$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: QVPDYfBlFkl7VcG2wSixOkACvRlTWfPilIowBC5tijY= Subject key identifier: 94:8C:38:02:F9:5C:84:69:94:80:3E:E1:97:36:25:33:73:A7:B8:73 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 026B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 025B Signing time: Fri 17 Apr 2026 02:02:42 +0000 Manifest this update: Fri 17 Apr 2026 02:02:41 +0000 Manifest next update: Fri 24 Apr 2026 02:02:41 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: Jt1u99xQdeEx/ZhH6QPmvN6iLziT9/2p1bsuH/KAVlk=) 2: 0BBC997C5DB911F0A54D4C6FC4F9AE02.roa (hash: wtwpRqnqeYQSTF5tuYeTMKBYPSpu+aJ0HfsSDYw4/oQ=) 3: 0ADA583C5DB911F0A54D4C6FC4F9AE02.roa (hash: vtHqwtSvpKd0UZw+IVp/WFTlhLrYLk265RmDqE6z7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 619 (0x26b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Apr 17 02:02:41 2026 GMT Not After : Apr 24 02:02:41 2026 GMT Subject: CN=69e194c1-335d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9d:ef:47:3b:54:e4:fa:b8:8f:01:56:5b:68: e2:6f:1b:7c:62:b5:52:d0:84:83:e3:c4:0d:68:d2: 94:3f:0a:7e:fe:62:6f:23:fa:18:34:a2:0c:6b:22: 4f:7c:2c:4c:ef:9b:b1:d4:e6:f7:33:c7:8f:9d:f8: da:f7:47:bd:35:0c:bd:ea:97:58:f6:36:71:77:be: 73:05:76:91:6d:d1:08:17:77:13:bc:4f:81:9e:eb: 0e:81:2b:03:8f:fd:5a:b1:56:02:c1:ec:fe:ec:eb: f7:02:00:0f:77:c9:c1:22:eb:1b:55:12:41:3c:82: 9c:5b:b5:7c:46:55:31:b8:1e:18:39:e7:a5:eb:35: 92:68:8e:69:c4:08:02:54:80:28:7c:a8:0d:97:60: 0b:2c:7a:87:ca:b7:d7:35:14:4f:ef:94:de:67:0e: 9a:3a:8d:ac:20:c0:b3:f8:a6:05:14:42:b5:18:c4: 35:e5:41:48:96:1e:78:3f:10:c1:d6:53:f7:75:99: a4:00:38:45:8f:9d:f5:b9:83:56:c5:a4:20:a0:7d: 55:de:74:7e:10:df:f9:74:ba:41:27:73:fd:f7:88: 80:03:b3:16:58:98:18:36:5d:51:6e:c9:c8:d8:6f: a0:f3:cc:db:37:8b:fa:fc:8f:80:a8:89:e0:41:fc: 80:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8C:38:02:F9:5C:84:69:94:80:3E:E1:97:36:25:33:73:A7:B8:73 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:04:ab:50:32:7a:ed:82:ad:c9:42:43:0e:0f:9e:3d:e7:65: aa:4d:27:b5:69:20:a8:dd:4a:d9:40:70:a1:c3:98:4d:64:06: 4f:e8:b4:1b:69:b4:9d:2d:e7:a6:81:bc:cf:95:09:48:42:7c: 9b:12:bc:8e:39:f3:71:bf:75:f0:d0:9a:d0:55:21:a7:0e:34: 75:ff:ba:7f:c0:38:83:1e:2d:85:d3:f7:f6:ac:64:34:68:1d: 69:f8:4e:98:41:43:e0:15:a1:04:d9:69:d3:a4:67:81:36:af: a8:d0:26:a1:59:61:22:1a:58:9f:93:e0:54:9a:04:d3:1e:99: 80:b8:26:49:f6:b2:d5:6a:2b:2b:f0:35:73:90:41:47:03:13: 17:af:5e:99:d1:2f:1b:48:28:07:e6:2b:3b:0a:ea:d2:f3:88: ed:6a:ab:f0:cf:64:8a:7d:6f:28:62:86:5f:db:bc:2b:c6:7e: 5f:e9:4a:10:81:5e:f4:5a:5e:7b:a5:81:24:1f:e9:4f:e4:42: 04:be:94:d5:0d:1a:37:1e:cc:36:0b:24:bb:0a:4b:bc:15:d5: 69:f7:8d:4f:5d:f8:87:2a:f9:16:38:bc:8e:7b:f4:1c:80:07: a8:c2:e0:80:bc:98:49:c8:97:ee:29:ba:f4:51:a1:32:d8:5c: d5:36:81:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjYwNDE3MDIwMjQxWhcNMjYwNDI0MDIwMjQxWjAYMRYwFAYD VQQDEw02OWUxOTRjMS0zMzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo53vRztU5Pq4jwFWW2jibxt8YrVS0ISD48QNaNKUPwp+/mJvI/oYNKIMayJP fCxM75ux1Ob3M8ePnfja90e9NQy96pdY9jZxd75zBXaRbdEIF3cTvE+BnusOgSsD j/1asVYCwez+7Ov3AgAPd8nBIusbVRJBPIKcW7V8RlUxuB4YOeel6zWSaI5pxAgC VIAofKgNl2ALLHqHyrfXNRRP75TeZw6aOo2sIMCz+KYFFEK1GMQ15UFIlh54PxDB 1lP3dZmkADhFj531uYNWxaQgoH1V3nR+EN/5dLpBJ3P994iAA7MWWJgYNl1RbsnI 2G+g88zbN4v6/I+AqIngQfyAbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJSMOAL5 XIRplIA+4Zc2JTNzp7hzMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYwSrUDJ67YKtyUJDDg+ePedlqk0ntWkgqN1K2UBwocOYTWQGT+i0G2m0nS3n poG8z5UJSEJ8mxK8jjnzcb918NCa0FUhpw40df+6f8A4gx4thdP39qxkNGgdafhO mEFD4BWhBNlp06RngTavqNAmoVlhIhpYn5PgVJoE0x6ZgLgmSfay1WorK/A1c5BB RwMTF69emdEvG0goB+YrOwrq0vOI7Wqr8M9kin1vKGKGX9u8K8Z+X+lKEIFe9Fpe e6WBJB/pT+RCBL6U1Q0aNx7MNgskuwpLvBXVafeNT134hyr5Fji8jnv0HIAHqMLg gLyYSciX7im69FGhMthc1TaBVA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:54:19 2026 by rpki-client