$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: jIZtU6gBngLo8v0nGOUfh4KNMYcRzOC+FWCF+tJ6dUA= Subject key identifier: 79:25:1A:A3:93:26:82:61:DA:49:91:E5:3F:5B:E1:99:0A:6A:90:54 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: D7 Signing time: Sun 05 Apr 2026 06:03:33 +0000 Manifest this update: Sun 05 Apr 2026 06:03:33 +0000 Manifest next update: Sun 12 Apr 2026 06:03:33 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: DaB1oNCc0+ULypqs3RgrrRT+ZwIOc9fRDzA5SQSYq5w=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: 9Odwd+Tnh1umFLR0TM5Ak3v8LLc0vsp9acB6OkgzFHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Apr 5 06:03:33 2026 GMT Not After : Apr 12 06:03:33 2026 GMT Subject: CN=69d1fb35-8d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7b:03:1e:b5:06:2b:0f:eb:fc:d6:93:c2:00: 67:f5:09:ab:0f:ba:f7:eb:d6:c0:0e:28:ee:9c:86: cd:1e:0a:1c:4f:47:0b:f7:49:55:06:d1:a9:40:09: 18:69:c6:b3:35:c8:cc:99:ee:07:d7:6a:30:36:43: 48:16:d0:09:72:c7:1b:08:df:b4:bc:36:53:83:cb: d4:8a:b9:22:e2:cf:90:b9:39:23:f5:08:8a:42:48: 82:f2:b7:22:c9:0a:ea:92:78:ab:72:a3:4a:63:e5: 1d:ba:bb:cd:49:2a:c1:9e:6a:ce:67:94:99:c1:54: a6:3c:30:fa:a7:07:41:38:6f:3b:88:bf:97:60:56: 48:08:9a:6f:c2:24:45:6a:15:52:0b:06:f7:c2:79: 25:18:18:27:5c:8a:d9:f6:57:d2:47:08:35:d6:f7: 23:6f:61:e4:90:bc:c1:e2:c2:8f:ae:9a:f0:59:0f: 04:ac:0a:73:a2:2e:79:c2:63:9d:a2:61:21:e6:e1: 55:fd:b0:5c:38:2a:bd:06:40:ff:dd:5f:fc:86:bb: 8c:9f:cc:96:dd:ac:a0:9f:11:5f:73:09:c8:e4:66: 54:6f:50:47:2f:b9:0a:11:76:9d:59:1e:09:f5:f5: df:6d:1d:1f:67:25:3c:30:ff:c1:6b:88:6c:6f:61: ee:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:25:1A:A3:93:26:82:61:DA:49:91:E5:3F:5B:E1:99:0A:6A:90:54 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c8:88:1b:a5:b2:dc:72:73:8e:57:06:00:0c:f7:d4:81:bb: da:9f:0c:6a:62:d2:ac:14:42:b8:81:32:92:4b:c2:46:64:4e: 74:c8:22:e1:f6:6b:32:ab:93:e8:55:bd:1f:47:53:bc:af:ca: 6a:da:27:de:9b:26:6c:be:0d:8b:24:c8:5b:39:00:45:21:25: d8:8a:75:21:8c:47:59:17:55:9e:07:a5:60:5b:d9:20:0b:31: 58:4c:cd:d1:d1:d2:ce:26:06:2d:82:d0:a3:29:25:20:dc:2a: ec:4d:86:54:55:cf:6e:fa:93:9e:36:63:21:1a:55:49:54:5b: 05:20:b8:64:2f:9e:62:71:c0:52:8b:04:f1:76:17:f6:5f:16: e1:a6:99:83:cc:8d:ef:a4:1b:3f:37:a4:47:fe:9a:55:fb:4c: a0:87:95:2e:d2:6a:1f:3f:05:66:e5:15:e6:0c:a5:e8:a2:98: ab:a0:11:bc:ba:9f:11:15:7c:8d:88:3d:62:cc:ed:f7:be:86: 55:a1:6a:43:1f:35:82:4f:f7:01:f5:25:4e:b1:b2:af:62:c5: 5d:84:da:8a:7f:6a:92:c2:f7:e6:88:af:db:cc:02:04:dc:b4: 8f:4c:d9:75:fb:f5:6c:f2:77:2f:7a:28:c0:52:d6:8a:2b:91: f5:2e:4a:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2NzkxMTAvBgNVBAUTKDkyODBGMDcwNzQ3NzUzMzg3QjZCQTY1NzMyRDZERDc5 OTJCMzUwQzEwHhcNMjYwNDA1MDYwMzMzWhcNMjYwNDEyMDYwMzMzWjAYMRYwFAYD VQQDEw02OWQxZmIzNS04ZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43sDHrUGKw/r/NaTwgBn9QmrD7r369bADijunIbNHgocT0cL90lVBtGpQAkY acazNcjMme4H12owNkNIFtAJcscbCN+0vDZTg8vUirki4s+QuTkj9QiKQkiC8rci yQrqknircqNKY+UdurvNSSrBnmrOZ5SZwVSmPDD6pwdBOG87iL+XYFZICJpvwiRF ahVSCwb3wnklGBgnXIrZ9lfSRwg11vcjb2HkkLzB4sKPrprwWQ8ErApzoi55wmOd omEh5uFV/bBcOCq9BkD/3V/8hruMn8yW3aygnxFfcwnI5GZUb1BHL7kKEXadWR4J 9fXfbR0fZyU8MP/Ba4hsb2HuRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHklGqOT JoJh2kmR5T9b4ZkKapBUMB8GA1UdIwQYMBaAFJKA8HB0d1M4e2umVzLW3XmSs1DB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODY3OS9DQjJDQjNDRUVB NzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6aDdhNlpYTXRiZGVaS3pV TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODY3OS9DQjJDQjNDRUVBNzcxMUVGQTU2MzU2ODBDNEY5QUUwMi9rb0R3Y0hSM1V6 aDdhNlpYTXRiZGVaS3pVTUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmsiIG6Wy3HJzjlcGAAz31IG72p8MamLSrBRCuIEykkvCRmROdMgi4fZrMquT 6FW9H0dTvK/Katon3psmbL4NiyTIWzkARSEl2Ip1IYxHWRdVngelYFvZIAsxWEzN 0dHSziYGLYLQoyklINwq7E2GVFXPbvqTnjZjIRpVSVRbBSC4ZC+eYnHAUosE8XYX 9l8W4aaZg8yN76QbPzekR/6aVftMoIeVLtJqHz8FZuUV5gyl6KKYq6ARvLqfERV8 jYg9Yszt976GVaFqQx81gk/3AfUlTrGyr2LFXYTain9qksL35oiv28wCBNy0j0zZ dfv1bPJ3L3oowFLWiiuR9S5KTg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:49 2026 by rpki-client