 46:b4:fb:90:7a:d4:3d:9a:18:4f:2e:a5:0d:de:66: 94:4e:f4:96:94:1f:59:7f:36:5d:61:40:68:d6:b8: ef:e0:f2:6c:3e:ac:d8:45:74:07:7c:89:50:d0:37: c7:eb:35:d7:34:ef:99:0f:47:38:10:fd:06:45:b4: 01:b9:16:4c:33:ee:fc:11:b1:30:da:1f:21:53:13: 85:4c:99:4d:33:c1:a8:ee:e6:a3:e2:63:15:88:77: 39:03:97:94:14:72:28:db:8d:fe:92:93:51:7a:aa: 72:7a:8a:39:33:8e:b5:e4:47:de:ea:fa:80:a2:77: b5:0f:b3:c5:ae:8b:14:c8:e6:2b:9c:c8:bc:55:f9: 04:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B0:D9:1E:36:3D:A0:D4:B9:0D:23:83:A1:5B:6A:39:73:C6:D2:43 X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c1:5b:fc:7f:93:10:37:52:ab:33:f1:84:2a:d0:5b:ed:c0: ae:ee:25:b1:b7:94:14:e7:8f:6f:e6:08:d7:6d:f0:5f:34:fc: bb:3a:75:66:3d:6e:0c:22:29:a1:d3:c7:a8:e1:44:43:25:0b: fe:10:75:e2:3c:20:65:21:2f:09:0f:c6:c0:63:13:04:39:3d: 52:13:dd:f3:17:c9:e2:df:06:5d:8a:39:a5:06:1c:07:88:1f: 36:7b:f4:c5:2b:0f:52:4d:d6:bd:82:c0:ef:7e:5c:d9:ef:e8: 6c:a9:28:4c:58:6b:e3:2e:98:45:87:b5:79:3a:17:43:3b:a4: 96:8e:88:e5:fa:f6:d4:80:17:42:1e:d2:52:e5:84:a9:41:c3: 14:f4:fd:e2:f2:a3:8f:5b:57:bb:f3:0e:7c:bc:8a:fa:e1:54: 07:8c:3a:7a:14:d4:0d:99:e8:8b:22:44:00:c0:15:09:fe:6a: df:87:71:0a:a9:1f:30:98:a2:aa:0d:a4:a7:27:05:3a:1c:ba: 54:3c:20:2d:47:07:50:93:b0:c8:d1:5b:54:f4:bc:73:d6:c7: 92:d0:23:80:e1:ea:68:8e:87:70:0b:d4:2c:06:f0:19:bd:c3: ab:b9:a8:0a:85:88:e4:9a:aa:55:26:71:15:2e:4b:18:a0:8a: 48:2d:95:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFMUUxMTAvBgNVBAUTKDI4RURBN0I5NUQ1RThENDU2MkE3NTk3NEM2REQ3REE2 NEMyQTJBODYwHhcNMjYwNTEzMDUzODA1WhcNMjYwNTIwMDUzODA1WjAYMRYwFAYD VQQDEw02YTA0MGUzZC1mZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63csNF5TAAoHB3bB1+eqJA9JuBxuZhVVDXdq5J4wOTQMszxhZiJEkxEA8wXu OShPygkTcEitYrSXtktvBE0TqKIMmznSaxa3s03z8vDRhnb03NdueQjhRnOl6/vp cK9kYmaGF3S/V8fwYpmxR5+kZmU3GjL4PsVGtPuQetQ9mhhPLqUN3maUTvSWlB9Z fzZdYUBo1rjv4PJsPqzYRXQHfIlQ0DfH6zXXNO+ZD0c4EP0GRbQBuRZMM+78EbEw 2h8hUxOFTJlNM8Go7uaj4mMViHc5A5eUFHIo243+kpNReqpyeoo5M4615Efe6vqA one1D7PFrosUyOYrnMi8VfkEHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOqw2R42 PaDUuQ0jg6FbajlzxtJDMB8GA1UdIwQYMBaAFCjtp7ldXo1FYqdZdMbdfaZMKiqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkUxRS9ENDA5RjgyQUQx NjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpVVmlwMWwweHQxOXBrd3FL b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS9ENDA5RjgyQUQxNjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpV VmlwMWwweHQxOXBrd3FLb1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG8Fb/H+TEDdSqzPxhCrQW+3Aru4lsbeUFOePb+YI123wXzT8uzp1Zj1uDCIp odPHqOFEQyUL/hB14jwgZSEvCQ/GwGMTBDk9UhPd8xfJ4t8GXYo5pQYcB4gfNnv0 xSsPUk3WvYLA735c2e/obKkoTFhr4y6YRYe1eToXQzuklo6I5fr21IAXQh7SUuWE qUHDFPT94vKjj1tXu/MOfLyK+uFUB4w6ehTUDZnoiyJEAMAVCf5q34dxCqkfMJii qg2kpycFOhy6VDwgLUcHUJOwyNFbVPS8c9bHktAjgOHqaI6HcAvULAbwGb3Dq7mo CoWI5JqqVSZxFS5LGKCKSC2VUg== -----END CERTIFICATE-----Generated at Wed May 13 10:44:16 2026 by rpki-client