$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: 1sI7fjFzvV1BwbMUgW5PcH02vjWo8HpJmKBwYueboP8= Subject key identifier: 1F:32:3F:63:11:D8:E5:C4:67:97:22:FB:D9:A4:28:94:41:3D:4C:9A Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 117F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 2540 Signing time: Tue 12 May 2026 16:57:06 +0000 Manifest this update: Tue 12 May 2026 16:57:05 +0000 Manifest next update: Tue 19 May 2026 16:57:05 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: I2UbBSi74tRPzgcMxXtb0kadTbRT7E5hnnQ0+g+ge9Y=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: FaFqBcKylUM1Ik2J0LQMDMkip4pQ4QSSImVSUK0dY18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4479 (0x117f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: May 12 16:57:05 2026 GMT Not After : May 19 16:57:05 2026 GMT Subject: CN=6a035be2-688e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4c:a8:52:fb:f3:62:36:d3:74:62:94:ae:21: 04:79:57:d8:3f:b2:ee:9a:8f:71:33:d9:97:17:44: c6:c5:9e:89:00:af:32:06:eb:40:a8:2f:6b:3e:87: 92:de:de:63:f3:bf:a8:99:9a:d3:13:0b:ae:ac:05: 6f:5d:8d:ab:4c:0a:90:0f:91:9a:f1:d4:77:11:00: 3e:94:47:7d:03:3d:e0:3f:6f:14:c5:14:3d:0a:51: 2e:c4:05:d6:90:f4:8d:13:e4:56:68:07:9f:6b:c1: 7a:30:c4:72:65:6e:ae:d3:e3:0a:48:62:72:ba:a8: 81:db:5b:86:1e:8b:de:86:3b:7e:bd:3d:57:e3:1b: cd:28:75:0b:37:df:c6:9b:e0:50:8d:bd:c3:24:0e: be:7d:d0:1a:14:88:3e:ae:14:a4:e9:d3:8f:c7:ef: 68:15:73:84:9e:25:98:e7:fd:ed:85:3f:c6:a9:2a: 41:a6:86:f8:c3:5d:e1:ea:ea:34:2c:5b:5f:85:09: f0:a3:4e:80:b5:d2:1c:39:0a:e0:3f:0b:4c:cf:85: 78:f2:a9:70:8f:32:6f:af:95:2d:89:c7:78:05:5a: 0a:d7:56:c1:79:7d:16:6d:9b:c7:1e:20:7a:99:48: e7:3a:82:27:fb:98:92:9b:7d:9d:af:b4:52:d6:b9: e4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:32:3F:63:11:D8:E5:C4:67:97:22:FB:D9:A4:28:94:41:3D:4C:9A X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:39:9d:49:3b:91:c8:63:73:d4:f8:5a:c6:d9:72:f7:05:52: e2:35:b9:df:75:ac:25:c0:ab:04:ba:78:dd:fd:4f:1a:13:ef: 4a:be:aa:84:f7:fa:27:af:30:07:1b:83:33:a1:4c:9d:b2:74: ce:56:6b:09:c9:dd:1b:4e:ef:cc:cd:de:18:c0:00:2e:25:66: bd:34:e5:85:98:2d:15:3f:bb:ca:42:ef:49:66:ab:ed:10:61: 55:70:c1:f3:c3:69:0f:2f:7f:c4:d3:2f:4a:c1:c4:ab:d2:21: 52:3c:a5:37:fa:e8:3b:21:c2:81:94:e7:a4:39:59:1e:1b:c3: 3a:72:a5:76:14:67:6b:a5:bb:26:bd:67:f8:3c:34:c1:b1:24: d8:10:f4:11:22:fb:e4:22:da:23:6c:ce:48:b9:4b:44:79:c9: 02:35:4b:04:5d:76:87:dc:97:28:0e:cc:ca:ba:0d:3c:14:55: d1:51:7d:a2:d0:00:96:3c:3b:fb:bb:27:87:be:94:bd:c4:8d: 9a:6e:e9:b4:f4:13:37:97:17:11:74:68:eb:04:6d:fe:63:b6: ab:cf:b2:e9:d3:9a:a4:cb:0f:de:4d:30:7e:54:34:b5:75:f1: 3a:25:3f:b5:be:d2:6d:cf:f2:fc:19:1c:1b:46:1a:86:99:ac: 0e:9f:97:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjYwNTEyMTY1NzA1WhcNMjYwNTE5MTY1NzA1WjAYMRYwFAYD VQQDEw02YTAzNWJlMi02ODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EyoUvvzYjbTdGKUriEEeVfYP7Lumo9xM9mXF0TGxZ6JAK8yButAqC9rPoeS 3t5j87+omZrTEwuurAVvXY2rTAqQD5Ga8dR3EQA+lEd9Az3gP28UxRQ9ClEuxAXW kPSNE+RWaAefa8F6MMRyZW6u0+MKSGJyuqiB21uGHovehjt+vT1X4xvNKHULN9/G m+BQjb3DJA6+fdAaFIg+rhSk6dOPx+9oFXOEniWY5/3thT/GqSpBpob4w13h6uo0 LFtfhQnwo06AtdIcOQrgPwtMz4V48qlwjzJvr5Uticd4BVoK11bBeX0WbZvHHiB6 mUjnOoIn+5iSm32dr7RS1rnk/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB8yP2MR 2OXEZ5ci+9mkKJRBPUyaMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPTmdSTuRyGNz1Phaxtly9wVS4jW533WsJcCrBLp43f1PGhPvSr6qhPf6J68w BxuDM6FMnbJ0zlZrCcndG07vzM3eGMAALiVmvTTlhZgtFT+7ykLvSWar7RBhVXDB 88NpDy9/xNMvSsHEq9IhUjylN/roOyHCgZTnpDlZHhvDOnKldhRna6W7Jr1n+Dw0 wbEk2BD0ESL75CLaI2zOSLlLRHnJAjVLBF12h9yXKA7MyroNPBRV0VF9otAAljw7 +7snh76UvcSNmm7ptPQTN5cXEXRo6wRt/mO2q8+y6dOapMsP3k0wflQ0tXXxOiU/ tb7Sbc/y/BkcG0YahpmsDp+XhQ== -----END CERTIFICATE-----Generated at Wed May 13 06:44:45 2026 by rpki-client