$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: WhDccVXO1MRi0/bf7vApVUjW5DwGNvZnc4RMCk46sog= Subject key identifier: 91:8C:64:E7:51:A4:E3:A8:9C:F5:56:D8:E5:84:1B:08:61:58:61:C1 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 014A Signing time: Wed 13 May 2026 05:24:10 +0000 Manifest this update: Wed 13 May 2026 05:24:09 +0000 Manifest next update: Wed 20 May 2026 05:24:09 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: 9qrI7bzjV6d7uzEXbALBpuWlcM/bRN660lSpgUO6/LE=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: vOf/o1JHkb8wuECkMMHoKSsb6jXZeHUN4IdzhUHE9fc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: May 13 05:24:09 2026 GMT Not After : May 20 05:24:09 2026 GMT Subject: CN=6a040afa-9c72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:4e:f0:a4:0a:12:9e:91:0a:11:1f:63:23: ff:c0:e5:5c:f9:46:56:4c:04:14:73:f9:87:f2:07: f1:5b:29:b1:47:39:8a:63:70:2c:de:0b:a7:72:83: f0:d8:ab:cb:9e:72:3f:d9:b5:78:46:df:e4:2b:88: 23:b2:8f:22:a2:c9:ee:4a:d8:ce:e6:97:e8:0a:88: 6e:57:3c:f1:d7:cf:9e:45:65:db:35:fc:62:5b:5c: 5d:89:36:33:e6:69:aa:4f:a2:8f:5e:fe:ec:45:21: ce:99:36:5d:1f:d2:c4:72:74:c2:6a:6e:37:60:96: b8:fb:c7:93:52:d0:ea:89:53:71:6e:b7:0d:6d:ae: a1:2c:e0:35:35:51:b8:79:95:f5:93:96:18:f5:a2: 6f:8d:c7:15:e6:83:e3:89:ee:8b:4e:fc:4b:fb:79: b3:f3:55:13:7b:78:25:cd:e3:89:38:14:44:b6:9f: 6d:7f:34:3c:96:2f:ea:94:0f:a7:fa:b2:ec:05:87: fc:dc:37:f0:b3:b4:51:13:0e:44:bc:22:ec:97:06: 85:c7:f6:fe:9a:cb:21:da:4d:30:1e:bf:f9:92:48: 81:ef:cd:d5:e8:0c:94:7a:aa:04:06:49:f5:af:55: 4c:0e:03:3f:d6:8e:66:f0:bd:61:6a:a4:e8:6b:2e: ea:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:8C:64:E7:51:A4:E3:A8:9C:F5:56:D8:E5:84:1B:08:61:58:61:C1 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:80:63:40:11:fe:92:f6:c1:a7:31:e5:3d:e7:5b:c4:47:ed: 74:e1:c8:6a:7b:0e:16:da:88:10:0f:62:4d:2d:6d:90:dc:fb: db:e9:a5:cd:48:f3:35:8e:b5:59:91:bd:b6:89:22:f2:0b:51: 4e:f1:f5:04:7b:50:4d:04:80:69:a0:1a:81:ec:d1:a2:84:6e: 53:c7:1f:74:72:78:6f:93:43:4d:fa:cc:53:90:90:9e:20:48: 2e:8d:29:e0:3a:1b:46:27:03:4c:22:60:d4:ee:7a:47:64:3e: d0:0c:ad:8c:63:45:2f:e9:15:2e:e6:5c:3f:52:bc:4a:2a:1b: a9:78:15:8a:0a:4c:65:9e:cf:9c:fa:83:9f:91:93:cf:5e:f5: fa:e9:4b:d0:35:f1:65:10:79:15:84:69:55:8d:4f:d6:de:2f: e9:a1:44:84:d7:3c:ed:62:34:07:88:19:08:34:44:e6:ad:eb: 8d:0f:0e:f4:2c:11:5d:8a:c1:ee:87:03:89:ee:cc:50:a4:8b: d9:4a:79:2a:06:74:c8:7b:ef:3d:7e:06:29:00:43:58:78:9e: d0:8c:53:79:b2:24:b8:f7:87:7d:58:58:6f:09:20:e2:2d:81: af:91:4b:c2:1e:4a:56:68:a1:16:79:43:95:53:10:8c:a8:5a: 76:b9:e1:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjYwNTEzMDUyNDA5WhcNMjYwNTIwMDUyNDA5WjAYMRYwFAYD VQQDEw02YTA0MGFmYS05YzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/hO8KQKEp6RChEfYyP/wOVc+UZWTAQUc/mH8gfxWymxRzmKY3As3guncoPw 2KvLnnI/2bV4Rt/kK4gjso8iosnuStjO5pfoCohuVzzx18+eRWXbNfxiW1xdiTYz 5mmqT6KPXv7sRSHOmTZdH9LEcnTCam43YJa4+8eTUtDqiVNxbrcNba6hLOA1NVG4 eZX1k5YY9aJvjccV5oPjie6LTvxL+3mz81UTe3glzeOJOBREtp9tfzQ8li/qlA+n +rLsBYf83Dfws7RREw5EvCLslwaFx/b+mssh2k0wHr/5kkiB783V6AyUeqoEBkn1 r1VMDgM/1o5m8L1haqToay7qHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJGMZOdR pOOonPVW2OWEGwhhWGHBMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGoBjQBH+kvbBpzHlPedbxEftdOHIansOFtqIEA9iTS1tkNz72+mlzUjzNY61 WZG9toki8gtRTvH1BHtQTQSAaaAagezRooRuU8cfdHJ4b5NDTfrMU5CQniBILo0p 4DobRicDTCJg1O56R2Q+0AytjGNFL+kVLuZcP1K8SiobqXgVigpMZZ7PnPqDn5GT z171+ulL0DXxZRB5FYRpVY1P1t4v6aFEhNc87WI0B4gZCDRE5q3rjQ8O9CwRXYrB 7ocDie7MUKSL2Up5KgZ0yHvvPX4GKQBDWHie0IxTebIkuPeHfVhYbwkg4i2Br5FL wh5KVmihFnlDlVMQjKhadrnhOQ== -----END CERTIFICATE-----Generated at Wed May 13 18:02:40 2026 by rpki-client