$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: mybP6RYzcty2vpc0I2I7sZFlEiGriIMJz1i95STEJvY= Subject key identifier: 14:CC:C7:1F:DF:F2:31:BB:C4:0A:B2:ED:A2:AD:31:B7:29:CE:A7:2C Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: E9 Signing time: Wed 13 May 2026 06:45:54 +0000 Manifest this update: Wed 13 May 2026 06:45:54 +0000 Manifest next update: Wed 20 May 2026 06:45:54 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: corgQeIIkRK4x+p+22OCVR8NBfbrnDbkh+8Fb81E9mI=) 2: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: kgI9j69ZuRKnS83zYB2SCGnkfw+45wKRpdDjx0NhraU=) 3: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: MV4I569w9zPiHP/yIqubx9xyWgXjsBIdhw/uq6cgQpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: May 13 06:45:54 2026 GMT Not After : May 20 06:45:54 2026 GMT Subject: CN=6a041e22-9865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a4:0f:eb:2a:23:2f:9b:7d:18:26:9b:0d:d9: 73:63:c6:30:02:b5:16:02:4e:a8:4b:63:ee:99:29: c7:3d:03:21:35:81:b2:4d:f0:54:71:ab:55:68:37: 32:5e:84:a6:11:99:e2:af:1c:06:75:0e:44:d8:6e: 09:58:8b:57:c0:87:b6:b6:75:eb:0f:b0:40:a4:30: ba:6f:21:a8:80:2a:b0:05:6d:a6:16:2c:26:4f:1a: 44:8e:14:2e:d0:3a:a7:d8:55:3f:03:d0:d8:de:9d: c5:8b:13:74:91:7a:79:6d:20:93:b4:02:10:32:cb: b0:4b:29:a8:6f:b0:39:d3:29:d7:7e:34:14:d7:75: 64:50:06:11:bf:ae:05:af:44:56:c7:46:2b:81:01: 40:7d:7f:05:49:ef:2c:45:3e:e0:78:0d:45:a5:ca: 8b:a8:74:2b:cb:a4:04:89:83:7e:50:d2:ac:36:c1: 7a:13:39:0b:61:61:16:a1:aa:96:7b:d7:35:a1:5c: 57:7a:86:80:55:cb:fb:dd:b2:81:3b:98:83:79:35: 2a:67:50:74:95:ef:7c:c2:b5:64:97:38:4f:05:a0: 28:cc:b4:20:8f:93:8b:5e:23:d7:22:d0:66:8b:d9: f5:0f:a6:61:58:0a:2b:47:1d:59:7a:4c:1a:ba:6a: bd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:CC:C7:1F:DF:F2:31:BB:C4:0A:B2:ED:A2:AD:31:B7:29:CE:A7:2C X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:ef:18:1b:90:36:b1:c1:13:86:2d:e3:65:bc:27:b9:28:0f: c7:7f:f5:bc:d7:c1:73:98:45:42:02:20:bc:ad:61:48:cc:f2: d7:0d:ab:44:9e:2f:7b:aa:ed:aa:56:bb:68:96:4d:02:01:b1: 96:18:0d:a9:81:38:11:5d:00:5f:a8:4e:e3:4a:4c:55:07:96: 7c:06:54:d9:13:0e:b5:7a:32:e0:fd:77:ae:40:6d:80:4b:0e: 26:45:19:ad:be:88:ad:ea:7f:94:e4:41:1d:87:1a:09:d6:37: 80:b8:7a:e8:c5:fe:07:d4:73:40:af:e5:64:15:d8:d3:15:42: c9:7a:eb:56:28:53:1e:39:70:9f:7f:63:48:07:f4:52:38:39: f1:48:33:6b:5d:b1:ca:18:48:53:f3:e6:d3:02:16:80:b1:0b: 67:6d:c3:9c:39:21:49:f1:a3:73:8f:92:4a:6c:9f:10:73:1f: 35:4a:ef:1f:0f:6b:e2:5f:fc:1e:ba:d4:7a:cc:41:fe:4a:63: 8b:a1:90:44:c5:b8:5b:93:1f:77:d2:fd:bd:e4:d0:42:43:50: 43:50:4e:61:50:04:c8:54:5e:97:cf:a2:40:f2:e3:b9:a9:dc: 45:de:c8:a0:23:6d:1e:e2:fe:a0:9b:79:15:6a:d9:07:c0:fb: 6a:0f:ef:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjYwNTEzMDY0NTU0WhcNMjYwNTIwMDY0NTU0WjAYMRYwFAYD VQQDEw02YTA0MWUyMi05ODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaQP6yojL5t9GCabDdlzY8YwArUWAk6oS2PumSnHPQMhNYGyTfBUcatVaDcy XoSmEZnirxwGdQ5E2G4JWItXwIe2tnXrD7BApDC6byGogCqwBW2mFiwmTxpEjhQu 0Dqn2FU/A9DY3p3FixN0kXp5bSCTtAIQMsuwSymob7A50ynXfjQU13VkUAYRv64F r0RWx0YrgQFAfX8FSe8sRT7geA1FpcqLqHQry6QEiYN+UNKsNsF6EzkLYWEWoaqW e9c1oVxXeoaAVcv73bKBO5iDeTUqZ1B0le98wrVklzhPBaAozLQgj5OLXiPXItBm i9n1D6ZhWAorRx1Zekwaumq91QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBTMxx/f 8jG7xAqy7aKtMbcpzqcsMB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQe8YG5A2scEThi3jZbwnuSgPx3/1vNfBc5hFQgIgvK1hSMzy1w2rRJ4ve6rt qla7aJZNAgGxlhgNqYE4EV0AX6hO40pMVQeWfAZU2RMOtXoy4P13rkBtgEsOJkUZ rb6Irep/lORBHYcaCdY3gLh66MX+B9RzQK/lZBXY0xVCyXrrVihTHjlwn39jSAf0 Ujg58Ugza12xyhhIU/Pm0wIWgLELZ23DnDkhSfGjc4+SSmyfEHMfNUrvHw9r4l/8 HrrUesxB/kpji6GQRMW4W5Mfd9L9veTQQkNQQ1BOYVAEyFRel8+iQPLjuancRd7I oCNtHuL+oJt5FWrZB8D7ag/vxw== -----END CERTIFICATE-----Generated at Wed May 13 15:12:03 2026 by rpki-client