$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: 5coAsBHPt/SsFoSUa4aHfdrg5s+1ClbdncxklruzRUE= Subject key identifier: 05:4B:09:1B:C1:5B:C0:A8:A5:1C:8D:0B:F9:1E:E6:2E:A2:D7:CE:58 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 01F7 Signing time: Thu 21 May 2026 03:16:37 +0000 Manifest this update: Thu 21 May 2026 03:16:36 +0000 Manifest next update: Thu 28 May 2026 03:16:36 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: 9114ydmJpaWMAyKMOuTqVfpDbMyggW46nmlosfAk1fY=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: cTlf1NxuIouKXNPDJnnCsmUtnsb/nG3rM1WrAqOmy6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: May 21 03:16:36 2026 GMT Not After : May 28 03:16:36 2026 GMT Subject: CN=6a0e7914-5500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:18:31:7d:c1:00:b3:f9:29:ad:15:a5:aa:47: 50:3b:4d:43:0e:ed:a9:4e:33:da:3c:56:fe:e7:2c: fc:89:e2:b0:50:42:be:02:19:fc:d8:50:78:d6:bb: 97:15:56:87:33:d5:4e:58:09:d8:81:92:fa:4e:88: 87:c9:49:2a:cd:c0:09:a4:e3:68:f7:09:6f:91:46: cd:a9:30:7e:f9:17:c1:bf:44:fd:bb:c1:01:e3:3d: ca:be:05:e2:19:e3:68:62:14:f4:87:f6:e7:c7:ff: 3d:c2:fd:84:97:39:b4:13:48:4a:73:46:3c:f3:38: 7b:91:f5:33:61:a8:79:35:42:e6:ad:77:a0:f0:8a: f8:b8:6f:a5:ea:4e:1c:bf:07:45:36:06:b6:bf:90: 5d:29:4f:f1:16:ce:7c:e2:fc:83:18:35:4b:59:68: 40:57:ca:21:b4:b3:c7:74:b9:da:c9:d3:b0:96:3b: 1b:6a:b3:79:9d:f4:52:df:5d:3d:89:dc:12:c3:cf: 50:5b:35:77:00:49:16:d2:82:e1:b0:f8:52:db:0b: 68:d5:ab:51:57:2b:c5:ff:05:dd:d5:c6:c7:df:6c: 4a:48:b5:a1:d8:f4:17:26:06:ef:e5:a8:df:d6:78: 63:dd:67:72:38:33:17:f4:3d:53:56:b4:ea:25:c3: 73:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4B:09:1B:C1:5B:C0:A8:A5:1C:8D:0B:F9:1E:E6:2E:A2:D7:CE:58 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:dd:b6:83:16:a7:5a:7d:ba:16:f2:d6:cd:3a:fb:24:96:00: 9a:f3:c4:ce:b3:82:b5:5a:c1:54:ca:e8:b7:68:a4:02:ae:ba: 74:7f:a3:bf:39:e6:72:87:07:e5:0b:db:9e:5b:c5:79:f7:c4: 90:4e:cb:e2:6c:77:f5:61:32:d5:09:3b:17:71:7d:df:e6:4a: 59:93:5b:4d:91:6e:47:92:b0:d1:5d:04:83:66:c6:fa:04:81: ff:47:f0:25:73:73:fa:2e:39:a7:7b:7e:25:95:d9:5f:2f:8f: 58:c7:38:45:cc:ec:ae:17:65:6e:76:24:7a:f3:8b:d8:e7:a1: d9:ce:a5:ab:90:72:a6:c0:03:8a:44:cb:82:42:7a:91:e2:80: d1:87:cc:c0:a4:ed:7f:8f:9d:42:59:89:81:bf:56:c5:87:bb: 5d:1d:99:ab:00:f6:a6:fe:37:7d:16:b7:0d:28:cb:55:3c:2f: c8:5c:d5:05:90:99:b8:95:0f:fa:f0:ac:c1:fb:fe:40:52:48: 28:9a:12:3c:2b:fb:73:0f:80:03:7f:20:b8:37:4c:97:af:b8: 8a:64:9c:74:67:32:22:11:ca:65:a5:79:97:5c:7c:e3:bd:23: a0:c2:f3:0f:ac:62:ce:30:d2:44:29:2e:b1:2b:9a:b1:c3:0b: 5b:ee:da:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjYwNTIxMDMxNjM2WhcNMjYwNTI4MDMxNjM2WjAYMRYwFAYD VQQDEw02YTBlNzkxNC01NTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphgxfcEAs/kprRWlqkdQO01DDu2pTjPaPFb+5yz8ieKwUEK+Ahn82FB41ruX FVaHM9VOWAnYgZL6ToiHyUkqzcAJpONo9wlvkUbNqTB++RfBv0T9u8EB4z3KvgXi GeNoYhT0h/bnx/89wv2Elzm0E0hKc0Y88zh7kfUzYah5NULmrXeg8Ir4uG+l6k4c vwdFNga2v5BdKU/xFs584vyDGDVLWWhAV8ohtLPHdLnaydOwljsbarN5nfRS3109 idwSw89QWzV3AEkW0oLhsPhS2wto1atRVyvF/wXd1cbH32xKSLWh2PQXJgbv5ajf 1nhj3WdyODMX9D1TVrTqJcNz7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAVLCRvB W8CopRyNC/ke5i6i185YMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtt22gxanWn26FvLWzTr7JJYAmvPEzrOCtVrBVMrot2ikAq66dH+jvznmcocH 5QvbnlvFeffEkE7L4mx39WEy1Qk7F3F93+ZKWZNbTZFuR5Kw0V0Eg2bG+gSB/0fw JXNz+i45p3t+JZXZXy+PWMc4RczsrhdlbnYkevOL2Oeh2c6lq5BypsADikTLgkJ6 keKA0YfMwKTtf4+dQlmJgb9WxYe7XR2ZqwD2pv43fRa3DSjLVTwvyFzVBZCZuJUP +vCswfv+QFJIKJoSPCv7cw+AA38guDdMl6+4imScdGcyIhHKZaV5l1x8470joMLz D6xizjDSRCkusSuascMLW+7akA== -----END CERTIFICATE-----Generated at Thu May 21 10:53:43 2026 by rpki-client