$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: 5ncK8dGXM+cGoR35cK50P2X8aF32OwNUgHVbcKZYb2Q= Subject key identifier: 55:41:08:A5:ED:AB:F4:EE:D0:C7:53:0A:0F:DA:10:5A:15:6A:EB:64 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0CAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C9C Signing time: Sat 04 Apr 2026 18:23:42 +0000 Manifest this update: Sat 04 Apr 2026 18:23:41 +0000 Manifest next update: Sat 11 Apr 2026 18:23:41 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: WF0/jxIt89MrXIqLCY+YHPJO7au9Z3BprF8Vs8aXqHY=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: tYlucwaBIGBa2s5M7XxozTf4DKKXocCk+qxS/KAjPVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Apr 4 18:23:41 2026 GMT Not After : Apr 11 18:23:41 2026 GMT Subject: CN=69d1572d-3d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:90:40:ee:cc:2e:1e:41:44:bf:cb:55:0f:99: 7c:4a:bb:6b:b6:af:da:dc:28:60:44:f0:49:93:10: 71:dd:a6:af:fa:2d:bd:34:d2:fe:44:fd:d2:ca:8d: b8:ca:43:f8:60:81:da:d6:d8:bb:9e:9e:66:32:db: 5d:28:5e:80:48:64:9b:ab:31:e1:ea:8f:4c:63:c6: f1:03:eb:aa:63:d1:58:76:63:c0:04:86:63:24:e9: 38:5d:bf:d3:2c:42:51:f1:76:a1:0e:0a:46:e7:89: 0e:4d:5b:e1:5e:44:d3:3d:32:ce:89:70:d2:20:50: 14:b5:f3:c1:36:29:4c:eb:61:e3:15:9c:cd:c4:dd: fc:10:90:e2:cb:80:8d:9c:ff:02:32:77:8b:4e:38: 26:30:c5:0d:51:bd:41:d0:64:a7:21:53:47:1f:b3: 22:da:f8:7e:78:51:d9:5e:31:0f:3a:52:66:e6:6b: d9:e3:48:4b:1d:2f:63:55:f1:84:39:19:da:17:03: 95:f4:3e:ac:a5:93:3c:92:76:2a:a4:8e:f3:9e:53: 77:ee:05:75:97:0b:a1:90:59:e0:b3:14:79:a0:39: f8:9b:02:c8:73:4e:6a:06:8a:f4:99:6a:1a:b9:96: f6:f6:4b:50:0c:07:75:d3:c9:7c:e9:d0:cc:22:ba: 60:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:41:08:A5:ED:AB:F4:EE:D0:C7:53:0A:0F:DA:10:5A:15:6A:EB:64 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:1b:31:45:92:9a:0f:8d:da:27:4b:a5:c9:0e:80:43:a9:18: fe:56:52:4f:75:84:16:d2:d6:6f:7d:d6:33:8b:60:34:49:31: 82:d2:0c:0f:97:32:56:15:ef:d4:55:4b:f9:5c:ce:1f:31:9f: 23:89:90:16:d0:2c:20:8a:2c:99:20:73:71:4f:9a:ad:fa:ce: 0c:85:1a:be:fb:68:23:ff:83:0b:f3:04:6d:f2:f6:f7:75:1c: d1:c9:5a:a8:e9:26:e0:e6:fe:3e:32:3e:46:ec:82:fb:91:12: 5e:f2:bf:15:8d:07:a7:a3:af:50:62:2d:4b:56:40:0a:24:3f: 45:75:b3:7d:ba:8d:a6:c6:89:94:aa:07:fa:bb:49:3d:37:35: 3c:48:8b:7b:06:32:7c:9d:ec:ff:f1:e2:09:52:ee:90:97:3f: a0:a4:a8:1b:44:97:d3:61:19:53:6b:21:59:be:6c:1c:d4:56: b3:75:43:40:63:6e:0d:52:64:d3:bc:0c:06:52:5b:30:41:b7: f7:03:4b:bd:0d:94:2b:0e:c2:df:bd:8f:8e:28:79:34:44:01: 86:04:ea:32:0c:28:d5:1d:33:76:35:e5:b1:93:59:a3:6d:e5: 08:f7:57:ac:fd:5e:c7:8a:22:f3:52:73:ed:28:56:b0:57:c2: e2:a9:a0:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjYwNDA0MTgyMzQxWhcNMjYwNDExMTgyMzQxWjAYMRYwFAYD VQQDEw02OWQxNTcyZC0zZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspBA7swuHkFEv8tVD5l8Srtrtq/a3ChgRPBJkxBx3aav+i29NNL+RP3Syo24 ykP4YIHa1ti7np5mMttdKF6ASGSbqzHh6o9MY8bxA+uqY9FYdmPABIZjJOk4Xb/T LEJR8XahDgpG54kOTVvhXkTTPTLOiXDSIFAUtfPBNilM62HjFZzNxN38EJDiy4CN nP8CMneLTjgmMMUNUb1B0GSnIVNHH7Mi2vh+eFHZXjEPOlJm5mvZ40hLHS9jVfGE ORnaFwOV9D6spZM8knYqpI7znlN37gV1lwuhkFngsxR5oDn4mwLIc05qBor0mWoa uZb29ktQDAd108l86dDMIrpgOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFVBCKXt q/Tu0MdTCg/aEFoVautkMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPRsxRZKaD43aJ0ulyQ6AQ6kY/lZST3WEFtLWb33WM4tgNEkxgtIMD5cyVhXv 1FVL+VzOHzGfI4mQFtAsIIosmSBzcU+arfrODIUavvtoI/+DC/MEbfL293Uc0cla qOkm4Ob+PjI+RuyC+5ESXvK/FY0Hp6OvUGItS1ZACiQ/RXWzfbqNpsaJlKoH+rtJ PTc1PEiLewYyfJ3s//HiCVLukJc/oKSoG0SX02EZU2shWb5sHNRWs3VDQGNuDVJk 07wMBlJbMEG39wNLvQ2UKw7C372Pjih5NEQBhgTqMgwo1R0zdjXlsZNZo23lCPdX rP1ex4oi81Jz7ShWsFfC4qmg9A== -----END CERTIFICATE-----Generated at Mon Apr 6 08:49:02 2026 by rpki-client