$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: WQ0X0C68rJ0SLUHcPx/SJaTRnay62xyf4FhoPEvyG0A= Subject key identifier: 4A:16:3D:32:32:56:48:DC:B9:A6:CE:3F:98:D2:B3:2A:3C:7B:9C:EF Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 3555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 3541 Signing time: Sat 04 Apr 2026 14:24:07 +0000 Manifest this update: Sat 04 Apr 2026 14:24:06 +0000 Manifest next update: Sat 11 Apr 2026 14:24:06 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: iuSP0HNljsX67ChdT9ooUD0HxZtWWsb/0N7FJnupvtc=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: 3W4AiNrrj2kArnRpgqwuIaUDi20UJ9Jgfp+kFDwU8cQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13653 (0x3555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Apr 4 14:24:06 2026 GMT Not After : Apr 11 14:24:06 2026 GMT Subject: CN=69d11f06-7358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:43:27:55:62:f9:f2:9c:09:46:ce:8d:c5:ee: 71:ad:17:2e:3f:f5:92:84:bd:3f:bd:67:bb:9a:99: 1e:c5:41:30:55:06:54:21:8f:6a:d5:55:90:51:d0: b8:44:e9:99:b9:63:03:a2:47:c2:b7:a9:89:a3:33: b3:0f:35:df:e2:1b:df:6a:55:69:90:fd:cc:e9:a4: 4f:f3:bb:94:c1:99:81:45:2b:2a:8b:c3:9f:e0:e5: fb:63:dd:d7:68:29:3b:44:01:f9:bb:a9:5f:13:94: ef:e9:b9:99:c7:a9:5f:12:8f:8f:69:6d:42:25:95: 52:33:99:c8:37:de:47:33:0e:91:3d:0f:13:47:6e: 7f:71:94:7a:4e:84:d6:bc:60:6e:7a:c1:09:d6:7c: 48:3c:7c:d7:e7:0d:7a:34:a1:db:8b:21:36:ed:a8: 42:e2:16:91:db:4a:cc:69:69:a3:17:b3:f9:0a:0b: a4:63:39:d8:b3:15:b1:c7:86:4d:31:7a:25:96:24: 11:45:c6:9d:17:1e:ed:70:aa:c4:04:54:56:ba:de: 87:56:e4:3b:7a:d1:52:cb:ee:ef:6f:3a:59:f5:b2: 49:e5:2b:1f:e3:88:90:51:40:ae:9a:83:d8:13:58: 84:bc:01:2f:fa:49:95:5d:93:2d:ae:21:06:23:2f: ec:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:16:3D:32:32:56:48:DC:B9:A6:CE:3F:98:D2:B3:2A:3C:7B:9C:EF X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:0a:4e:51:c4:4f:67:59:02:dd:78:13:bb:9b:b4:44:97:b0: c5:69:d0:8f:69:b6:5a:fe:f6:7d:d5:38:3b:2f:e9:d2:b5:d1: 87:3c:58:d0:13:aa:33:c6:ce:12:8c:f6:5e:96:dd:d1:ae:e4: 6f:3e:98:93:6a:7a:e5:82:24:a3:6c:76:4a:ab:e6:9e:46:6b: af:08:9f:d6:dc:5e:72:5f:ab:1c:fb:85:8b:2a:c9:2f:fe:75: 49:b3:93:2b:68:30:6c:fd:2e:e5:07:27:03:28:4b:a4:22:8f: 8b:2e:a6:b4:48:1c:d5:7c:58:cb:66:09:d3:cd:9a:e9:fd:d3: 23:51:a8:6e:33:e9:24:79:dd:c2:ac:d0:15:76:b0:bb:b0:f4: 45:83:ce:10:21:c1:c0:4f:73:5a:fe:97:1b:80:66:26:b8:17: f8:91:c2:59:e3:d2:6d:0d:4a:41:de:ad:45:38:96:1d:c6:0f: 18:ef:b1:90:66:3d:ca:49:e4:1e:1a:99:52:02:50:a2:61:44: 6f:66:72:e9:9e:e7:2d:a4:db:8b:ad:54:a7:cf:0f:94:03:d9: 47:24:2e:7b:32:ab:03:eb:70:21:bc:87:c6:1f:95:f3:66:ff: 2f:66:8a:bb:94:4f:cd:97:64:a4:a9:75:4b:94:b0:4d:f6:79: 4b:61:4f:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjYwNDA0MTQyNDA2WhcNMjYwNDExMTQyNDA2WjAYMRYwFAYD VQQDEw02OWQxMWYwNi03MzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0MnVWL58pwJRs6Nxe5xrRcuP/WShL0/vWe7mpkexUEwVQZUIY9q1VWQUdC4 ROmZuWMDokfCt6mJozOzDzXf4hvfalVpkP3M6aRP87uUwZmBRSsqi8Of4OX7Y93X aCk7RAH5u6lfE5Tv6bmZx6lfEo+PaW1CJZVSM5nIN95HMw6RPQ8TR25/cZR6ToTW vGBuesEJ1nxIPHzX5w16NKHbiyE27ahC4haR20rMaWmjF7P5CgukYznYsxWxx4ZN MXolliQRRcadFx7tcKrEBFRWut6HVuQ7etFSy+7vbzpZ9bJJ5Ssf44iQUUCumoPY E1iEvAEv+kmVXZMtriEGIy/sQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEoWPTIy VkjcuabOP5jSsyo8e5zvMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMwpOUcRPZ1kC3XgTu5u0RJewxWnQj2m2Wv72fdU4Oy/p0rXRhzxY0BOqM8bO Eoz2Xpbd0a7kbz6Yk2p65YIko2x2SqvmnkZrrwif1txecl+rHPuFiyrJL/51SbOT K2gwbP0u5QcnAyhLpCKPiy6mtEgc1XxYy2YJ082a6f3TI1GobjPpJHndwqzQFXaw u7D0RYPOECHBwE9zWv6XG4BmJrgX+JHCWePSbQ1KQd6tRTiWHcYPGO+xkGY9yknk HhqZUgJQomFEb2Zy6Z7nLaTbi61Up88PlAPZRyQuezKrA+twIbyHxh+V82b/L2aK u5RPzZdkpKl1S5SwTfZ5S2FP7w== -----END CERTIFICATE-----Generated at Sun Apr 5 20:00:08 2026 by rpki-client