$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft File: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft (raw, json) Hash identifier: yrcdv4C1k1MhOcNz00Y/yT2lN4fBu3iVDtFpvQezXMQ= Subject key identifier: 67:E8:2C:C1:DB:1C:BB:B6:36:3B:4D:DB:87:C0:37:80:DE:52:51:78 Authority key identifier: 29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC Certificate issuer: /CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft Manifest number: 011B Signing time: Wed 13 May 2026 05:57:29 +0000 Manifest this update: Wed 13 May 2026 05:57:29 +0000 Manifest next update: Wed 20 May 2026 05:57:29 +0000 Files and hashes: 1: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl (hash: NMkwNCwrOITB0t2LZXSPG128V0AtCklnG5i9Sd/L4Hc=) 2: 38161248A26911EFBF6D0319C4F9AE02.roa (hash: AVpmO1XfQqx7osD3xv12YLKG1Ejq79RCs8GNCY34Q2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Validity Not Before: May 13 05:57:29 2026 GMT Not After : May 20 05:57:29 2026 GMT Subject: CN=6a0412c9-e517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:25:81:e0:f0:c7:0a:6b:b9:75:bd:21:3d:af: 93:9f:24:4b:30:78:a8:e0:1f:e5:60:f2:dd:40:37: 98:cd:60:94:12:d2:f5:55:bb:ba:e9:e7:44:52:c5: 86:30:77:47:66:46:a7:25:c4:96:19:47:29:1d:a6: bf:fe:e0:5d:f3:73:bc:cb:c5:0a:ce:7b:4f:a5:5d: 11:0e:a2:ae:f1:6a:89:5b:16:f3:c5:10:47:59:14: 77:00:a7:ca:23:e2:12:fd:2c:c1:39:00:d9:01:5f: 91:eb:17:ba:b5:81:da:f4:ad:d8:ee:b9:78:3f:01: e5:ff:23:cd:61:a0:6f:89:ab:6f:8c:e6:54:5c:42: 3f:c3:2a:54:1b:be:3e:78:83:18:2b:14:3b:65:c8: f4:ce:c0:76:68:6c:99:7b:45:41:e8:18:a8:9a:d2: 11:3a:36:a4:0b:67:f7:e3:b4:8f:4d:af:17:b8:7d: a0:c4:2e:8f:d1:84:2d:ca:f4:8f:83:67:3d:3d:93: dc:19:5e:91:44:1d:65:77:30:e6:03:b3:e9:53:7c: 78:8a:d9:d9:90:0b:6e:23:b9:2d:9e:48:d9:29:c5: 18:55:58:b0:ef:c0:6f:2f:21:8c:96:fd:7a:b2:0e: b0:8d:93:0f:87:d4:23:d2:a1:d3:59:ba:ad:b1:70: a8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E8:2C:C1:DB:1C:BB:B6:36:3B:4D:DB:87:C0:37:80:DE:52:51:78 X509v3 Authority Key Identifier: keyid:29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:ac:ef:7a:7d:c9:f7:a4:2e:d2:47:a9:2e:64:b3:f1:4f:48: 99:10:2c:d8:77:6a:d2:f3:85:30:b6:95:db:9b:72:98:86:c8: 28:d8:3d:76:41:48:1e:b2:f9:79:bf:ef:40:b3:42:51:7b:9f: 73:5f:21:ed:77:83:bb:60:f8:ae:59:cf:03:7b:8c:c7:83:8d: 67:79:2a:ad:50:d5:f7:ea:b1:27:e1:f4:1b:bb:20:42:88:80: 48:fa:72:e3:51:52:c1:a8:4c:6b:95:28:b9:e6:ee:40:fe:44: c1:33:cb:db:96:96:ce:13:9a:1d:d0:9e:31:6d:8d:bb:e1:fa: 32:bb:9c:ec:c4:0b:85:b6:94:32:36:72:dd:cb:83:45:db:fb: e8:69:ec:83:ac:86:c6:00:91:be:bf:3f:67:eb:84:e0:ba:5a: 83:c3:e3:c2:47:73:e2:6f:82:5c:e4:3c:91:c2:d7:85:3e:0f: 42:ab:58:fe:53:17:f6:08:da:09:35:b6:de:02:27:83:9c:a8: 67:5b:6b:66:ac:6c:0c:80:ce:39:df:82:f5:b3:0f:81:55:75: 65:d2:44:c9:f9:4b:77:6d:e9:87:7e:46:9f:8b:e8:54:b9:ea: b4:9c:de:b6:b4:02:35:7d:af:a4:60:e1:cc:d7:64:29:e8:77: e7:bc:ba:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDI5M0FDNjQwNTMwOURFOTQ5NTE2ODdGRTE3Mjk2QURE Q0Q5NTcyRkMwHhcNMjYwNTEzMDU1NzI5WhcNMjYwNTIwMDU1NzI5WjAYMRYwFAYD VQQDEw02YTA0MTJjOS1lNTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiWB4PDHCmu5db0hPa+TnyRLMHio4B/lYPLdQDeYzWCUEtL1Vbu66edEUsWG MHdHZkanJcSWGUcpHaa//uBd83O8y8UKzntPpV0RDqKu8WqJWxbzxRBHWRR3AKfK I+IS/SzBOQDZAV+R6xe6tYHa9K3Y7rl4PwHl/yPNYaBviatvjOZUXEI/wypUG74+ eIMYKxQ7Zcj0zsB2aGyZe0VB6BiomtIROjakC2f347SPTa8XuH2gxC6P0YQtyvSP g2c9PZPcGV6RRB1ldzDmA7PpU3x4itnZkAtuI7ktnkjZKcUYVViw78BvLyGMlv16 sg6wjZMPh9Qj0qHTWbqtsXCoRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGfoLMHb HLu2NjtN24fAN4DeUlF4MB8GA1UdIwQYMBaAFCk6xkBTCd6UlRaH/hcpat3NlXL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9DN0ZBRDM2OEEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNwU1ZGb2YtRnlscTNjMlZj dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tUckdRRk1KM3BTVkZvZi1GeWxxM2MyVmN2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9DN0ZBRDM2OEEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNw U1ZGb2YtRnlscTNjMlZjdncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoqzven3J96Qu0kepLmSz8U9ImRAs2Hdq0vOFMLaV25tymIbIKNg9dkFIHrL5 eb/vQLNCUXufc18h7XeDu2D4rlnPA3uMx4ONZ3kqrVDV9+qxJ+H0G7sgQoiASPpy 41FSwahMa5UouebuQP5EwTPL25aWzhOaHdCeMW2Nu+H6Mruc7MQLhbaUMjZy3cuD Rdv76Gnsg6yGxgCRvr8/Z+uE4Lpag8Pjwkdz4m+CXOQ8kcLXhT4PQqtY/lMX9gja CTW23gIng5yoZ1trZqxsDIDOOd+C9bMPgVV1ZdJEyflLd23ph35Gn4voVLnqtJze trQCNX2vpGDhzNdkKeh357y6/Q== -----END CERTIFICATE-----Generated at Wed May 13 13:23:30 2026 by rpki-client