$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: 19yNqKeF8HD0dtfx7trDhk0KsguGH9gkZxJs1W9WGBo= Subject key identifier: 76:D8:60:49:20:51:88:96:DC:06:52:18:40:66:D3:40:76:C2:72:A9 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: D9 Signing time: Wed 13 May 2026 06:49:22 +0000 Manifest this update: Wed 13 May 2026 06:49:22 +0000 Manifest next update: Wed 20 May 2026 06:49:22 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: FmdCaBGVx1lv4Pg6BuQt5spD0QtJ/4e8gl2FZjz9Xuk=) 2: 3E4E5610438B11F18B6C5738C9833773.roa (hash: 1P+X6qPkn0VdYt1Cmrpk5GJKo0+TU3IuJXvl0/kng8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: May 13 06:49:22 2026 GMT Not After : May 20 06:49:22 2026 GMT Subject: CN=6a041ef2-ec5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:57:ec:78:b4:a3:d4:d7:2b:e9:64:fb:7f:ae: 41:11:97:e8:1e:44:d8:29:c0:d0:4c:1c:15:33:a3: bd:54:95:06:f1:31:ee:8d:33:0a:45:1e:e0:59:5a: 4c:52:3d:79:14:2d:0a:a2:d6:2b:ff:7b:16:13:68: ce:1c:84:e1:92:68:90:49:25:67:88:ea:0c:eb:11: 21:56:9a:d0:e9:43:89:f8:33:48:3d:c9:52:28:55: 65:cc:4c:07:4e:d6:a6:9b:79:5f:9a:1c:81:e2:22: e2:9e:2f:fb:83:39:87:05:f6:de:e3:c0:4c:78:05: 14:74:f8:ba:b6:2d:dc:d5:9e:55:bb:c3:dd:35:d4: 9f:8a:80:81:09:1d:85:33:06:ba:9b:b4:f0:e9:34: d5:46:6c:6d:6e:3f:7d:76:d3:91:74:c8:76:63:77: e8:ed:4d:83:d2:f3:b6:4a:7a:21:ea:52:99:6c:31: 08:bc:ff:42:a8:15:7e:75:cc:07:60:1a:ba:d0:2d: 6c:10:95:db:59:ad:7b:1b:2c:a2:95:a5:8d:19:52: f7:30:ff:85:6e:ea:8b:31:51:d9:93:6f:6b:c2:74: 02:17:d5:80:db:65:a5:8e:d4:81:09:eb:ae:e3:d0: d0:58:62:82:72:b5:f5:8c:83:a6:77:11:bd:30:48: e5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D8:60:49:20:51:88:96:DC:06:52:18:40:66:D3:40:76:C2:72:A9 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:99:03:ca:c3:0f:9a:fb:ba:4a:ef:2b:d3:0b:2d:a1:ec:80: 7a:ab:a2:36:08:b6:1a:cd:a2:b8:26:21:74:c4:41:51:c8:df: 25:d6:b1:3c:ce:44:70:b6:4a:54:50:17:bf:ce:77:25:12:f9: ee:e0:81:4d:bd:66:20:2a:bc:a1:e8:59:b8:78:b3:6e:46:ba: d6:e0:38:d3:a7:c6:54:ae:ad:04:04:ee:05:ac:a3:97:42:f5: 6c:47:2e:57:e4:26:57:b3:b1:a1:36:9d:31:21:fa:aa:c9:93: d6:ea:88:63:b9:41:9f:4a:78:4a:85:fb:ea:d2:33:55:b3:15: 53:dd:35:ec:46:ec:9d:00:37:88:f8:52:67:bd:e1:d2:af:33: be:55:a9:61:80:e1:51:31:dc:15:28:3c:08:40:76:5e:80:5d: 11:03:c8:1e:2b:19:34:94:c8:41:b4:ff:63:4c:3c:be:a3:66: 03:a8:f2:2e:e9:85:ed:6d:8c:79:a7:58:a6:f6:e2:91:78:2a: 89:df:75:96:da:c8:80:43:a4:66:61:42:29:a5:28:c6:8b:ef: af:13:08:01:6e:5f:06:6d:e1:1e:5c:75:15:95:a3:a1:7f:04: a2:2a:8c:ff:9d:c2:3c:ce:9e:de:0c:de:43:50:34:c3:ef:06: 7b:df:5f:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFCN0UxMTAvBgNVBAUTKDJBNkJGMDU0QUQyM0VBRDJEQjM5NTMxQjY0NjcyNkNB OTQ1QUM0OTIwHhcNMjYwNTEzMDY0OTIyWhcNMjYwNTIwMDY0OTIyWjAYMRYwFAYD VQQDEw02YTA0MWVmMi1lYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkFfseLSj1Ncr6WT7f65BEZfoHkTYKcDQTBwVM6O9VJUG8THujTMKRR7gWVpM Uj15FC0KotYr/3sWE2jOHIThkmiQSSVniOoM6xEhVprQ6UOJ+DNIPclSKFVlzEwH Ttamm3lfmhyB4iLini/7gzmHBfbe48BMeAUUdPi6ti3c1Z5Vu8PdNdSfioCBCR2F Mwa6m7Tw6TTVRmxtbj99dtORdMh2Y3fo7U2D0vO2Snoh6lKZbDEIvP9CqBV+dcwH YBq60C1sEJXbWa17GyyilaWNGVL3MP+FbuqLMVHZk29rwnQCF9WA22WljtSBCeuu 49DQWGKCcrX1jIOmdxG9MEjliQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHbYYEkg UYiW3AZSGEBm00B2wnKpMB8GA1UdIwQYMBaAFCpr8FStI+rS2zlTG2RnJsqUWsSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUI3RS9GNzU5Nzk2RTA4 ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0TGJPVk1iWkdjbXlwUmF4 SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUI3RS9GNzU5Nzk2RTA4ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0 TGJPVk1iWkdjbXlwUmF4SkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdZkDysMPmvu6Su8r0wstoeyAequiNgi2Gs2iuCYhdMRBUcjfJdaxPM5EcLZK VFAXv853JRL57uCBTb1mICq8oehZuHizbka61uA406fGVK6tBATuBayjl0L1bEcu V+QmV7OxoTadMSH6qsmT1uqIY7lBn0p4SoX76tIzVbMVU9017EbsnQA3iPhSZ73h 0q8zvlWpYYDhUTHcFSg8CEB2XoBdEQPIHisZNJTIQbT/Y0w8vqNmA6jyLumF7W2M eadYpvbikXgqid91ltrIgEOkZmFCKaUoxovvrxMIAW5fBm3hHlx1FZWjoX8EoiqM /53CPM6e3gzeQ1A0w+8Ge99f2g== -----END CERTIFICATE-----Generated at Wed May 13 09:52:47 2026 by rpki-client