$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: AVKpIfihZaE8vwg3J2EdW07voEfwtGGrGbQrquD+gJ8= Subject key identifier: 25:F0:FC:65:4F:91:01:05:EF:64:70:47:9F:3B:E6:45:3F:D1:83:3F Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0B2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0B0A Signing time: Sat 04 Apr 2026 19:10:37 +0000 Manifest this update: Sat 04 Apr 2026 19:10:36 +0000 Manifest next update: Sat 11 Apr 2026 19:10:36 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: fjMtDeakPhzlHs2+lYa1sgudnevVkPbMkOZXh5vzImk=) 2: 53C1347EB60D11F0AD4B0751C4F9AE02.roa (hash: QY+bthQF2Cfpys9yYvINeSfBdpf0jyAfuLij+QPlVvA=) 3: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: R80zYFXAGNuiLEHBcWVsWKSrFWqFnL6T6UaG1t7i+uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2861 (0xb2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Apr 4 19:10:36 2026 GMT Not After : Apr 11 19:10:36 2026 GMT Subject: CN=69d1622d-df86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:25:44:e2:de:79:1c:8a:5a:f4:a3:a0:b8: 81:85:8d:1c:80:84:88:86:e3:c8:02:55:85:d0:c2: 56:1a:11:53:18:23:02:7b:35:94:dd:cd:c5:d5:5b: fc:34:6b:4a:7a:e6:20:1a:3b:ad:2a:a7:a6:9a:8c: b4:04:36:7a:0a:9b:9c:f0:59:da:d1:92:35:07:5f: 63:a6:50:8f:d7:58:c9:98:92:f7:01:03:ff:a3:d6: e2:b6:e0:2e:2f:4f:b4:b9:86:cc:f6:c2:18:ce:e4: 29:c0:33:a7:ea:1e:35:e3:47:6d:21:34:d4:ca:c2: b8:7d:67:17:8a:ff:39:8b:33:8e:b1:9b:e6:86:c5: 9f:67:4f:d1:bf:66:99:01:bc:a2:cf:f7:e6:34:a6: d2:b8:f8:cd:24:85:f6:0f:e1:4a:f4:0d:0c:50:c9: 0b:ed:ba:0b:33:53:8c:de:d6:06:55:f4:94:82:29: a6:03:d5:19:95:88:0c:40:de:9b:93:9c:21:e5:c7: cb:42:1d:04:ec:3c:55:82:43:2f:01:ac:b2:58:ae: 4f:87:8a:f6:73:19:5a:3b:5e:91:2b:38:b9:fa:90: dd:7c:77:8f:f3:5f:61:23:9a:d6:41:9a:f0:ab:64: 98:85:5e:ed:f8:ae:32:d9:0c:01:cd:73:05:10:4c: 03:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F0:FC:65:4F:91:01:05:EF:64:70:47:9F:3B:E6:45:3F:D1:83:3F X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:b7:1a:dc:93:3d:c2:79:7e:33:a3:b9:37:8c:d7:3d:f1:5d: 5e:1b:50:c1:97:8a:ad:58:c6:09:7d:2f:1c:48:f8:8f:cd:c9: fc:56:11:0b:43:cd:2e:e6:88:62:76:29:be:f4:3f:58:52:e1: 20:55:ed:c5:09:7e:f2:1a:94:16:97:fc:d7:25:c9:26:1f:55: 32:d9:3d:e2:74:12:5a:e8:7e:74:5e:ad:4a:9b:af:9d:c2:85: 4b:c4:b8:24:95:72:55:a1:ad:9d:a4:c0:2f:d4:af:5a:ca:aa: 67:7a:a0:d4:52:dd:96:0e:bd:81:af:a8:4b:9d:36:bf:3d:e4: 96:97:84:0c:2e:98:83:0f:28:f0:ee:bc:50:94:5e:33:18:f3: ce:80:6b:e6:f0:82:e6:0a:88:da:c0:10:25:cb:8b:98:4b:00: 59:6a:2f:95:af:32:03:aa:48:72:49:97:93:2c:85:4b:cb:3e: 16:97:fe:eb:60:db:aa:86:6f:5b:68:84:ea:39:2f:bc:0d:74: 7c:bf:1f:d6:6b:d2:9c:c0:31:79:73:2d:99:ec:a4:75:22:60: 56:b1:5a:0b:8d:8b:22:a0:fa:c7:a5:de:e1:8e:59:f6:46:26: 17:74:f2:63:d8:fd:2a:f9:64:75:7a:b7:0b:91:18:f0:3f:12: 2e:2c:b9:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjYwNDA0MTkxMDM2WhcNMjYwNDExMTkxMDM2WjAYMRYwFAYD VQQDEw02OWQxNjIyZC1kZjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT4lROLeeRyKWvSjoLiBhY0cgISIhuPIAlWF0MJWGhFTGCMCezWU3c3F1Vv8 NGtKeuYgGjutKqemmoy0BDZ6Cpuc8Fna0ZI1B19jplCP11jJmJL3AQP/o9bituAu L0+0uYbM9sIYzuQpwDOn6h4140dtITTUysK4fWcXiv85izOOsZvmhsWfZ0/Rv2aZ Abyiz/fmNKbSuPjNJIX2D+FK9A0MUMkL7boLM1OM3tYGVfSUgimmA9UZlYgMQN6b k5wh5cfLQh0E7DxVgkMvAayyWK5Ph4r2cxlaO16RKzi5+pDdfHeP819hI5rWQZrw q2SYhV7t+K4y2QwBzXMFEEwDHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCXw/GVP kQEF72RwR5875kU/0YM/MB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE7ca3JM9wnl+M6O5N4zXPfFdXhtQwZeKrVjGCX0vHEj4j83J/FYRC0PNLuaI YnYpvvQ/WFLhIFXtxQl+8hqUFpf81yXJJh9VMtk94nQSWuh+dF6tSpuvncKFS8S4 JJVyVaGtnaTAL9SvWsqqZ3qg1FLdlg69ga+oS502vz3klpeEDC6Ygw8o8O68UJRe MxjzzoBr5vCC5gqI2sAQJcuLmEsAWWovla8yA6pIckmXkyyFS8s+Fpf+62DbqoZv W2iE6jkvvA10fL8f1mvSnMAxeXMtmeykdSJgVrFaC42LIqD6x6Xe4Y5Z9kYmF3Ty Y9j9KvlkdXq3C5EY8D8SLiy5bQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:50:24 2026 by rpki-client