$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: SXdisovQrJ0vO0cv8H4c/BWWHNf5oUBUgeolPDeu9uE= Subject key identifier: 3C:5D:35:85:D8:A4:98:E4:E1:0B:4E:75:9A:61:92:A6:F9:35:E9:0B Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0CBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0CAF Signing time: Tue 12 May 2026 18:34:38 +0000 Manifest this update: Tue 12 May 2026 18:34:38 +0000 Manifest next update: Tue 19 May 2026 18:34:38 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: UwraEIQAMRPrbjEIoWJICbXzB3bysePYgpeimKcYj6Q=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: tYlucwaBIGBa2s5M7XxozTf4DKKXocCk+qxS/KAjPVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3263 (0xcbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: May 12 18:34:38 2026 GMT Not After : May 19 18:34:38 2026 GMT Subject: CN=6a0372be-7bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ff:25:99:23:bc:60:8d:af:d4:62:ee:dc:4c: 05:ba:5c:b3:e5:c3:19:88:2f:5d:11:06:65:d5:7e: ae:05:0d:a3:e9:55:4e:2f:c5:d1:2e:5f:d3:0d:93: a4:ef:a9:fa:b9:e8:c1:a0:fa:0d:19:ff:79:49:ab: 5f:dd:66:58:56:56:7f:16:31:6c:25:70:a7:28:f1: e1:d7:f7:62:5c:40:14:b7:1b:ab:42:01:f5:88:9d: 62:2f:5b:cc:9e:85:c3:f0:f2:42:ce:d0:c2:41:de: 0a:98:f3:a9:f2:43:d2:bd:f2:69:9a:a4:9e:23:23: 80:f8:18:88:c4:8f:c2:24:09:8f:3d:50:3e:6d:27: d4:d9:10:8c:e1:14:63:0b:67:81:19:bc:0f:68:52: 87:c0:eb:e8:e1:8f:15:45:2c:b8:63:5c:09:81:b9: e1:ad:45:a3:14:90:d8:9d:2c:fe:71:47:7b:bf:50: e0:ec:1e:67:26:c9:74:20:50:df:c7:c1:d7:22:8d: 6f:3a:64:6a:4e:ed:3a:d8:b0:9c:32:75:f4:2d:35: 93:7f:8f:ef:0c:39:68:9b:3c:af:43:3d:04:88:1f: af:19:35:73:49:05:6b:3f:99:85:2e:b8:bc:a2:84: 53:90:d7:8a:d5:c1:16:c2:c1:31:6d:e7:d7:b1:6f: 3e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5D:35:85:D8:A4:98:E4:E1:0B:4E:75:9A:61:92:A6:F9:35:E9:0B X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:da:3c:7c:1e:48:9c:f8:25:7a:2b:40:9b:6a:11:ee:b1:56: c2:4c:55:2e:7b:19:2d:02:38:fa:aa:06:f2:c9:47:d1:7a:14: ae:4a:a9:ee:47:b8:bd:56:56:23:8b:52:59:d8:64:16:5b:73: 54:93:8c:6f:6c:cf:32:e0:90:68:e2:44:3b:ef:1c:4b:d5:17: af:47:ea:35:7c:56:ad:86:3c:ee:db:dd:bf:b0:66:dc:86:0f: 13:6b:58:01:c3:fd:f3:1d:50:1c:34:2a:d1:20:04:4a:54:dc: 58:eb:be:4e:b4:c4:e5:86:df:70:a0:30:4c:4e:89:9f:4e:69: 59:cc:20:0a:1d:4d:62:d8:f0:26:8b:d1:15:95:ab:be:ac:fe: b2:09:4c:5a:d6:d8:8f:37:ff:32:28:af:53:3f:70:f1:7e:cf: af:3e:3d:29:cd:0b:d0:43:f7:a5:7a:46:b4:4a:3e:2f:17:02: 26:7d:f4:ee:41:43:b5:43:c2:79:4c:f5:a3:d0:01:d9:99:a3: 26:da:d9:e1:75:c0:f3:fa:97:46:5f:8a:7f:3e:f9:73:7a:09: 41:20:a2:56:d4:10:75:25:c3:68:b5:0c:a1:da:83:3f:c8:3a: b4:82:72:44:c4:06:09:6c:52:f1:0a:bc:e7:3d:29:4e:86:ad: fc:cd:af:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjYwNTEyMTgzNDM4WhcNMjYwNTE5MTgzNDM4WjAYMRYwFAYD VQQDEw02YTAzNzJiZS03YmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkf8lmSO8YI2v1GLu3EwFulyz5cMZiC9dEQZl1X6uBQ2j6VVOL8XRLl/TDZOk 76n6uejBoPoNGf95Satf3WZYVlZ/FjFsJXCnKPHh1/diXEAUtxurQgH1iJ1iL1vM noXD8PJCztDCQd4KmPOp8kPSvfJpmqSeIyOA+BiIxI/CJAmPPVA+bSfU2RCM4RRj C2eBGbwPaFKHwOvo4Y8VRSy4Y1wJgbnhrUWjFJDYnSz+cUd7v1Dg7B5nJsl0IFDf x8HXIo1vOmRqTu062LCcMnX0LTWTf4/vDDlomzyvQz0EiB+vGTVzSQVrP5mFLri8 ooRTkNeK1cEWwsExbefXsW8+EwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDxdNYXY pJjk4QtOdZphkqb5NekLMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARdo8fB5InPgleitAm2oR7rFWwkxVLnsZLQI4+qoG8slH0XoUrkqp7ke4vVZW I4tSWdhkFltzVJOMb2zPMuCQaOJEO+8cS9UXr0fqNXxWrYY87tvdv7Bm3IYPE2tY AcP98x1QHDQq0SAESlTcWOu+TrTE5YbfcKAwTE6Jn05pWcwgCh1NYtjwJovRFZWr vqz+sglMWtbYjzf/MiivUz9w8X7Prz49Kc0L0EP3pXpGtEo+LxcCJn307kFDtUPC eUz1o9AB2ZmjJtrZ4XXA8/qXRl+Kfz75c3oJQSCiVtQQdSXDaLUModqDP8g6tIJy RMQGCWxS8Qq85z0pToat/M2vgg== -----END CERTIFICATE-----Generated at Wed May 13 09:41:58 2026 by rpki-client