$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: z1R9wYBGOfhKWW/8J00iF9TxU4iOKPHjbnr3szMMV+Q= Subject key identifier: F2:19:97:E2:BC:FB:54:E9:BE:99:B1:B2:CC:80:FC:34:2A:76:46:70 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 01E0 Signing time: Sun 05 Apr 2026 02:59:09 +0000 Manifest this update: Sun 05 Apr 2026 02:59:09 +0000 Manifest next update: Sun 12 Apr 2026 02:59:09 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: 34RU+OaKLRimqaA9jIsb3xpveiA4VP5jGRJtm/KTqA8=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: cTlf1NxuIouKXNPDJnnCsmUtnsb/nG3rM1WrAqOmy6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Apr 5 02:59:09 2026 GMT Not After : Apr 12 02:59:09 2026 GMT Subject: CN=69d1cffd-85fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bc:32:23:3d:22:4f:5a:5c:c2:26:e3:c8:c6: e7:fa:95:4b:5b:1f:48:9a:07:44:b9:18:67:19:3a: 6f:73:52:52:d4:b5:36:a2:06:9a:fa:e3:a3:ea:d0: ad:99:e7:dd:a7:30:7b:fa:84:d8:17:25:98:ed:67: 7f:21:c0:1f:4d:5e:c5:31:13:0e:80:5b:24:95:6d: 27:1d:19:56:9e:9b:b8:5d:76:2a:43:64:87:99:f8: 19:3f:81:df:c3:39:ae:10:72:db:8e:e6:bf:fd:01: 47:ee:d2:e8:22:78:ab:b1:9f:89:21:5d:c8:5c:65: be:dd:c7:ec:cb:7c:fc:17:9d:15:b3:27:a3:7e:cb: d2:68:2b:db:a9:ec:6e:c9:09:9c:ee:34:53:27:20: 0e:a9:91:6b:07:b8:d8:eb:5b:e3:73:2a:72:f6:58: c8:b1:5c:03:b4:4d:30:0b:3f:86:76:d0:65:13:d1: 33:65:e0:d6:a3:6f:01:4d:d9:4c:79:bf:e2:ad:bd: 46:7d:ef:00:f7:ee:94:fb:70:a9:d3:b5:f7:16:ff: 59:fd:d6:08:0b:3f:13:06:88:c1:54:b7:0b:91:3a: ff:3b:82:0a:21:52:58:64:97:9a:ba:8f:c0:fb:16: 37:98:df:d9:d7:6a:53:43:fa:bd:4e:0b:46:13:de: 90:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:19:97:E2:BC:FB:54:E9:BE:99:B1:B2:CC:80:FC:34:2A:76:46:70 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:43:2e:d4:b8:85:ee:05:75:b1:67:c2:04:47:90:fd:fc:31: 0b:5c:2b:04:4b:1d:8a:45:63:35:06:6c:50:c0:c5:55:ed:2c: 54:dd:42:af:27:1b:54:e3:4a:2d:f1:b5:53:5a:65:15:cc:25: ac:5a:65:b1:f9:6a:e4:a4:5f:63:a8:3b:64:e4:9d:40:0f:d3: 8d:7a:f4:ed:2c:cf:ea:3f:c2:ca:94:9b:09:a9:72:4b:c2:74: ee:b0:ff:f6:25:de:fa:55:96:42:8e:00:28:f4:2a:c7:1d:2f: 9b:5a:6c:b8:44:f1:8d:35:a0:33:84:52:f1:63:96:91:c4:4e: 17:43:56:4f:66:5c:42:24:37:89:d2:91:b5:91:4d:dd:24:59: b4:e4:f5:fc:6b:e5:84:bb:d0:65:26:d7:b4:ba:75:f1:1c:c4: 06:2a:40:8f:ca:40:e0:4b:8a:97:8f:03:95:4d:e6:b2:a6:30: ff:b5:b9:7f:34:8b:a1:dd:1b:18:01:6b:95:81:4c:02:e0:9d: fa:56:f2:6d:cf:c1:a0:38:fc:b9:cb:60:cd:d5:27:71:c3:bc: 74:b9:7c:6f:a6:5e:38:d4:e3:5c:e7:e3:39:53:da:5e:b9:d1: fe:66:69:84:f5:dc:92:da:8f:4c:f9:f1:ea:60:7d:82:3e:c0: 32:9e:2e:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjYwNDA1MDI1OTA5WhcNMjYwNDEyMDI1OTA5WjAYMRYwFAYD VQQDEw02OWQxY2ZmZC04NWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LwyIz0iT1pcwibjyMbn+pVLWx9ImgdEuRhnGTpvc1JS1LU2ogaa+uOj6tCt mefdpzB7+oTYFyWY7Wd/IcAfTV7FMRMOgFsklW0nHRlWnpu4XXYqQ2SHmfgZP4Hf wzmuEHLbjua//QFH7tLoInirsZ+JIV3IXGW+3cfsy3z8F50VsyejfsvSaCvbqexu yQmc7jRTJyAOqZFrB7jY61vjcypy9ljIsVwDtE0wCz+GdtBlE9EzZeDWo28BTdlM eb/irb1Gfe8A9+6U+3Cp07X3Fv9Z/dYICz8TBojBVLcLkTr/O4IKIVJYZJeauo/A +xY3mN/Z12pTQ/q9TgtGE96QLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPIZl+K8 +1TpvpmxssyA/DQqdkZwMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP0Mu1LiF7gV1sWfCBEeQ/fwxC1wrBEsdikVjNQZsUMDFVe0sVN1CrycbVONK LfG1U1plFcwlrFplsflq5KRfY6g7ZOSdQA/TjXr07SzP6j/CypSbCalyS8J07rD/ 9iXe+lWWQo4AKPQqxx0vm1psuETxjTWgM4RS8WOWkcROF0NWT2ZcQiQ3idKRtZFN 3SRZtOT1/GvlhLvQZSbXtLp18RzEBipAj8pA4EuKl48DlU3msqYw/7W5fzSLod0b GAFrlYFMAuCd+lbybc/BoDj8uctgzdUnccO8dLl8b6ZeONTjXOfjOVPaXrnR/mZp hPXcktqPTPnx6mB9gj7AMp4u2g== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:03 2026 by rpki-client