$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: N5p7mm9ldpZGPtG5iQqYwxu5/4+aK7cZgtEDIe6SigA= Subject key identifier: D5:8B:82:4E:3F:59:0A:80:C1:BD:1B:D8:D1:89:30:19:57:F1:FF:1D Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 0213 Signing time: Fri 17 Apr 2026 02:39:34 +0000 Manifest this update: Fri 17 Apr 2026 02:39:34 +0000 Manifest next update: Fri 24 Apr 2026 02:39:34 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: i0/bJnnKEGr4yX/NyfjLdSeNe4EEfMmWrGWMZBoR0sE=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: fhl3fJcB+h4weCxugxGGdq61t1fYoSdltlSekuAK37k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Apr 17 02:39:34 2026 GMT Not After : Apr 24 02:39:34 2026 GMT Subject: CN=69e19d66-35a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d2:29:e8:bd:f9:f6:ce:f1:6b:3a:b1:1e:14: 37:1a:08:e3:8d:3d:2c:42:6e:b1:2d:e7:43:8a:80: 72:fb:92:4c:30:b6:70:1a:a8:5b:9a:f1:21:26:1a: 16:eb:4b:2a:23:64:c9:95:92:fb:11:79:1b:b2:27: 41:22:af:c5:52:35:82:01:c5:65:51:d3:02:6a:0c: 62:29:35:04:8e:15:fd:4d:2c:a7:67:73:7a:51:f1: 3b:90:72:88:f1:bf:3d:35:eb:3b:c1:a5:b3:00:0a: 12:b0:1a:46:aa:27:18:a5:02:8f:5f:10:4f:cb:63: 5d:45:dd:48:c5:65:3b:51:77:16:80:c2:e4:55:c5: f9:ba:36:32:13:be:2a:c8:ce:a6:29:81:bc:48:45: a9:56:97:11:70:1f:66:5f:96:63:37:d7:ec:10:66: 5b:70:d2:69:c7:e3:19:1b:8c:6b:cd:d6:7b:ae:23: 75:fe:0a:a3:66:ec:8e:aa:ca:ca:f8:80:96:a6:d9: e8:51:4e:ae:25:34:5a:f2:18:63:38:85:c3:65:a3: 33:c2:f3:40:fc:bb:10:ed:c8:2d:c4:68:c1:6b:1f: b7:42:e4:39:9f:25:2f:91:a7:fd:c8:96:c2:67:83: 90:11:73:c4:85:e5:14:ff:71:09:2d:ea:01:e2:20: 56:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:8B:82:4E:3F:59:0A:80:C1:BD:1B:D8:D1:89:30:19:57:F1:FF:1D X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:45:2b:4d:84:92:a5:81:6b:ae:f7:a1:20:cf:dc:a6:fe:81: be:09:ab:a0:9e:b1:26:1b:b8:7d:c5:d7:0c:10:be:db:d2:74: 3f:ec:8a:25:ce:94:64:e5:5a:71:85:22:c5:38:bd:78:ac:6d: f0:24:64:b7:11:46:cb:17:38:ad:0d:03:00:86:bd:44:bb:9c: 1d:84:fe:f8:f8:0f:76:31:e5:4e:1a:0e:f7:ea:24:30:ff:f1: 6b:66:72:be:d6:78:18:4e:ad:1e:0b:78:26:e1:23:c7:77:29: ab:6e:36:7c:49:c0:3c:60:2c:94:3a:ee:35:ef:54:47:ea:ed: df:2f:1a:98:a0:67:08:e2:a5:1d:57:d5:3f:2d:03:49:7b:e7: 7c:97:7c:bc:7a:22:43:d9:7f:c6:12:49:90:2c:63:f5:ee:18: e9:71:b1:b3:7e:f5:4d:ae:cc:45:69:39:bc:83:87:89:23:7b: 16:8c:d4:90:80:24:80:ab:3d:a5:f4:bd:61:7c:23:0b:69:17: a4:65:1e:86:90:42:86:32:f9:13:5f:38:95:92:41:72:41:26: 82:c3:26:77:16:b3:55:15:43:1f:4c:fa:39:13:a3:6f:5d:6a: 40:a0:db:73:0e:7b:3b:25:3a:e3:d2:3a:27:95:cc:98:c9:44: e5:f5:dd:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjYwNDE3MDIzOTM0WhcNMjYwNDI0MDIzOTM0WjAYMRYwFAYD VQQDEw02OWUxOWQ2Ni0zNWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NIp6L359s7xazqxHhQ3GgjjjT0sQm6xLedDioBy+5JMMLZwGqhbmvEhJhoW 60sqI2TJlZL7EXkbsidBIq/FUjWCAcVlUdMCagxiKTUEjhX9TSynZ3N6UfE7kHKI 8b89Nes7waWzAAoSsBpGqicYpQKPXxBPy2NdRd1IxWU7UXcWgMLkVcX5ujYyE74q yM6mKYG8SEWpVpcRcB9mX5ZjN9fsEGZbcNJpx+MZG4xrzdZ7riN1/gqjZuyOqsrK +ICWptnoUU6uJTRa8hhjOIXDZaMzwvNA/LsQ7cgtxGjBax+3QuQ5nyUvkaf9yJbC Z4OQEXPEheUU/3EJLeoB4iBWqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNWLgk4/ WQqAwb0b2NGJMBlX8f8dMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEkUrTYSSpYFrrvehIM/cpv6BvgmroJ6xJhu4fcXXDBC+29J0P+yKJc6UZOVa cYUixTi9eKxt8CRktxFGyxc4rQ0DAIa9RLucHYT++PgPdjHlThoO9+okMP/xa2Zy vtZ4GE6tHgt4JuEjx3cpq242fEnAPGAslDruNe9UR+rt3y8amKBnCOKlHVfVPy0D SXvnfJd8vHoiQ9l/xhJJkCxj9e4Y6XGxs371Ta7MRWk5vIOHiSN7FozUkIAkgKs9 pfS9YXwjC2kXpGUehpBChjL5E184lZJBckEmgsMmdxazVRVDH0z6OROjb11qQKDb cw57OyU649I6J5XMmMlE5fXd9Q== -----END CERTIFICATE-----Generated at Fri Apr 17 15:28:42 2026 by rpki-client