$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: /f2JEDQKRxc08kiCr3kCjtq4nFlar4KcosZbGrO7O78= Subject key identifier: 9F:77:84:89:6B:CD:92:C5:AA:85:91:76:33:A0:0F:39:DC:B5:FC:E7 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 0447 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 043B Signing time: Sun 05 Apr 2026 00:06:43 +0000 Manifest this update: Sun 05 Apr 2026 00:06:42 +0000 Manifest next update: Sun 12 Apr 2026 00:06:42 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: On23ATqtsJNCDkLDZ9dYi1lYGSQZJsgi8c8HthdrouE=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: I3945a68aAj4Bezh1bF6xRl/WpfQZcBM/2Xudp6szlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1095 (0x447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Apr 5 00:06:42 2026 GMT Not After : Apr 12 00:06:42 2026 GMT Subject: CN=69d1a792-2563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5f:7d:20:3d:85:6e:9b:41:ec:50:0d:96:1f: 7f:76:ad:ad:33:5d:1e:d8:b8:fb:6f:c3:19:bb:e6: a5:86:e7:6e:df:0f:de:df:f4:11:de:a5:4d:d1:ce: e9:b2:8b:1e:44:9c:a3:ad:86:da:e4:83:a9:d2:52: 1f:73:d7:9f:ce:60:3c:37:2d:5b:40:8b:32:be:9d: 03:2b:56:bc:c1:db:11:8e:48:33:76:73:4e:cb:28: 87:5b:2e:14:ea:66:3e:3e:03:78:8f:ee:f9:1d:d6: 68:52:c6:47:92:d0:30:d3:99:01:fc:e9:57:86:27: 53:06:17:5a:15:bd:7f:e6:a7:80:0c:aa:3c:14:6d: 0e:5d:76:d4:ed:c8:8a:91:93:c1:35:f8:a7:c1:a7: ca:b8:66:9a:bd:13:0b:a7:7d:62:33:21:58:a5:8d: e2:8d:17:13:ea:80:be:14:3b:b6:bf:f5:f4:46:5d: 14:e6:f2:f7:43:d5:80:9f:e2:e4:e1:9d:91:2b:0d: 0f:c3:1e:0d:13:cb:7d:18:33:d0:54:30:ff:1d:8f: 23:12:c3:37:a1:51:03:ae:62:3f:72:9c:fe:00:14: 50:61:e0:c5:74:b3:51:1b:b5:35:e6:6f:93:18:79: 5a:14:ef:97:86:07:2c:f5:5b:6e:a5:9e:55:f1:a1: 20:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:77:84:89:6B:CD:92:C5:AA:85:91:76:33:A0:0F:39:DC:B5:FC:E7 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:ef:62:3f:49:a7:30:f5:48:cc:b2:fc:68:d5:8e:99:e6:a0: 53:cb:b8:c5:2e:f1:0f:85:85:32:b8:f0:36:9a:7f:16:10:c5: 73:a1:c6:ee:a8:e9:76:ab:98:e2:49:d9:c1:6c:43:b7:16:73: c9:5c:51:a6:94:8a:c5:bc:0c:d6:e2:1a:83:eb:a3:f7:ee:76: ea:5e:0e:28:33:df:a8:27:ed:d8:6b:4f:fe:81:0b:ca:14:53: 6e:8e:ed:7f:4e:50:b1:28:0e:ca:b6:c2:4e:19:52:39:cc:c6: 32:b7:bf:35:9b:27:df:2c:a3:76:3d:87:e4:37:34:14:9d:fc: 71:54:5f:ee:0e:ea:16:39:4f:02:66:78:2a:12:59:ae:30:2b: a6:11:d0:2e:ee:12:34:39:d1:f7:01:94:59:3b:e3:ce:63:8f: 02:27:8c:94:88:40:5a:e8:d7:25:79:41:c5:38:3c:6a:5e:67: 97:89:a8:f0:a0:3f:2c:01:15:25:35:ea:63:05:03:d3:2f:5c: 50:6a:a6:34:29:43:10:f7:b6:2d:78:e7:d1:3d:c2:6f:14:d4: 19:44:0d:25:09:04:d8:b7:51:68:91:6d:b9:90:a2:0f:fe:cb: ff:34:3a:7c:9f:5d:f0:87:c6:f6:de:ed:1e:1b:19:f5:f8:7a: e9:cb:2c:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjYwNDA1MDAwNjQyWhcNMjYwNDEyMDAwNjQyWjAYMRYwFAYD VQQDEw02OWQxYTc5Mi0yNTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq199ID2FbptB7FANlh9/dq2tM10e2Lj7b8MZu+alhudu3w/e3/QR3qVN0c7p soseRJyjrYba5IOp0lIfc9efzmA8Ny1bQIsyvp0DK1a8wdsRjkgzdnNOyyiHWy4U 6mY+PgN4j+75HdZoUsZHktAw05kB/OlXhidTBhdaFb1/5qeADKo8FG0OXXbU7ciK kZPBNfinwafKuGaavRMLp31iMyFYpY3ijRcT6oC+FDu2v/X0Rl0U5vL3Q9WAn+Lk 4Z2RKw0Pwx4NE8t9GDPQVDD/HY8jEsM3oVEDrmI/cpz+ABRQYeDFdLNRG7U15m+T GHlaFO+Xhgcs9VtupZ5V8aEg3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ93hIlr zZLFqoWRdjOgDznctfznMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh+9iP0mnMPVIzLL8aNWOmeagU8u4xS7xD4WFMrjwNpp/FhDFc6HG7qjpdquY 4knZwWxDtxZzyVxRppSKxbwM1uIag+uj9+526l4OKDPfqCft2GtP/oELyhRTbo7t f05QsSgOyrbCThlSOczGMre/NZsn3yyjdj2H5Dc0FJ38cVRf7g7qFjlPAmZ4KhJZ rjArphHQLu4SNDnR9wGUWTvjzmOPAieMlIhAWujXJXlBxTg8al5nl4mo8KA/LAEV JTXqYwUD0y9cUGqmNClDEPe2LXjn0T3CbxTUGUQNJQkE2LdRaJFtuZCiD/7L/zQ6 fJ9d8IfG9t7tHhsZ9fh66csskA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:55 2026 by rpki-client