$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: CiC8EPWGk0ef8R50iZa+7LOeg1mp9VtHEMkBi+BiM6c= Subject key identifier: 42:AA:17:B5:08:A9:42:C1:77:16:79:AC:93:0F:FA:88:A6:91:58:CE Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 042A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 0422 Signing time: Sun 05 Apr 2026 00:09:38 +0000 Manifest this update: Sun 05 Apr 2026 00:09:37 +0000 Manifest next update: Sun 12 Apr 2026 00:09:37 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: rukfRpZn4jVCXnPjXMc8N8MDisia9SEAER4nH7QTOYo=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: fIfbNfI4LK0sIc8YlB3yB2MWelYN+TJwvhzmec0KKmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: Apr 5 00:09:37 2026 GMT Not After : Apr 12 00:09:37 2026 GMT Subject: CN=69d1a842-8c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8e:92:ff:93:ff:82:ad:3c:0b:30:af:3e:58: df:08:9f:7e:1f:34:d9:ef:24:ec:71:a1:4f:e7:f5: 96:ae:59:98:da:73:bf:57:6d:03:67:aa:b2:07:6c: 55:89:af:dc:da:d1:49:b2:04:65:5d:81:5c:04:e4: 70:28:47:c4:56:31:75:74:69:db:c9:00:08:cc:98: 0a:e3:db:71:20:fe:e8:1a:74:e4:a9:70:8e:de:bb: b7:29:bd:68:3b:92:53:06:b4:9b:61:52:23:4d:ee: 3f:71:5d:37:5d:58:0d:4e:c6:e3:f6:9e:31:54:11: 90:7f:7a:28:2b:7a:e8:31:c5:18:08:62:bc:2c:a0: 42:55:70:1c:fd:ce:f2:03:87:a5:56:03:96:47:68: c5:2d:46:d3:4a:b9:bc:79:bb:7c:d7:b5:7f:c8:24: 3e:8a:f0:5b:1f:05:ea:e2:c0:be:cf:1f:dc:ca:da: 8b:a0:47:cd:78:1f:20:21:43:cb:7f:f8:5a:91:dd: 5f:e7:45:18:8f:bb:32:f6:3c:b5:df:79:a2:b8:f2: 1f:88:1c:3b:c4:6f:8f:c1:aa:2a:70:55:33:d2:2c: d2:6b:8f:b2:ed:e8:24:27:8e:8a:8c:ae:81:a6:23: d3:f6:15:d5:02:f1:29:06:2f:70:8c:5d:52:14:5e: b0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AA:17:B5:08:A9:42:C1:77:16:79:AC:93:0F:FA:88:A6:91:58:CE X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0b:b6:a1:a4:8c:72:6c:3e:e6:8b:6a:47:7b:3c:03:eb:0a: 89:62:48:e4:03:b7:1d:b4:54:13:d8:d1:ae:16:80:9e:1f:7b: ff:f8:f4:be:be:57:d7:fa:31:9a:d9:b1:62:a3:ec:bc:a6:3b: e1:67:54:5c:2d:25:b2:9a:d2:39:35:d8:dd:cf:6e:04:9a:26: 3a:c0:78:20:c3:aa:aa:6b:2e:fa:96:d2:1e:a4:6e:51:ed:60: 8a:9e:54:d6:19:3e:d6:b9:0f:c1:ea:d2:71:f6:be:86:54:53: 63:99:e4:8c:53:01:70:31:67:68:26:fa:9f:1a:96:f8:a7:3d: 19:e6:4e:5e:02:62:c1:50:49:c0:b1:89:46:ec:09:99:65:b1: ca:b6:28:9d:aa:2a:cd:8f:7b:53:7b:9d:17:c8:3f:00:08:bf: 5b:57:e9:e1:6a:5a:ac:97:5c:3d:59:d0:6a:03:40:38:d7:33: 11:32:f5:9e:8f:a9:57:9d:14:75:38:20:f4:64:9f:d8:a5:d3: 11:fd:d7:94:a5:c4:b1:1e:bb:45:0a:96:1c:4d:8c:c7:3c:5d: dd:87:20:3e:61:08:6a:c6:6b:f0:61:ca:fc:5d:31:7c:d4:eb: 64:2d:8a:35:f5:6a:0e:4c:a0:4b:e0:70:78:85:83:2f:e2:6d: 8e:84:0f:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjYwNDA1MDAwOTM3WhcNMjYwNDEyMDAwOTM3WjAYMRYwFAYD VQQDEw02OWQxYTg0Mi04YzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAno6S/5P/gq08CzCvPljfCJ9+HzTZ7yTscaFP5/WWrlmY2nO/V20DZ6qyB2xV ia/c2tFJsgRlXYFcBORwKEfEVjF1dGnbyQAIzJgK49txIP7oGnTkqXCO3ru3Kb1o O5JTBrSbYVIjTe4/cV03XVgNTsbj9p4xVBGQf3ooK3roMcUYCGK8LKBCVXAc/c7y A4elVgOWR2jFLUbTSrm8ebt817V/yCQ+ivBbHwXq4sC+zx/cytqLoEfNeB8gIUPL f/hakd1f50UYj7sy9jy133miuPIfiBw7xG+PwaoqcFUz0izSa4+y7egkJ46KjK6B piPT9hXVAvEpBi9wjF1SFF6wgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEKqF7UI qULBdxZ5rJMP+oimkVjOMB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbgu2oaSMcmw+5otqR3s8A+sKiWJI5AO3HbRUE9jRrhaAnh97//j0vr5X1/ox mtmxYqPsvKY74WdUXC0lsprSOTXY3c9uBJomOsB4IMOqqmsu+pbSHqRuUe1gip5U 1hk+1rkPwerScfa+hlRTY5nkjFMBcDFnaCb6nxqW+Kc9GeZOXgJiwVBJwLGJRuwJ mWWxyrYonaoqzY97U3udF8g/AAi/W1fp4WparJdcPVnQagNAONczETL1no+pV50U dTgg9GSf2KXTEf3XlKXEsR67RQqWHE2Mxzxd3YcgPmEIasZr8GHK/F0xfNTrZC2K NfVqDkygS+BweIWDL+JtjoQP0g== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:07 2026 by rpki-client