$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: sb8YB7wYGe8BSKGIgDUtHKVyb+uV/py3Rt8hhs5FSmg= Subject key identifier: 37:C3:74:BB:D7:FA:6B:84:BC:40:11:29:D8:37:B5:D5:2D:85:60:25 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 045E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 0452 Signing time: Thu 21 May 2026 00:20:25 +0000 Manifest this update: Thu 21 May 2026 00:20:25 +0000 Manifest next update: Thu 28 May 2026 00:20:25 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: Yy1pZI7wig+gL/+o2i0E4kcu4rVksDGsUT6gEm5eZvI=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: I3945a68aAj4Bezh1bF6xRl/WpfQZcBM/2Xudp6szlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1118 (0x45e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: May 21 00:20:25 2026 GMT Not After : May 28 00:20:25 2026 GMT Subject: CN=6a0e4fc9-7c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d8:52:e7:e4:d6:60:84:fc:89:01:76:ca:0b: e4:28:21:3d:9c:fc:e9:a1:de:e4:dd:ff:18:d9:31: 1e:37:5e:db:01:6f:0d:56:f6:24:9a:ef:70:f4:bc: d9:ab:71:b1:5f:ab:33:fc:42:84:02:66:be:91:51: fb:32:26:41:9b:b1:80:64:a6:7c:73:74:50:9c:c2: 7b:0f:c8:a2:e0:7d:2f:71:61:4a:02:4d:77:78:5e: 81:ca:85:e5:50:14:e4:f9:9e:a1:a5:b6:5c:7c:24: 27:d2:97:eb:04:d1:91:89:03:57:00:09:72:f4:d9: 22:26:f7:33:6e:38:b7:08:17:61:50:65:4f:b3:c2: 47:59:c9:72:11:ac:50:14:2d:0b:64:4e:1e:3a:47: 8c:d9:70:7e:2d:dc:10:66:51:7c:87:19:de:40:7a: b5:33:50:69:c0:2c:2e:66:fc:11:72:9a:43:31:5f: 6e:0b:ec:34:23:89:0b:2b:6c:00:a8:7a:b8:08:6f: 63:39:8e:0b:c3:a7:25:17:cf:a6:0c:ec:9b:d5:9c: 8a:08:6e:d2:30:99:eb:e2:48:94:e7:70:5e:16:8a: 9b:59:f1:24:52:28:f8:06:d6:b0:9b:4a:e9:08:f3: bc:09:73:7b:95:b7:ac:f3:9d:4f:1a:e2:7f:b4:f3: e9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C3:74:BB:D7:FA:6B:84:BC:40:11:29:D8:37:B5:D5:2D:85:60:25 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:9e:3c:27:28:5e:e0:d3:56:ee:5a:c5:fa:6a:28:e9:0f:d2: d1:a1:a9:d6:12:37:4f:ca:bc:05:46:29:d2:a4:16:4f:3d:0f: 05:18:f2:b9:c9:d3:d9:d0:8c:6a:61:ff:7c:cf:b1:e1:47:92: 1d:63:e4:12:0f:02:11:a5:06:be:a9:3b:e5:77:38:12:4d:0e: c3:55:f8:9f:c5:0c:f2:4e:aa:b5:a5:eb:97:32:04:04:ad:5d: f2:52:ba:16:63:9a:73:a5:5a:a9:46:76:05:1d:ec:2d:53:d1: 6d:c2:bc:13:09:2d:30:89:59:76:38:f0:b5:11:5e:1e:81:b2: da:97:24:d9:24:68:a3:01:0d:d1:97:aa:15:53:fc:78:42:3e: e9:02:d6:d5:35:3f:f5:68:6f:fe:31:95:ce:d0:36:f7:e2:f3: 4a:c9:52:7e:3c:8a:83:18:4e:88:e7:83:79:a0:3c:c7:50:2a: df:39:b5:63:3d:b3:b0:3a:de:f1:99:ff:94:87:89:e5:cc:b0: 38:a2:48:cb:53:b8:5b:56:a1:92:0e:b4:fd:15:da:e4:0c:00: 40:d7:78:7f:6d:92:0f:cf:0c:3d:97:16:44:b5:8a:de:40:26: c9:7a:59:c1:85:a0:f0:b0:9a:73:d8:7b:71:cc:9f:f4:78:41: d0:cc:49:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjYwNTIxMDAyMDI1WhcNMjYwNTI4MDAyMDI1WjAYMRYwFAYD VQQDEw02YTBlNGZjOS03YzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdhS5+TWYIT8iQF2ygvkKCE9nPzpod7k3f8Y2TEeN17bAW8NVvYkmu9w9LzZ q3GxX6sz/EKEAma+kVH7MiZBm7GAZKZ8c3RQnMJ7D8ii4H0vcWFKAk13eF6ByoXl UBTk+Z6hpbZcfCQn0pfrBNGRiQNXAAly9NkiJvczbji3CBdhUGVPs8JHWclyEaxQ FC0LZE4eOkeM2XB+LdwQZlF8hxneQHq1M1BpwCwuZvwRcppDMV9uC+w0I4kLK2wA qHq4CG9jOY4Lw6clF8+mDOyb1ZyKCG7SMJnr4kiU53BeFoqbWfEkUij4Btawm0rp CPO8CXN7lbes851PGuJ/tPPp9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDfDdLvX +muEvEARKdg3tdUthWAlMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkZ48Jyhe4NNW7lrF+moo6Q/S0aGp1hI3T8q8BUYp0qQWTz0PBRjyucnT2dCM amH/fM+x4UeSHWPkEg8CEaUGvqk75Xc4Ek0Ow1X4n8UM8k6qtaXrlzIEBK1d8lK6 FmOac6VaqUZ2BR3sLVPRbcK8EwktMIlZdjjwtRFeHoGy2pck2SRoowEN0ZeqFVP8 eEI+6QLW1TU/9Whv/jGVztA29+LzSslSfjyKgxhOiOeDeaA8x1Aq3zm1Yz2zsDre 8Zn/lIeJ5cywOKJIy1O4W1ahkg60/RXa5AwAQNd4f22SD88MPZcWRLWK3kAmyXpZ wYWg8LCac9h7ccyf9HhB0MxJ6A== -----END CERTIFICATE-----Generated at Thu May 21 09:37:25 2026 by rpki-client