$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: ydrDwLnWgIWg0GmjGwL0cb3CFNsCbzvo0prbDzxkNUk= Subject key identifier: 88:E9:03:54:12:C4:5E:03:F7:AC:69:13:52:E6:70:AB:90:D2:68:27 Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 025B Signing time: Thu 21 May 2026 02:17:10 +0000 Manifest this update: Thu 21 May 2026 02:17:09 +0000 Manifest next update: Thu 28 May 2026 02:17:09 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: 0CP3lhUTzCW8twAXs2Oa3aY7oAkPFiUldAmW0SsGSD8=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: c33kuST7gT7ebNkTWc7XNN3mabw1ea/YNIBXvt3Yc/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: May 21 02:17:09 2026 GMT Not After : May 28 02:17:09 2026 GMT Subject: CN=6a0e6b26-3da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a1:b4:c0:cc:c6:22:fc:3d:61:83:d3:51:e9: 31:58:44:0a:03:31:98:06:c1:2d:01:25:aa:bb:a9: 37:7d:b1:59:e0:31:6d:cc:2b:25:c3:f6:fa:64:d4: 33:f8:e6:54:79:94:be:49:9b:7d:b9:6a:43:d1:42: 6c:ea:63:4f:82:21:34:2a:c9:60:ff:8c:e4:7b:89: a7:e2:38:94:d8:e0:3e:d9:d7:94:18:9b:06:34:db: 53:79:04:b0:3f:5e:91:f0:44:5c:fc:88:e3:f5:54: 63:2c:1d:2f:03:89:bc:6b:25:5d:1e:dc:ef:3f:a5: f3:b1:3a:cd:e5:ce:4b:49:0c:58:da:ed:a2:4e:b3: cf:d9:cc:6d:68:72:8b:9d:6c:bc:e5:4f:ad:19:70: 30:66:9e:d3:cf:08:e9:98:fd:88:a6:83:c7:97:ed: f5:7a:01:24:fa:1b:27:ec:77:af:2b:93:82:31:8a: df:2b:2e:37:44:f9:4a:e6:50:df:e9:80:ce:2c:22: da:20:11:6c:ce:43:34:2f:fc:ac:fa:a4:57:3a:6b: 50:05:9d:94:9c:31:85:ad:4a:a4:12:a3:56:53:cf: e6:22:da:6f:e5:13:2f:e8:d5:a7:15:08:6c:af:c4: 8c:b0:46:09:8f:95:56:cc:04:40:cf:41:76:ab:89: ee:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E9:03:54:12:C4:5E:03:F7:AC:69:13:52:E6:70:AB:90:D2:68:27 X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f2:27:f2:ec:70:81:f1:c1:bd:2d:21:41:37:6d:0d:d9:df: e2:59:58:4c:64:96:d1:53:6b:9b:19:08:b8:08:5b:dd:1e:a9: 60:ac:2c:62:26:b6:87:8a:78:2b:b3:ff:06:09:9c:fb:41:54: 66:1f:3e:b2:37:1c:f9:d8:37:e8:60:19:22:29:7c:2e:9e:1f: 76:48:d0:58:04:a8:7c:1a:5c:b5:51:d1:89:30:69:55:31:86: 27:43:5b:2c:5a:8b:a2:61:d0:d1:3c:f4:14:e3:13:6e:8c:f3: 85:d2:39:b6:e3:3c:08:00:0c:f4:c7:fb:cb:e9:f6:23:63:c6: b9:80:53:04:9f:b7:01:c2:0f:9b:90:37:78:87:24:6a:8a:08: 2d:67:ee:38:ce:32:0f:48:bd:4f:ec:88:28:24:71:7e:46:b9: 69:4a:40:87:cd:a4:76:71:75:1c:5d:48:9e:93:2e:54:d7:c0: b3:38:54:d6:56:85:6c:c1:86:76:1b:c6:fd:46:28:f3:02:d1: 34:5f:e3:d0:6d:27:58:ba:d0:56:f9:7f:b3:63:68:26:5a:1e: d0:75:f9:c9:95:4b:ad:8a:bf:b0:74:03:5e:5f:cf:09:16:c5: 45:7b:7f:f2:42:05:ca:13:73:90:af:d1:2a:e6:a1:ac:cc:fa: 56:6a:5c:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjYwNTIxMDIxNzA5WhcNMjYwNTI4MDIxNzA5WjAYMRYwFAYD VQQDEw02YTBlNmIyNi0zZGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6G0wMzGIvw9YYPTUekxWEQKAzGYBsEtASWqu6k3fbFZ4DFtzCslw/b6ZNQz +OZUeZS+SZt9uWpD0UJs6mNPgiE0Kslg/4zke4mn4jiU2OA+2deUGJsGNNtTeQSw P16R8ERc/Ijj9VRjLB0vA4m8ayVdHtzvP6XzsTrN5c5LSQxY2u2iTrPP2cxtaHKL nWy85U+tGXAwZp7TzwjpmP2IpoPHl+31egEk+hsn7HevK5OCMYrfKy43RPlK5lDf 6YDOLCLaIBFszkM0L/ys+qRXOmtQBZ2UnDGFrUqkEqNWU8/mItpv5RMv6NWnFQhs r8SMsEYJj5VWzARAz0F2q4nuDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIjpA1QS xF4D96xpE1LmcKuQ0mgnMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgvIn8uxwgfHBvS0hQTdtDdnf4llYTGSW0VNrmxkIuAhb3R6pYKwsYia2h4p4 K7P/Bgmc+0FUZh8+sjcc+dg36GAZIil8Lp4fdkjQWASofBpctVHRiTBpVTGGJ0Nb LFqLomHQ0Tz0FOMTbozzhdI5tuM8CAAM9Mf7y+n2I2PGuYBTBJ+3AcIPm5A3eIck aooILWfuOM4yD0i9T+yIKCRxfka5aUpAh82kdnF1HF1InpMuVNfAszhU1laFbMGG dhvG/UYo8wLRNF/j0G0nWLrQVvl/s2NoJloe0HX5yZVLrYq/sHQDXl/PCRbFRXt/ 8kIFyhNzkK/RKuahrMz6Vmpc/Q== -----END CERTIFICATE-----Generated at Thu May 21 09:37:11 2026 by rpki-client