$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft File: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft (raw, json) Hash identifier: DnipNgtHF48BJCl41oc0Z5pDuRscuKHp+XrO9k7lOXw= Subject key identifier: 39:49:FE:DA:05:AD:BB:DC:4C:C4:28:7A:5E:3B:F3:09:75:6F:61:B6 Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Certificate serial: 0E7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft Manifest number: 0E5C Signing time: Wed 20 May 2026 17:47:56 +0000 Manifest this update: Wed 20 May 2026 17:47:55 +0000 Manifest next update: Wed 27 May 2026 17:47:55 +0000 Files and hashes: 1: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl (hash: HPFQqTd+O2fSc3TJjUK98X8pDjDJMuq/s57P/q1vKcs=) 2: F70C0B5E4A8C11F18179024696EE528E.roa (hash: 5Yst2FyhyH3jYpzIiDAy6NxPFa9IDDIEKH6KQxiG41Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3707 (0xe7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F521, serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Validity Not Before: May 20 17:47:55 2026 GMT Not After : May 27 17:47:55 2026 GMT Subject: CN=6a0df3cb-f0f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3d:cc:12:77:7b:5f:2f:53:fe:c8:4a:05:70: 04:10:b5:ff:7e:5b:1b:99:44:55:03:bf:47:a5:70: b2:48:a4:f5:5d:1e:04:6f:34:c6:aa:c1:81:42:e3: be:b3:a7:3f:dc:66:c0:72:6d:b6:fb:6b:f8:4f:90: e1:ca:11:68:30:92:6b:cd:05:59:95:bf:cf:cc:a5: e5:11:4c:a2:40:3f:88:c3:f2:0f:47:d4:f0:83:70: f6:90:36:ba:90:d1:34:bf:23:7b:f9:fa:6a:55:e3: b3:13:42:28:15:ff:d7:19:15:ab:38:a0:49:d1:1d: f1:fc:9a:7d:01:a6:8d:2b:e5:ef:81:d7:7d:b6:21: 64:ba:03:00:ab:d5:e6:a8:74:94:f5:8c:d5:25:8d: e8:f6:22:a9:00:a0:f4:c2:34:3e:a6:05:f1:58:3c: 50:34:f1:e8:e8:e6:0c:1b:82:8e:e0:ad:10:2c:68: 36:8f:a0:23:45:50:3c:25:db:21:1d:b9:b9:00:92: ea:a7:f3:08:a0:7a:19:29:4e:46:3d:98:84:86:5d: ee:84:6a:a9:b9:bc:2f:a0:60:ad:9d:4d:2f:45:ee: 1c:02:4b:68:87:29:ab:4f:37:b3:bc:95:64:3e:dd: 45:d7:8d:c8:b0:84:47:93:3e:8d:79:c1:28:cd:fa: b0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:49:FE:DA:05:AD:BB:DC:4C:C4:28:7A:5E:3B:F3:09:75:6F:61:B6 X509v3 Authority Key Identifier: keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:90:b2:2e:f2:14:19:5f:2f:7e:d4:38:60:a4:86:fd:50:e7: 1d:82:70:ea:d6:a1:a3:d6:f4:a7:d1:8b:e8:0e:10:21:2d:c9: 05:a7:50:9a:88:60:8d:28:76:29:95:ed:ea:4e:03:eb:2c:a7: d5:87:5c:a9:fe:a2:3d:d9:2a:02:3a:c7:8d:9c:8b:6b:07:3f: fd:5d:f7:18:cd:be:62:b0:d0:08:30:e2:49:85:76:9b:f0:4e: ce:59:2e:13:d0:2f:9f:5b:10:53:f5:75:0b:3b:07:2a:76:1d: ea:b6:48:3e:38:ad:ec:a9:48:7e:7d:1d:9e:59:cf:0f:f5:98: 58:18:68:8d:69:f6:3c:03:fe:e8:7b:a9:e1:7c:c2:bc:41:4b: 1b:63:ad:1f:9e:8f:14:42:c6:84:5c:ca:80:cf:d5:55:3c:4b: 9e:ff:da:72:7f:dd:3b:39:db:c8:6f:0b:d1:32:40:a4:9e:0e: fe:30:24:bd:a0:fa:6d:6c:7c:fc:52:0a:03:1a:fb:c5:ba:aa: db:7c:56:b5:10:18:73:f0:6d:b1:46:31:14:47:fa:2b:5c:20: ba:4b:af:78:2e:40:24:2b:7d:63:48:a4:45:f3:b4:b7:d1:de: 2b:c7:a1:46:d6:da:96:a4:3f:fa:0e:db:cf:45:3e:22:04:9e: 24:d5:76:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1 MDc5N0M5NDgwHhcNMjYwNTIwMTc0NzU1WhcNMjYwNTI3MTc0NzU1WjAYMRYwFAYD VQQDEw02YTBkZjNjYi1mMGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvj3MEnd7Xy9T/shKBXAEELX/flsbmURVA79HpXCySKT1XR4EbzTGqsGBQuO+ s6c/3GbAcm22+2v4T5DhyhFoMJJrzQVZlb/PzKXlEUyiQD+Iw/IPR9Twg3D2kDa6 kNE0vyN7+fpqVeOzE0IoFf/XGRWrOKBJ0R3x/Jp9AaaNK+Xvgdd9tiFkugMAq9Xm qHSU9YzVJY3o9iKpAKD0wjQ+pgXxWDxQNPHo6OYMG4KO4K0QLGg2j6AjRVA8Jdsh Hbm5AJLqp/MIoHoZKU5GPZiEhl3uhGqpubwvoGCtnU0vRe4cAktohymrTzezvJVk Pt1F143IsIRHkz6NecEozfqwuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDlJ/toF rbvcTMQoel478wl1b2G2MB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2 N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5 VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjUyMS8yMTY1ODgyMEM2N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZX S255b1hqNmVqZmRRZVh5VWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHJCyLvIUGV8vftQ4YKSG/VDnHYJw6taho9b0p9GL6A4QIS3JBadQmohgjSh2 KZXt6k4D6yyn1Ydcqf6iPdkqAjrHjZyLawc//V33GM2+YrDQCDDiSYV2m/BOzlku E9Avn1sQU/V1CzsHKnYd6rZIPjit7KlIfn0dnlnPD/WYWBhojWn2PAP+6Hup4XzC vEFLG2OtH56PFELGhFzKgM/VVTxLnv/acn/dOznbyG8L0TJApJ4O/jAkvaD6bWx8 /FIKAxr7xbqq23xWtRAYc/BtsUYxFEf6K1wgukuveC5AJCt9Y0ikRfO0t9HeK8eh RtbalqQ/+g7bz0U+IgSeJNV2Xw== -----END CERTIFICATE-----Generated at Thu May 21 10:19:32 2026 by rpki-client