$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: EMuwA313Hent2d5XY8Wa4dKkH7V0IlH0ARr8qH/5Dp4= Subject key identifier: 83:54:92:BE:38:0E:8A:4F:60:BC:6F:27:6B:08:55:7E:EB:84:9F:06 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: D4 Signing time: Sun 05 Apr 2026 06:15:25 +0000 Manifest this update: Sun 05 Apr 2026 06:15:25 +0000 Manifest next update: Sun 12 Apr 2026 06:15:25 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: zlMG6R3ourMB/fQD1XRvlRtpSzfAl1Tni+05bjFVQEA=) 2: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: N4HTYSfJRwG01pC5CAe1D/sq8bILUh+qrNfqBe3K/Mw=) 3: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: NMXSh4M1f9PUVYv8eikRIhD24GRVnVb8u5tWxsJCUME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Apr 5 06:15:25 2026 GMT Not After : Apr 12 06:15:25 2026 GMT Subject: CN=69d1fdfd-fd1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:c9:48:10:cf:48:df:32:0d:dc:5b:d3:89:70: 2d:30:49:d1:b2:d4:59:f3:93:85:c7:2e:96:51:90: ef:2d:bf:d4:35:b8:e9:17:73:cf:78:23:d4:ee:4a: e2:7e:cd:13:8c:55:d8:bf:81:28:3e:79:77:d0:5b: 72:fb:99:91:b6:c6:56:b0:05:ae:d4:ad:30:4c:22: 16:c2:ac:7d:04:d7:ac:36:d4:b8:f9:09:f6:45:2e: 02:b1:7a:d3:2c:d6:e1:17:98:20:13:b4:8a:8c:f6: 55:69:fd:3e:70:b4:a4:90:42:b7:d1:55:91:b5:3f: 31:01:af:ef:b1:73:e1:a5:32:0c:c5:76:cd:77:c5: e5:04:67:f6:5f:16:a2:0c:86:04:77:75:9c:4f:ca: 79:88:8b:b4:a4:22:d0:61:70:0f:18:29:d4:2f:e9: c0:f7:2d:69:6a:d2:5c:2c:55:69:8d:7d:6e:da:2a: 9f:71:71:22:f9:96:46:aa:b4:a0:14:42:6f:3e:04: 94:bb:71:97:6c:80:9e:5c:65:3f:e0:5f:62:67:6c: 01:7a:f1:5e:75:dd:65:c5:10:72:7d:5f:04:91:7d: 61:e6:6c:3a:eb:9f:47:3a:b8:31:66:57:fa:a7:7e: 49:60:13:04:b4:7e:ed:f3:eb:6c:23:f8:6c:e1:67: 27:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:54:92:BE:38:0E:8A:4F:60:BC:6F:27:6B:08:55:7E:EB:84:9F:06 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ae:1f:ff:ca:99:76:fb:d9:dc:79:74:f5:e5:97:fa:1c:d8: 2b:c7:17:bc:25:3d:ee:37:41:5f:83:3c:a1:c3:0a:7e:60:b0: 49:ac:51:05:91:5f:59:2e:1d:91:2c:d2:17:97:d1:13:be:3b: 4d:2f:fb:89:21:49:1d:6c:f6:6b:06:f6:11:7e:e1:b8:5d:ad: 37:aa:a7:82:92:29:6b:78:c1:0b:df:25:53:2e:b8:3e:19:d6: 89:ff:0c:3a:27:d9:d6:8c:44:4a:84:67:ec:3f:54:39:94:7e: ad:41:ef:6c:e7:35:a6:90:a4:14:ac:68:25:a8:0c:74:57:da: fc:5f:c4:7d:f9:9b:53:79:a1:96:01:22:62:b7:3c:29:db:da: f7:aa:e3:eb:1d:0a:71:2c:9d:37:a3:51:a6:24:ac:34:61:ed: 75:c5:c7:2f:b9:16:f3:bf:9d:16:76:ea:bb:ab:79:2e:74:66: 6b:4c:31:11:3b:45:70:75:ed:b0:85:fe:da:85:5a:a3:e2:4b: 86:dc:7d:3d:52:76:1c:b0:e8:67:8e:da:0e:54:92:70:69:2f: 58:97:c0:2f:95:ff:fe:70:bf:09:de:a2:0a:24:2e:b5:32:d4: 62:c3:71:49:0f:bc:b4:93:39:e4:ef:03:03:2e:f3:e4:70:cd: d1:8a:38:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjYwNDA1MDYxNTI1WhcNMjYwNDEyMDYxNTI1WjAYMRYwFAYD VQQDEw02OWQxZmRmZC1mZDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiclIEM9I3zIN3FvTiXAtMEnRstRZ85OFxy6WUZDvLb/UNbjpF3PPeCPU7kri fs0TjFXYv4EoPnl30Fty+5mRtsZWsAWu1K0wTCIWwqx9BNesNtS4+Qn2RS4CsXrT LNbhF5ggE7SKjPZVaf0+cLSkkEK30VWRtT8xAa/vsXPhpTIMxXbNd8XlBGf2Xxai DIYEd3WcT8p5iIu0pCLQYXAPGCnUL+nA9y1patJcLFVpjX1u2iqfcXEi+ZZGqrSg FEJvPgSUu3GXbICeXGU/4F9iZ2wBevFedd1lxRByfV8EkX1h5mw6659HOrgxZlf6 p35JYBMEtH7t8+tsI/hs4WcnpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFINUkr44 DopPYLxvJ2sIVX7rhJ8GMB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK64f/8qZdvvZ3Hl09eWX+hzYK8cXvCU97jdBX4M8ocMKfmCwSaxRBZFfWS4d kSzSF5fRE747TS/7iSFJHWz2awb2EX7huF2tN6qngpIpa3jBC98lUy64PhnWif8M OifZ1oxESoRn7D9UOZR+rUHvbOc1ppCkFKxoJagMdFfa/F/EffmbU3mhlgEiYrc8 Kdva96rj6x0KcSydN6NRpiSsNGHtdcXHL7kW87+dFnbqu6t5LnRma0wxETtFcHXt sIX+2oVao+JLhtx9PVJ2HLDoZ47aDlSScGkvWJfAL5X//nC/Cd6iCiQutTLUYsNx SQ+8tJM55O8DAy7z5HDN0Yo4wA== -----END CERTIFICATE-----Generated at Sun Apr 5 21:10:29 2026 by rpki-client