$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: DxnGYMJWkStsDbGwIdLO1WLrh4fwEFHml0o7fK5o/UY= Subject key identifier: 95:0F:5A:5F:BC:23:A4:87:37:B2:CD:34:DF:00:C8:95:C7:5A:59:92 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0CCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0CBC Signing time: Tue 02 Jun 2026 18:31:15 +0000 Manifest this update: Tue 02 Jun 2026 18:31:15 +0000 Manifest next update: Tue 09 Jun 2026 18:31:15 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: VqJms1sou+/Lba2clHOjOy8fj60wVVC2TJOKq7XyMMk=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: 8Kzq8ge3wSUVu+VYpnFOyTT3NcPx0P4ByioHfNwqHSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Jun 2 18:31:15 2026 GMT Not After : Jun 9 18:31:15 2026 GMT Subject: CN=6a1f2173-5423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8b:c6:0f:97:6f:b8:31:ce:73:42:00:63:63: 47:fc:98:c5:22:ca:58:5a:0d:41:61:46:49:e6:66: 49:65:c7:48:a3:d1:53:b9:52:93:b5:bc:b2:bd:fa: 49:49:b9:cd:04:20:0b:f1:de:b3:9f:69:7a:6e:11: 71:32:de:6a:22:d2:ff:14:21:a3:e2:8c:8f:ef:70: fc:42:71:55:da:80:36:ef:1f:33:29:e1:33:f7:19: 56:9d:82:d5:77:c8:fb:9d:9a:5c:75:c8:00:84:81: a4:40:62:e4:77:51:ca:c6:e1:c2:22:6e:3b:be:9d: a2:30:f5:e0:b0:cd:88:1e:30:5b:1f:3e:34:00:31: 2d:07:73:0f:62:ec:81:0f:4d:44:ef:3b:3c:ab:ba: 44:f9:f2:ea:25:c3:d3:73:ef:94:11:bf:4e:9b:eb: 8b:db:9c:bc:e3:39:69:64:7f:ce:af:4b:1d:26:b4: fd:9d:9f:c8:84:f0:52:22:42:17:f0:2a:8b:41:2b: 06:1f:0c:6a:c5:5b:a3:5a:75:ba:c7:b5:8e:5b:e5: 10:d9:1b:30:f0:b1:65:c2:2b:e8:47:55:21:2a:32: 66:fa:ff:85:2a:dc:60:81:07:54:8a:d1:77:7e:64: 2e:b7:15:79:6e:93:bf:7b:b1:f3:28:33:84:dc:ba: de:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0F:5A:5F:BC:23:A4:87:37:B2:CD:34:DF:00:C8:95:C7:5A:59:92 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:93:73:cd:94:a9:6a:95:93:fa:72:a6:02:71:e9:78:cb:1f: 22:cc:da:77:4c:d1:92:18:f7:e8:b4:6a:03:dd:7d:ac:17:5e: 69:57:a3:48:8c:44:af:2e:1d:00:30:d8:a0:d7:87:8c:70:d5: e6:78:1f:b5:c1:11:66:88:0c:90:df:3b:cc:49:b0:b7:cc:f0: 18:fc:f0:ff:c0:b6:bd:2d:3a:d3:ee:b5:53:e9:36:fb:83:a2: 18:54:81:30:d8:e0:7a:e9:21:fb:67:6e:43:4a:f3:38:39:14: d0:c2:c3:1f:01:c9:10:04:d9:e9:27:36:54:db:ba:e5:63:ea: 00:2c:fc:57:ef:f0:68:11:58:ec:56:12:d0:9c:63:89:7c:cc: b3:f7:df:3e:15:a7:12:dd:f3:5b:bf:44:e6:7f:10:11:48:f5: c5:86:93:e5:2a:01:bf:ad:0d:af:5c:ee:01:d5:f9:f7:d2:a3: 07:07:4b:f1:43:26:3e:4e:b7:bf:50:ae:93:e4:4d:e2:b3:17: 2d:df:f9:80:99:67:d1:ba:fb:c1:68:88:dc:bd:a7:8d:39:55: 51:3b:4e:b5:d3:e5:93:ea:cd:d3:ed:ad:6e:64:3a:02:c3:ef: 9f:c8:d5:8e:38:03:8e:0a:56:73:8d:91:0c:bd:33:ee:03:fd: 4e:3a:c6:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjYwNjAyMTgzMTE1WhcNMjYwNjA5MTgzMTE1WjAYMRYwFAYD VQQDEw02YTFmMjE3My01NDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtovGD5dvuDHOc0IAY2NH/JjFIspYWg1BYUZJ5mZJZcdIo9FTuVKTtbyyvfpJ SbnNBCAL8d6zn2l6bhFxMt5qItL/FCGj4oyP73D8QnFV2oA27x8zKeEz9xlWnYLV d8j7nZpcdcgAhIGkQGLkd1HKxuHCIm47vp2iMPXgsM2IHjBbHz40ADEtB3MPYuyB D01E7zs8q7pE+fLqJcPTc++UEb9Om+uL25y84zlpZH/Or0sdJrT9nZ/IhPBSIkIX 8CqLQSsGHwxqxVujWnW6x7WOW+UQ2Rsw8LFlwivoR1UhKjJm+v+FKtxggQdUitF3 fmQutxV5bpO/e7HzKDOE3LreYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUPWl+8 I6SHN7LNNN8AyJXHWlmSMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR5NzzZSpapWT+nKmAnHpeMsfIszad0zRkhj36LRqA919rBdeaVejSIxEry4d ADDYoNeHjHDV5ngftcERZogMkN87zEmwt8zwGPzw/8C2vS060+61U+k2+4OiGFSB MNjgeukh+2duQ0rzODkU0MLDHwHJEATZ6Sc2VNu65WPqACz8V+/waBFY7FYS0Jxj iXzMs/ffPhWnEt3zW79E5n8QEUj1xYaT5SoBv60Nr1zuAdX599KjBwdL8UMmPk63 v1Cuk+RN4rMXLd/5gJln0br7wWiI3L2njTlVUTtOtdPlk+rN0+2tbmQ6AsPvn8jV jjgDjgpWc42RDL0z7gP9TjrGcA== -----END CERTIFICATE-----Generated at Tue Jun 2 22:01:39 2026 by rpki-client