$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json) Hash identifier: xGDax3wXIM64Z/2iK7qudWl/KWKBa24Kbl5HiJTCTuc= Subject key identifier: 37:A2:E9:89:CF:CF:31:FA:4B:D8:EF:7A:B1:D1:E4:BD:B3:9A:99:F9 Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Certificate serial: 05E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft Manifest number: 05D4 Signing time: Sat 04 Apr 2026 22:50:24 +0000 Manifest this update: Sat 04 Apr 2026 22:50:24 +0000 Manifest next update: Sat 11 Apr 2026 22:50:24 +0000 Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: MrelMIyXQCr/NNKd+/EyAfIUGPFIvzR/CdRAZCyWnJ8=) 2: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: v67a0OsiTe06J9eTFSqaQT8oZYZbT0ddwuIUu5oh/Gs=) 3: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: 41+ujfJ1RW9rys2ZY4ePjd/lCrRu8nYhlaOK5xxYhSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Validity Not Before: Apr 4 22:50:24 2026 GMT Not After : Apr 11 22:50:24 2026 GMT Subject: CN=69d195b0-9909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:79:09:f1:4b:03:48:dd:09:80:49:28:f9:ab: 29:92:58:61:f3:40:90:79:6a:d1:d0:3f:d2:1a:c7: 62:cc:d7:7c:fd:24:5c:74:36:f0:fe:9f:06:61:25: 3d:8a:27:2a:2e:76:57:75:00:7b:39:9d:91:30:83: cd:a8:e3:15:26:d1:a9:b5:d5:17:f6:7f:1f:96:a4: aa:9a:81:6f:8e:e3:08:f9:07:2a:bc:1b:6d:c9:a4: b4:6c:14:24:5e:0c:77:57:63:3c:f5:04:68:da:ed: a5:c8:f5:95:aa:d8:43:fd:b0:03:56:f1:cf:2f:36: b6:89:f6:b1:0d:c7:3f:8b:96:d2:81:41:20:65:de: a9:82:e9:d5:14:7d:7e:c6:34:1c:6c:ea:12:61:a2: 3d:ba:03:c7:63:92:2d:4f:fa:ef:85:5e:9d:78:01: 57:5b:2c:56:b7:d0:5c:39:9e:61:b4:4e:c2:48:58: 0a:e0:7e:c5:e6:57:c4:c3:1a:7e:c0:eb:24:f2:0b: 79:bf:66:23:83:c8:20:c5:93:e5:71:32:a1:e3:68: ee:ea:cc:e1:0c:98:65:b9:2d:c7:2a:bc:3b:f3:dd: 3b:53:9a:3c:2e:0e:e7:09:f0:5a:cd:08:30:e2:cb: 43:1c:71:99:40:df:89:85:92:b7:dd:a4:7a:55:2b: 86:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A2:E9:89:CF:CF:31:FA:4B:D8:EF:7A:B1:D1:E4:BD:B3:9A:99:F9 X509v3 Authority Key Identifier: keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:aa:42:d5:5c:38:0e:73:a1:b4:d2:9b:ab:3a:5a:9c:16:d7: 8e:ab:42:7c:2c:89:47:b4:e2:3b:93:5f:d1:0c:3d:54:1e:fe: f1:cc:8a:d8:f4:5a:90:1d:c7:98:ab:d5:50:c7:f5:c5:8e:3e: b8:70:d5:89:02:9e:fb:22:96:0d:38:ef:91:81:71:44:c5:b3: cc:cd:6f:6a:3a:e9:8c:e2:97:a4:b9:e1:c0:79:3e:af:2c:fe: 8f:36:ee:3d:e0:cd:88:d1:3d:a6:5c:3b:fb:7e:8c:46:1f:4b: 92:21:31:38:97:64:00:65:95:aa:9f:3f:5e:0d:0a:db:d8:4f: f8:ee:5a:12:d5:c0:c3:65:86:dc:4b:65:7e:e3:2b:38:97:e5: 6f:db:d1:0d:dd:3f:2a:1d:95:3a:c6:1f:af:c3:09:47:70:79: f3:7e:a2:4e:9b:07:8a:0c:70:fe:79:2b:d0:56:f5:09:22:ec: f0:44:bc:68:de:c3:82:09:8e:43:7b:63:0f:66:97:b0:9f:94: c1:4d:4f:dc:62:2b:ce:57:be:e5:aa:a3:49:be:86:dc:8e:ad: 5e:28:54:0e:8d:7c:93:ec:5c:1d:73:c8:bd:ce:47:cd:8b:1e: 17:b4:bf:78:7a:91:63:6f:d3:9c:87:17:55:8b:28:aa:c5:05: 44:0b:b8:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1 NDI2QTFBMDMwHhcNMjYwNDA0MjI1MDI0WhcNMjYwNDExMjI1MDI0WjAYMRYwFAYD VQQDEw02OWQxOTViMC05OTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXkJ8UsDSN0JgEko+aspklhh80CQeWrR0D/SGsdizNd8/SRcdDbw/p8GYSU9 iicqLnZXdQB7OZ2RMIPNqOMVJtGptdUX9n8flqSqmoFvjuMI+QcqvBttyaS0bBQk Xgx3V2M89QRo2u2lyPWVqthD/bADVvHPLza2ifaxDcc/i5bSgUEgZd6pgunVFH1+ xjQcbOoSYaI9ugPHY5ItT/rvhV6deAFXWyxWt9BcOZ5htE7CSFgK4H7F5lfEwxp+ wOsk8gt5v2Yjg8ggxZPlcTKh42ju6szhDJhluS3HKrw78907U5o8Lg7nCfBazQgw 4stDHHGZQN+JhZK33aR6VSuGiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDei6YnP zzH6S9jverHR5L2zmpn5MB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABKpC1Vw4DnOhtNKbqzpanBbXjqtCfCyJR7TiO5Nf0Qw9VB7+8cyK2PRakB3H mKvVUMf1xY4+uHDViQKe+yKWDTjvkYFxRMWzzM1vajrpjOKXpLnhwHk+ryz+jzbu PeDNiNE9plw7+36MRh9LkiExOJdkAGWVqp8/Xg0K29hP+O5aEtXAw2WG3EtlfuMr OJflb9vRDd0/Kh2VOsYfr8MJR3B5836iTpsHigxw/nkr0Fb1CSLs8ES8aN7DggmO Q3tjD2aXsJ+UwU1P3GIrzle+5aqjSb6G3I6tXihUDo18k+xcHXPIvc5HzYseF7S/ eHqRY2/TnIcXVYsoqsUFRAu4DQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:39:44 2026 by rpki-client