$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: pgpemI7fHvhCMKW4ElotA+rjs01KvSCSEJvRPuwqodY= Subject key identifier: 4D:72:7A:4C:3C:24:A4:33:A6:88:6D:F2:79:56:28:CF:F9:C0:48:7E Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 0161 Signing time: Tue 21 Apr 2026 04:44:07 +0000 Manifest this update: Tue 21 Apr 2026 04:44:06 +0000 Manifest next update: Tue 28 Apr 2026 04:44:06 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: uJVMx48SWong5vaByZLoe4QvhdpNsVSZEV1SpX+9Oow=) 2: CCAF2918109411F186362BB2353D8C67.roa (hash: Upvyy2jPvhhD/OdsNESStZNIXsW/r3KlLDVUrD02B1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Apr 21 04:44:06 2026 GMT Not After : Apr 28 04:44:06 2026 GMT Subject: CN=69e70097-fbb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:42:b8:cb:3c:b1:36:ba:94:c2:13:cb:55:dc: cd:c6:2b:5c:2e:a9:8e:c2:32:1f:6e:10:9b:a8:ab: 5b:10:54:3c:1c:0d:4e:6c:ff:dd:7f:fa:5b:a9:a7: d4:a2:d1:0a:0d:bb:75:f8:91:6f:c6:ce:c4:69:ad: 75:e0:8f:97:25:f2:d1:ad:a1:88:1e:27:a5:50:e4: 62:56:96:2f:33:be:40:7f:54:f8:1a:69:f1:54:df: 23:b2:b6:f1:92:d9:90:1c:7c:e9:27:83:8a:9f:f0: 79:11:45:63:a6:c7:cb:e1:37:94:2c:00:68:a5:cd: 7b:56:37:79:dc:c8:f9:df:64:79:c5:43:c9:3b:77: 4e:4b:a6:16:2e:60:aa:c6:92:be:76:40:db:c5:8e: 2b:37:32:ae:23:bd:48:c6:1f:7d:6d:04:ee:25:8c: cd:52:14:d1:c6:4a:a7:9b:42:59:c5:82:25:0c:1a: 6a:0b:de:75:92:92:f5:b2:b9:96:fc:b3:2d:ca:bf: 98:fc:6c:90:8b:a4:89:bc:a2:9f:95:07:6a:2d:eb: 97:ed:ef:cf:87:3a:5a:dd:0f:65:51:f7:29:40:7a: a4:a7:38:2c:f6:0b:66:97:98:9f:a8:75:98:84:d1: 9f:e1:7c:53:e5:bc:59:eb:14:06:a2:e2:45:f8:92: 72:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:72:7A:4C:3C:24:A4:33:A6:88:6D:F2:79:56:28:CF:F9:C0:48:7E X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:1f:0c:50:e4:4a:82:25:a7:8e:ad:64:aa:c7:ad:26:58:4c: 4f:af:52:d7:6a:7d:33:da:2d:ba:b0:b2:ff:2b:d6:38:85:16: ea:98:f5:1b:92:5e:ad:d6:68:15:57:2c:cf:17:be:11:6b:19: c1:6b:e8:ef:20:de:f1:42:82:62:61:9c:4d:01:52:f4:2e:8f: f5:41:9c:29:49:80:42:fe:ba:ac:72:bb:79:a3:74:3e:7c:99: 6e:c4:d5:aa:b8:cd:52:3f:3d:50:7f:6b:69:53:b8:4a:fa:27: a6:9a:b7:06:7e:25:77:9a:02:da:33:38:63:d6:64:ae:b5:3e: 59:ab:f6:0e:71:cc:a0:b7:c1:12:e9:5f:85:6b:b4:aa:45:98: b4:c0:57:6f:19:2e:6b:d7:63:fe:88:b5:5c:24:f5:ba:a2:6b: 3b:b1:b3:5e:6f:28:13:0c:55:88:ed:d5:4d:fc:6c:bc:21:99: 40:ae:65:b9:ff:ef:7d:0d:66:77:d5:88:81:66:6b:66:89:11: ff:de:a6:f5:62:44:f5:27:d5:d5:20:3b:f8:7f:26:a6:70:a6: 66:a7:ef:85:99:ac:e2:ee:00:ac:f4:53:e0:59:a5:ee:a3:39: 86:1e:b0:1b:bd:fd:0d:bc:4e:cd:31:e2:56:a3:ab:fc:3d:23: 60:f8:20:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjYwNDIxMDQ0NDA2WhcNMjYwNDI4MDQ0NDA2WjAYMRYwFAYD VQQDEw02OWU3MDA5Ny1mYmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEK4yzyxNrqUwhPLVdzNxitcLqmOwjIfbhCbqKtbEFQ8HA1ObP/df/pbqafU otEKDbt1+JFvxs7Eaa114I+XJfLRraGIHielUORiVpYvM75Af1T4GmnxVN8jsrbx ktmQHHzpJ4OKn/B5EUVjpsfL4TeULABopc17Vjd53Mj532R5xUPJO3dOS6YWLmCq xpK+dkDbxY4rNzKuI71Ixh99bQTuJYzNUhTRxkqnm0JZxYIlDBpqC951kpL1srmW /LMtyr+Y/GyQi6SJvKKflQdqLeuX7e/Phzpa3Q9lUfcpQHqkpzgs9gtml5ifqHWY hNGf4XxT5bxZ6xQGouJF+JJyzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE1yekw8 JKQzpoht8nlWKM/5wEh+MB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwh8MUORKgiWnjq1kqsetJlhMT69S12p9M9oturCy/yvWOIUW6pj1G5JerdZo FVcszxe+EWsZwWvo7yDe8UKCYmGcTQFS9C6P9UGcKUmAQv66rHK7eaN0PnyZbsTV qrjNUj89UH9raVO4Svonppq3Bn4ld5oC2jM4Y9ZkrrU+Wav2DnHMoLfBEulfhWu0 qkWYtMBXbxkua9dj/oi1XCT1uqJrO7GzXm8oEwxViO3VTfxsvCGZQK5luf/vfQ1m d9WIgWZrZokR/96m9WJE9SfV1SA7+H8mpnCmZqfvhZms4u4ArPRT4Fml7qM5hh6w G739DbxOzTHiVqOr/D0jYPggag== -----END CERTIFICATE-----Generated at Wed Apr 22 09:01:30 2026 by rpki-client