$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft File: KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json) Hash identifier: CzhUGFUqm9cOcvZRhCqWvZDtxGvXa+7sjJx10GU+EZ8= Subject key identifier: 1E:E0:D6:3A:73:09:5F:C6:CF:38:9C:BC:FB:3D:3C:EF:D7:10:C4:FB Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1B1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft Manifest number: 1AF9 Signing time: Tue 12 May 2026 16:19:32 +0000 Manifest this update: Tue 12 May 2026 16:19:31 +0000 Manifest next update: Tue 19 May 2026 16:19:31 +0000 Files and hashes: 1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: qGOodw1FLQPL1miP+t0EGCO5JWOpb+VSLvPo+C2HKJE=) 2: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: y1WBN7gHbpcQFgS5AiIM5+b+xvlqJCl6oOkurOSohSs=) 3: 442A935E2F1F11F0A35F5757C4F9AE02.roa (hash: Kuw7O4GbqUm/LsdHrCx6y55gHQykPcsm3zG17OVPWXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6943 (0x1b1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: May 12 16:19:31 2026 GMT Not After : May 19 16:19:31 2026 GMT Subject: CN=6a035314-692c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4a:eb:6d:11:db:52:36:f5:e1:94:94:73:48: 05:7d:fa:64:d9:08:e4:5d:70:9d:db:45:99:a2:95: a7:a1:88:57:34:c3:07:a3:d4:61:1f:dd:26:e7:0a: c7:8f:54:ca:a5:e4:7c:1b:0c:7f:73:2d:ee:8f:02: 62:dc:df:41:4d:d0:55:aa:af:18:04:1f:bc:a4:ca: db:43:66:d8:15:ab:f5:43:43:63:41:be:bc:6f:8e: e7:8d:32:22:ca:4b:04:f5:bf:fe:7c:d1:08:35:d7: 10:ee:17:82:b0:57:7c:e2:f3:df:ae:70:6f:d6:54: 58:e4:70:60:04:64:cb:3d:ad:57:43:0e:90:ae:aa: 66:eb:5e:a6:a7:f3:68:14:0a:81:a6:d0:b0:a1:47: d3:3e:63:12:a2:4d:bd:ae:c7:3f:a6:cf:c0:3f:53: 5c:fb:db:b7:4d:86:11:d7:93:c7:29:8c:d4:9b:bc: e7:18:ed:26:e8:fe:c4:0d:d5:66:a2:70:35:99:89: ca:44:b9:c2:3e:61:3d:b2:f9:92:9a:89:df:df:5a: 94:43:4a:02:76:a8:43:e7:04:74:a2:d2:e0:fc:38: 64:3d:74:e6:62:13:d1:ea:fb:97:ed:94:72:1c:1e: 54:7e:9a:bc:32:72:d0:a7:35:6c:69:69:f7:df:c7: bc:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E0:D6:3A:73:09:5F:C6:CF:38:9C:BC:FB:3D:3C:EF:D7:10:C4:FB X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:3d:ab:1d:d1:fa:11:ff:e0:74:12:1d:bd:e5:dd:75:df:56: 8e:f8:17:39:bb:3b:06:12:01:72:6a:46:a0:2e:05:97:d7:35: 86:c6:24:67:09:b0:cb:a7:bc:2c:61:25:a7:bb:d4:6a:50:c9: 76:25:26:c0:af:6d:6c:b1:9b:88:5a:4b:73:8c:79:b9:6b:f3: 4f:2b:f3:2c:31:93:ec:e6:3d:3f:4e:71:82:83:e0:0a:fd:43: fa:6e:40:9d:7e:b2:2b:d3:01:cb:ef:4f:a3:41:11:82:9f:9a: 9d:25:45:95:a8:3d:76:e5:a5:11:80:48:77:81:0d:a8:c0:31: 35:59:a7:bd:1a:92:53:2d:76:54:53:80:f1:b1:4e:6c:e7:2b: 41:2e:bc:8e:ed:01:9b:31:07:f9:e0:50:da:db:c1:5c:ea:61: 8d:6c:82:c3:95:60:3a:94:7f:1c:80:d3:30:e0:a2:9e:5d:b9: 7a:92:df:b2:c4:6a:7f:e4:5d:d2:67:38:33:10:be:0a:5d:4e: c1:f4:11:6f:d8:c8:e0:af:c2:00:8c:59:b7:fd:0a:6d:02:7e: 75:dc:fd:55:60:cf:a8:fc:d3:e7:4a:9c:29:fa:17:bf:7c:b2: d8:32:d7:7d:97:35:0c:fe:aa:a6:f3:11:d6:a2:34:5e:c7:bc: 6b:28:1b:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjYwNTEyMTYxOTMxWhcNMjYwNTE5MTYxOTMxWjAYMRYwFAYD VQQDEw02YTAzNTMxNC02OTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0rrbRHbUjb14ZSUc0gFffpk2QjkXXCd20WZopWnoYhXNMMHo9RhH90m5wrH j1TKpeR8Gwx/cy3ujwJi3N9BTdBVqq8YBB+8pMrbQ2bYFav1Q0NjQb68b47njTIi yksE9b/+fNEINdcQ7heCsFd84vPfrnBv1lRY5HBgBGTLPa1XQw6Qrqpm616mp/No FAqBptCwoUfTPmMSok29rsc/ps/AP1Nc+9u3TYYR15PHKYzUm7znGO0m6P7EDdVm onA1mYnKRLnCPmE9svmSmonf31qUQ0oCdqhD5wR0otLg/DhkPXTmYhPR6vuX7ZRy HB5Ufpq8MnLQpzVsaWn338e8nQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB7g1jpz CV/GzzicvPs9PO/XEMT7MB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REEyRC84MzgzNjIwQTUwRDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJl VGNuZHZGZHE0bmNCSzhOMWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaD2rHdH6Ef/gdBIdveXddd9WjvgXObs7BhIBcmpGoC4Fl9c1hsYkZwmwy6e8 LGElp7vUalDJdiUmwK9tbLGbiFpLc4x5uWvzTyvzLDGT7OY9P05xgoPgCv1D+m5A nX6yK9MBy+9Po0ERgp+anSVFlag9duWlEYBId4ENqMAxNVmnvRqSUy12VFOA8bFO bOcrQS68ju0BmzEH+eBQ2tvBXOphjWyCw5VgOpR/HIDTMOCinl25epLfssRqf+Rd 0mc4MxC+Cl1OwfQRb9jI4K/CAIxZt/0KbQJ+ddz9VWDPqPzT50qcKfoXv3yy2DLX fZc1DP6qpvMR1qI0Xse8aygbzQ== -----END CERTIFICATE-----Generated at Wed May 13 05:00:32 2026 by rpki-client