$ rpki-client -vvf rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft File: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft (raw, json) Hash identifier: yqE/7QnwjRiwRSJpIL5UeGjU4GrLxrINU9NGgGHspbU= Subject key identifier: 83:38:7E:96:28:9B:35:BB:AD:A4:06:E6:46:44:1C:F4:9C:48:4E:65 Authority key identifier: 2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 Certificate issuer: /CN=A918424C/serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft Manifest number: 0158 Signing time: Sun 05 Apr 2026 04:26:43 +0000 Manifest this update: Sun 05 Apr 2026 04:26:42 +0000 Manifest next update: Sun 12 Apr 2026 04:26:42 +0000 Files and hashes: 1: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl (hash: 20bsVCKvgGPTCOq+uirlz40mcLiHoDfjL8Yp17zQDJo=) 2: 4394064223D511EF9AB13E4FC4F9AE02.roa (hash: m9PVqT0U37yXO4ZBkmsSwAW86j+V8m+FgHiO1R6bfj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:26:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918424C, serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Validity Not Before: Apr 5 04:26:42 2026 GMT Not After : Apr 12 04:26:42 2026 GMT Subject: CN=69d1e483-a823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:df:83:47:1b:aa:b2:73:a4:97:23:7b:28:2b: 0e:79:d4:83:ad:ae:51:61:21:79:24:4b:8b:39:f0: b8:6d:05:9e:2e:a3:f1:2c:0d:e6:c8:d0:81:e5:63: a6:09:85:c6:6f:aa:74:2f:af:13:7e:c9:c3:e9:dc: c3:bb:f7:35:30:0d:6e:79:5a:a2:75:e9:bc:48:5f: db:0a:5d:de:fc:3f:37:33:59:67:87:61:a2:65:9f: 60:b0:05:1d:30:16:07:39:5a:cc:1c:50:bc:7d:26: e9:fa:82:b7:58:a8:15:36:8e:ca:e2:7b:86:0e:34: 04:17:65:cd:61:fe:c1:8c:c5:54:e7:97:8c:e8:7f: 53:89:a3:d9:f2:28:3f:df:fa:f9:f9:8f:db:9a:d5: df:03:1d:d9:78:b8:19:a5:b3:94:44:3b:0f:88:bb: a0:34:c9:79:98:50:3f:77:ba:96:41:b9:5e:bf:8a: 1e:75:5c:5d:d0:3b:30:33:32:26:29:4a:b0:4b:ca: 31:63:b6:d0:7f:5f:ff:94:16:e4:6f:d1:76:46:d3: db:05:3e:54:bb:bc:b3:58:86:75:0d:06:0c:c9:d5: 66:d2:e3:eb:65:2c:70:04:a1:62:52:5f:37:c9:b1: 2e:95:6d:b6:40:31:69:38:13:47:83:de:95:53:1b: 42:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:38:7E:96:28:9B:35:BB:AD:A4:06:E6:46:44:1C:F4:9C:48:4E:65 X509v3 Authority Key Identifier: keyid:2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:11:5d:c7:99:3b:94:cb:f2:6e:04:0d:e0:eb:08:c7:2c:23: 6b:25:e5:61:c2:ec:d1:8b:62:ed:4c:97:b2:c9:a4:d6:ae:64: 20:b2:68:af:01:63:be:01:69:7d:1f:eb:45:ad:84:97:2e:7e: 2d:09:a4:e3:5f:dd:aa:c8:b7:0b:85:07:a4:9f:df:3e:ac:2d: 71:50:88:78:f8:e8:85:ad:61:45:55:4e:3f:43:4f:aa:c0:b3: d1:e8:10:2a:7a:37:dc:a5:fa:97:f3:89:2b:95:f0:1f:b9:ba: 6b:90:c9:e6:04:74:6a:96:7b:8e:df:80:b3:18:99:4b:65:40: 98:d2:2c:c3:b8:c1:07:39:fa:c3:c0:b5:5d:d3:ec:a6:a7:e1: 07:21:82:79:b8:38:78:80:27:24:84:6c:a9:11:3f:be:50:7b: 06:e0:0f:d0:11:e9:48:4e:91:89:59:8a:57:75:1e:a6:47:1d: c3:a9:bd:14:66:77:f8:b1:a4:05:99:c6:94:fe:dc:cc:a5:ca: 60:98:d2:01:3a:6f:58:b0:64:6d:92:b6:3e:83:cb:9f:ab:58: 45:f0:23:59:29:4f:75:c7:f2:47:53:0b:69:b3:66:7d:58:33: dc:d7:3b:8f:66:71:38:38:ea:7e:65:53:e4:30:a6:7e:5b:e7: 1a:19:3b:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyNEMxMTAvBgNVBAUTKDJBNDQ1NkQxNzJCMkI4NkRDREE3MTJFNjYxRjZEOUYy RkYxOTIwMzgwHhcNMjYwNDA1MDQyNjQyWhcNMjYwNDEyMDQyNjQyWjAYMRYwFAYD VQQDEw02OWQxZTQ4My1hODIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtN+DRxuqsnOklyN7KCsOedSDra5RYSF5JEuLOfC4bQWeLqPxLA3myNCB5WOm CYXGb6p0L68TfsnD6dzDu/c1MA1ueVqidem8SF/bCl3e/D83M1lnh2GiZZ9gsAUd MBYHOVrMHFC8fSbp+oK3WKgVNo7K4nuGDjQEF2XNYf7BjMVU55eM6H9TiaPZ8ig/ 3/r5+Y/bmtXfAx3ZeLgZpbOURDsPiLugNMl5mFA/d7qWQblev4oedVxd0DswMzIm KUqwS8oxY7bQf1//lBbkb9F2RtPbBT5Uu7yzWIZ1DQYMydVm0uPrZSxwBKFiUl83 ybEulW22QDFpOBNHg96VUxtCRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIM4fpYo mzW7raQG5kZEHPScSE5lMB8GA1UdIwQYMBaAFCpEVtFysrhtzacS5mH22fL/GSA4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI0Qy9BQkNCRUJENjIz RDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVHM05weExtWWZiWjh2OFpJ RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trUlcwWEt5dUczTnB4TG1ZZmJaOHY4WklEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI0Qy9BQkNCRUJENjIzRDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVH M05weExtWWZiWjh2OFpJRGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiRFdx5k7lMvybgQN4OsIxywjayXlYcLs0Yti7UyXssmk1q5kILJorwFjvgFp fR/rRa2Ely5+LQmk41/dqsi3C4UHpJ/fPqwtcVCIePjoha1hRVVOP0NPqsCz0egQ Kno33KX6l/OJK5XwH7m6a5DJ5gR0apZ7jt+AsxiZS2VAmNIsw7jBBzn6w8C1XdPs pqfhByGCebg4eIAnJIRsqRE/vlB7BuAP0BHpSE6RiVmKV3Uepkcdw6m9FGZ3+LGk BZnGlP7czKXKYJjSATpvWLBkbZK2PoPLn6tYRfAjWSlPdcfyR1MLabNmfVgz3Nc7 j2ZxODjqfmVT5DCmflvnGhk7IQ== -----END CERTIFICATE-----Generated at Sun Apr 5 21:09:35 2026 by rpki-client