$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: ZFJiESFbOcMlKrsqc4IpSqBROJ/PJCrT77SiA/ngXws= Subject key identifier: 1B:61:DE:9A:E9:CB:04:F1:D0:49:61:F8:9C:6E:52:FF:9F:9C:66:D1 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 3547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 353F Signing time: Tue 12 May 2026 14:45:04 +0000 Manifest this update: Tue 12 May 2026 14:45:04 +0000 Manifest next update: Tue 19 May 2026 14:45:04 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: HfaR8YooTTBy6mqfniflxyUHsNCn0OA/Pu1UiTjlPeM=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: H75vp8KnVCyEkBU2ciSVAYWnVqr6J6YZvmHhlQG4SNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13639 (0x3547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: May 12 14:45:04 2026 GMT Not After : May 19 14:45:04 2026 GMT Subject: CN=6a033cf0-4e29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:b3:9d:f6:33:3b:44:a0:03:bc:f0:75:fc:6d: e4:ad:30:df:06:a5:01:3b:96:b1:2d:86:54:93:c0: d5:67:ba:bd:64:6f:51:4d:41:c1:85:20:00:6f:02: 26:47:84:e6:9c:4b:2d:38:a7:9b:92:4f:e8:22:a0: d5:87:9b:1e:d1:56:5b:9a:f3:b0:22:5c:f7:d7:1c: 33:02:be:22:3c:04:c8:be:68:da:ca:6c:0a:8b:9e: 57:55:aa:b8:67:ba:3a:46:cc:cc:1b:85:b4:d9:be: 58:3d:a6:77:31:d0:dd:4d:26:6b:87:80:99:b7:74: 19:6b:fd:a9:72:81:1d:ea:4c:9e:74:f1:a8:0b:97: ec:29:68:1b:31:f1:5d:af:4f:b7:62:2f:62:c6:1d: b6:07:5b:db:ae:54:7f:a6:11:2f:3f:c5:1a:b8:fc: d3:64:bd:04:e7:19:fe:2d:6e:9f:0f:ac:52:db:5d: 1d:0c:2e:0f:9a:ab:0a:c0:8d:06:02:9c:23:c1:92: f0:e6:cb:6e:90:04:00:1b:87:c2:c9:2a:d4:cc:96: fe:75:6a:bc:69:be:b5:2a:45:95:77:03:06:cd:17: 58:73:0c:f7:b5:4e:c9:2c:b1:a0:e7:4b:90:fd:70: b6:ea:ed:2b:b3:17:04:51:5d:98:ea:d3:4c:ce:27: 93:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:61:DE:9A:E9:CB:04:F1:D0:49:61:F8:9C:6E:52:FF:9F:9C:66:D1 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:0e:43:74:3b:62:29:a6:30:d1:28:fd:78:bc:e5:45:17:fe: 33:d3:cb:f3:26:c1:3e:ef:a7:d7:c1:24:6f:4e:0e:18:fb:29: bd:36:84:d6:06:bd:01:80:e5:f5:1d:7a:eb:81:c2:93:1c:92: dc:f4:9d:64:d5:47:15:a0:66:2c:a2:70:2b:be:88:bd:18:b5: 4a:b4:70:4c:c9:16:51:85:ad:22:47:24:f6:ee:d8:8f:72:30: 3f:9e:2a:d2:86:ff:4c:48:ad:ed:38:06:f4:4d:45:44:9e:98: fc:09:52:a7:68:6d:df:75:56:4a:a9:0e:47:7d:34:0c:1f:71: 83:00:8d:f3:26:bf:1c:40:fd:f3:3f:62:8f:3f:8a:20:2e:7e: a4:c5:ed:fa:e0:aa:56:4e:3c:ba:56:cf:3b:6c:2d:1b:24:8f: bf:d3:87:21:fc:72:a3:42:56:ca:b5:96:c0:6f:fc:91:44:73: 08:40:7b:a8:43:57:7a:6a:21:8e:46:2b:6c:83:8c:aa:9a:35: 4d:f5:d7:8b:61:2e:06:63:0e:62:78:e3:7a:15:5c:ca:d0:2f: 69:3d:98:87:bf:b5:c0:85:da:a4:61:37:59:8d:aa:61:62:69: 57:61:fe:9c:a0:48:f3:e3:ce:50:85:53:93:30:71:22:9c:eb: 68:44:8a:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjYwNTEyMTQ0NTA0WhcNMjYwNTE5MTQ0NTA0WjAYMRYwFAYD VQQDEw02YTAzM2NmMC00ZTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjbOd9jM7RKADvPB1/G3krTDfBqUBO5axLYZUk8DVZ7q9ZG9RTUHBhSAAbwIm R4TmnEstOKebkk/oIqDVh5se0VZbmvOwIlz31xwzAr4iPATIvmjaymwKi55XVaq4 Z7o6RszMG4W02b5YPaZ3MdDdTSZrh4CZt3QZa/2pcoEd6kyedPGoC5fsKWgbMfFd r0+3Yi9ixh22B1vbrlR/phEvP8UauPzTZL0E5xn+LW6fD6xS210dDC4PmqsKwI0G ApwjwZLw5stukAQAG4fCySrUzJb+dWq8ab61KkWVdwMGzRdYcwz3tU7JLLGg50uQ /XC26u0rsxcEUV2Y6tNMzieTGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBth3prp ywTx0Elh+JxuUv+fnGbRMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACg5DdDtiKaYw0Sj9eLzlRRf+M9PL8ybBPu+n18Ekb04OGPspvTaE1ga9AYDl 9R1664HCkxyS3PSdZNVHFaBmLKJwK76IvRi1SrRwTMkWUYWtIkck9u7Yj3IwP54q 0ob/TEit7TgG9E1FRJ6Y/AlSp2ht33VWSqkOR300DB9xgwCN8ya/HED98z9ijz+K IC5+pMXt+uCqVk48ulbPO2wtGySPv9OHIfxyo0JWyrWWwG/8kURzCEB7qENXemoh jkYrbIOMqpo1TfXXi2EuBmMOYnjjehVcytAvaT2Yh7+1wIXapGE3WY2qYWJpV2H+ nKBI8+POUIVTkzBxIpzraESK6Q== -----END CERTIFICATE-----Generated at Wed May 13 07:16:53 2026 by rpki-client