$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: YOmz5+ZAQpFD9yH4DWVXIyjoDiYTR7TmtKPp6VSs/6M= Subject key identifier: CB:7B:76:88:AB:95:9A:2E:17:10:A6:A9:18:F4:0D:6A:3E:7E:2A:4F Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 0441 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 0439 Signing time: Thu 21 May 2026 00:23:16 +0000 Manifest this update: Thu 21 May 2026 00:23:16 +0000 Manifest next update: Thu 28 May 2026 00:23:16 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: yfUHSkhqXFQS9XGjRO0AhFsKXRDEeStSZtyBS/JLnS0=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: fIfbNfI4LK0sIc8YlB3yB2MWelYN+TJwvhzmec0KKmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: May 21 00:23:16 2026 GMT Not After : May 28 00:23:16 2026 GMT Subject: CN=6a0e5074-2a09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c5:57:20:e9:42:c6:8e:11:4c:70:73:3c:6e: f9:74:97:73:6e:f2:58:a5:b6:b1:c2:bc:b1:dc:db: c8:31:0a:24:18:b0:d9:3c:31:f4:84:cb:f6:87:e8: b6:e9:8c:aa:34:ec:40:37:fb:95:2e:73:93:8a:4a: de:82:35:9f:fc:89:cf:39:8f:79:01:0e:16:93:2f: 27:03:3b:4f:77:36:34:b8:6c:69:1b:98:3e:24:a2: 4b:85:d3:b5:39:17:11:aa:3c:2c:1c:1b:3d:76:18: 9b:d9:9a:b7:b6:77:23:09:00:4d:a5:9f:3e:9a:4d: 10:30:de:2f:08:40:0c:8a:60:c6:13:a5:d8:84:58: 3e:eb:b7:d6:91:17:de:4e:44:4c:35:7b:20:a5:f5: fb:5b:0c:09:60:42:3e:22:08:f7:ed:b3:fd:55:3a: b6:56:8c:d5:56:ae:ce:99:40:c6:e3:53:3d:ba:48: 1d:5c:5d:44:00:fc:f5:a4:f1:bb:ee:e7:fb:27:d5: 6d:8e:45:9e:8a:81:22:83:b1:02:cf:02:f2:8a:84: 0b:30:69:07:ef:f3:dd:6e:69:54:21:22:96:8d:4d: 70:9f:70:24:18:1b:48:cf:1c:11:5f:d5:9f:f3:35: d4:6e:3f:63:db:9a:b4:69:cc:30:fb:bb:10:9e:85: f5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:7B:76:88:AB:95:9A:2E:17:10:A6:A9:18:F4:0D:6A:3E:7E:2A:4F X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ac:c5:56:c9:b0:ba:c1:56:03:fd:12:32:d9:f4:4b:4a:64: 79:98:cb:2c:bf:ce:a9:d7:57:8e:dc:7b:0d:c9:86:05:96:0a: aa:a6:ce:a3:e4:0e:aa:b4:fc:04:7a:36:ba:9f:e9:00:ef:f5: 8b:e3:56:31:3e:cd:c6:73:e6:ca:ed:a6:01:29:69:68:3e:68: f9:7d:65:5b:e4:98:9b:a2:0a:26:03:5f:99:95:d9:af:f5:11: 56:ac:c5:91:b2:69:c5:0e:65:33:80:e3:ec:b9:4e:ba:da:a4: c0:56:36:9c:ab:0b:cd:be:34:2b:42:4c:f3:3a:f6:b2:22:ae: 42:4e:13:b2:0a:59:a2:c8:6b:00:d2:6d:75:3e:bf:16:87:78: 18:64:06:89:7f:3b:5f:2e:8e:b1:24:35:ab:a9:3b:88:d9:ae: e0:ef:a7:c6:a4:82:71:89:eb:96:dc:d2:02:15:b3:ca:8b:25: 20:af:58:ea:8e:b5:18:9b:43:8c:81:6b:df:24:52:61:3d:41: 0b:03:5a:44:05:16:db:ac:3f:74:26:b3:7d:27:6a:72:1b:e9: f2:af:4c:ea:7d:97:bc:45:c9:0c:5c:b7:de:23:6a:86:21:6d: 47:1c:11:00:6b:9b:8b:1e:11:fc:d1:ee:4d:e8:36:18:c1:99: a5:3d:18:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjYwNTIxMDAyMzE2WhcNMjYwNTI4MDAyMzE2WjAYMRYwFAYD VQQDEw02YTBlNTA3NC0yYTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk8VXIOlCxo4RTHBzPG75dJdzbvJYpbaxwryx3NvIMQokGLDZPDH0hMv2h+i2 6YyqNOxAN/uVLnOTikregjWf/InPOY95AQ4Wky8nAztPdzY0uGxpG5g+JKJLhdO1 ORcRqjwsHBs9dhib2Zq3tncjCQBNpZ8+mk0QMN4vCEAMimDGE6XYhFg+67fWkRfe TkRMNXsgpfX7WwwJYEI+Igj37bP9VTq2VozVVq7OmUDG41M9ukgdXF1EAPz1pPG7 7uf7J9VtjkWeioEig7ECzwLyioQLMGkH7/PdbmlUISKWjU1wn3AkGBtIzxwRX9Wf 8zXUbj9j25q0acww+7sQnoX1SwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMt7doir lZouFxCmqRj0DWo+fipPMB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMKzFVsmwusFWA/0SMtn0S0pkeZjLLL/OqddXjtx7DcmGBZYKqqbOo+QOqrT8 BHo2up/pAO/1i+NWMT7NxnPmyu2mASlpaD5o+X1lW+SYm6IKJgNfmZXZr/URVqzF kbJpxQ5lM4Dj7LlOutqkwFY2nKsLzb40K0JM8zr2siKuQk4TsgpZoshrANJtdT6/ Fod4GGQGiX87Xy6OsSQ1q6k7iNmu4O+nxqSCcYnrltzSAhWzyoslIK9Y6o61GJtD jIFr3yRSYT1BCwNaRAUW26w/dCazfSdqchvp8q9M6n2XvEXJDFy33iNqhiFtRxwR AGubix4R/NHuTeg2GMGZpT0Yng== -----END CERTIFICATE-----Generated at Thu May 21 14:14:09 2026 by rpki-client