$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: rq+naFRCaQRgb4EDdUMJ3KRP3v8gVZRwdO2ApR8PdX4= Subject key identifier: 50:3D:38:3B:8C:CA:C9:C6:31:A7:46:5F:E6:1A:77:59:15:B4:24:36 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 04A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 049C Signing time: Thu 21 May 2026 00:02:28 +0000 Manifest this update: Thu 21 May 2026 00:02:27 +0000 Manifest next update: Thu 28 May 2026 00:02:27 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: 0VNUiLtWbB3YJXDZkz0rQEXjTm/J4uuc4WcXMSYCuYs=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: 2diXZhIHeiTIXtGE7hgkGrF2mxwMF4mve/3rvi/DmaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1186 (0x4a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: May 21 00:02:27 2026 GMT Not After : May 28 00:02:27 2026 GMT Subject: CN=6a0e4b94-38e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6e:68:9b:fc:13:48:7c:b9:23:4c:b2:8f:70: b3:84:16:3f:8b:d3:8c:af:67:6a:78:6e:37:62:50: ae:24:ba:8b:e9:b7:db:9e:e5:a5:f9:ae:0c:4b:de: aa:c1:04:c0:88:bb:a0:2f:74:41:98:3c:5f:92:d0: 75:89:51:3b:ce:d4:ea:45:88:39:91:ec:ba:73:9d: 7d:9f:e4:0f:15:22:bd:8b:79:90:7d:be:da:ac:36: 58:64:8e:e5:0c:28:44:2f:03:af:76:ab:86:37:cd: d3:b4:9b:f4:b8:4b:30:5e:5f:a9:23:68:54:67:4e: 89:f1:fa:96:d1:58:c9:2e:11:c2:3e:e9:5c:6d:bb: ce:a2:84:d1:93:f5:00:0a:f2:75:5d:15:8d:82:38: b9:38:c0:95:f7:41:77:08:9c:d3:35:2b:21:33:33: 3e:81:7b:68:42:b8:02:e0:cf:81:94:06:0e:74:46: 13:6f:66:ce:43:84:6c:ab:fc:d5:d4:99:e4:af:01: 75:39:e7:3b:da:1f:be:c9:a3:dc:fd:0e:a5:b2:59: 6e:e6:f1:15:21:c0:2f:25:81:16:09:d0:28:a7:bb: 88:76:25:4a:3c:ce:28:b6:d8:42:63:f8:38:e5:fa: 34:84:f2:d7:fa:75:6e:6b:19:9c:79:5f:0a:98:fe: cf:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3D:38:3B:8C:CA:C9:C6:31:A7:46:5F:E6:1A:77:59:15:B4:24:36 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:8a:e1:7b:d9:d7:46:5e:09:52:82:1a:be:62:4e:73:fb:66: a1:68:f7:79:a0:1b:73:e3:8b:76:fe:56:e3:2e:85:ff:b8:3b: 19:94:d9:17:75:c0:f0:f5:6a:67:8d:7f:15:ab:6d:72:16:48: bb:aa:53:26:41:f2:3b:60:e8:ed:18:84:f6:c0:ab:e1:16:f7: ee:fd:e8:50:6c:d2:4b:91:c9:e5:df:42:7b:c4:4f:ae:2b:ce: c3:7b:cd:c4:27:04:57:f1:3b:4e:02:db:34:74:85:65:b9:ad: 27:d6:e7:55:8b:93:02:c2:27:cd:b1:95:8c:87:22:41:eb:05: 92:67:4f:73:de:3f:cc:01:fe:ec:f2:0b:3b:49:b5:3f:6d:b5: ba:88:d4:00:51:21:6f:ac:96:06:8e:b4:af:4f:58:27:f4:91: c1:92:94:4a:e0:33:a7:00:b9:7a:07:6f:ff:27:6c:e9:18:e5: 31:d7:d4:13:95:8a:80:28:62:c6:ed:19:36:1d:f8:b7:41:85: f3:61:70:50:33:43:7e:b4:50:ad:b6:67:10:1e:8b:86:49:ec: d4:22:ba:f6:3d:96:f7:9c:87:c7:40:80:c7:49:d4:e6:36:a5: 5f:9e:de:bc:5a:1e:78:25:8d:7e:7c:f5:9d:12:be:e6:9d:72: 39:89:d6:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjYwNTIxMDAwMjI3WhcNMjYwNTI4MDAwMjI3WjAYMRYwFAYD VQQDEw02YTBlNGI5NC0zOGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0G5om/wTSHy5I0yyj3CzhBY/i9OMr2dqeG43YlCuJLqL6bfbnuWl+a4MS96q wQTAiLugL3RBmDxfktB1iVE7ztTqRYg5key6c519n+QPFSK9i3mQfb7arDZYZI7l DChELwOvdquGN83TtJv0uEswXl+pI2hUZ06J8fqW0VjJLhHCPulcbbvOooTRk/UA CvJ1XRWNgji5OMCV90F3CJzTNSshMzM+gXtoQrgC4M+BlAYOdEYTb2bOQ4Rsq/zV 1JnkrwF1Oec72h++yaPc/Q6lsllu5vEVIcAvJYEWCdAop7uIdiVKPM4otthCY/g4 5fo0hPLX+nVuaxmceV8KmP7P+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFA9ODuM ysnGMadGX+Yad1kVtCQ2MB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk4rhe9nXRl4JUoIavmJOc/tmoWj3eaAbc+OLdv5W4y6F/7g7GZTZF3XA8PVq Z41/FattchZIu6pTJkHyO2Do7RiE9sCr4Rb37v3oUGzSS5HJ5d9Ce8RPrivOw3vN xCcEV/E7TgLbNHSFZbmtJ9bnVYuTAsInzbGVjIciQesFkmdPc94/zAH+7PILO0m1 P221uojUAFEhb6yWBo60r09YJ/SRwZKUSuAzpwC5egdv/yds6RjlMdfUE5WKgChi xu0ZNh34t0GF82FwUDNDfrRQrbZnEB6Lhkns1CK69j2W95yHx0CAx0nU5jalX57e vFoeeCWNfnz1nRK+5p1yOYnW4A== -----END CERTIFICATE-----Generated at Thu May 21 10:19:33 2026 by rpki-client