$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: p0zLLpjHwgWAp1DgQXslRp5DTQt23v4h0NnMdFLz4QI= Subject key identifier: 38:0D:2D:87:50:AE:7E:F4:51:44:9B:54:6F:46:3A:53:89:D5:A6:1C Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 02C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 02BE Signing time: Fri 17 Apr 2026 01:19:11 +0000 Manifest this update: Fri 17 Apr 2026 01:19:11 +0000 Manifest next update: Fri 24 Apr 2026 01:19:11 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: jxZWEc4AkqIq3R2U773voJOHcc3nT92UpaPxlZR0XmE=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: gaiP1us9ZVKBdlJoHfbtQhGqWeKxEzvnmSCb9KMbw0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 708 (0x2c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Apr 17 01:19:11 2026 GMT Not After : Apr 24 01:19:11 2026 GMT Subject: CN=69e18a8f-9caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a9:04:ba:e5:87:95:12:c0:99:69:3a:30:64: c8:b2:0e:c9:a6:96:b7:93:6a:68:66:16:f0:e8:5a: e9:1e:f6:49:9b:d8:98:25:45:97:95:0d:63:2d:b5: fe:90:b6:c2:b1:5a:61:28:0c:c3:d5:8c:bd:99:a5: f9:83:cd:3a:6b:b5:61:d8:84:7b:1d:56:bb:dc:81: b6:99:6a:f6:97:27:c3:fd:db:a4:1b:4b:d5:8e:bc: 0d:31:50:5b:13:b4:de:6e:ad:54:8a:31:c1:00:a3: f7:d5:3c:1d:1a:8b:8c:f2:a3:55:af:3a:53:3c:64: 87:ea:f7:7b:d9:a6:60:42:9a:77:c1:36:73:6e:86: 58:0d:44:5d:d8:ef:f4:c7:18:02:7d:c7:a3:ae:82: 18:d2:86:15:ca:e3:44:f1:da:4f:4f:02:ce:96:12: 56:b3:30:a0:61:df:59:e6:f9:2d:ca:de:f0:e3:2a: 5e:da:ce:85:e0:c1:0f:52:e6:1a:a6:33:bf:6e:11: 79:7d:44:e5:3b:25:52:db:a0:72:3c:32:fd:dc:ad: 05:1e:ae:10:5a:35:10:b2:1e:9e:7d:f4:94:f3:a7: 0d:d8:33:6e:83:bd:71:46:f8:b8:6c:99:bd:f6:c1: 1e:c5:6e:6c:4e:dc:68:6f:26:b9:0c:b5:80:60:85: 92:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0D:2D:87:50:AE:7E:F4:51:44:9B:54:6F:46:3A:53:89:D5:A6:1C X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:12:33:d8:5a:57:f2:d2:89:75:f7:77:12:a3:7c:fd:a0:28: 1d:c5:1a:cb:a8:4e:fc:25:4a:57:c3:87:95:18:66:6f:8e:6b: 00:93:51:48:71:c2:d9:cc:7f:56:38:18:6f:fd:c1:85:a9:95: ae:9c:5b:bd:74:49:c8:b9:bc:a0:4d:6c:41:c0:55:d7:7a:05: 55:46:e4:25:8e:3b:9b:99:84:af:11:61:11:8c:90:4d:ce:e8: 60:f3:48:d6:64:d7:4f:89:1e:6a:e7:e5:c8:0c:aa:93:53:58: d0:02:1d:a2:d4:e5:8c:3e:bd:d6:ca:ca:b6:38:15:60:06:bc: 10:0e:ee:d4:5e:81:e8:96:94:6c:38:8e:e9:13:53:75:2e:46: 90:92:f1:d9:3a:b2:94:c9:8a:ae:94:a9:4b:ab:41:e1:f8:73: 40:be:9d:63:52:40:34:0e:f7:b7:39:0a:11:8b:1b:5e:ec:83: 25:49:7b:ba:40:33:d5:dc:0a:54:87:2d:75:b3:8e:dc:24:57: 60:aa:bb:d4:6c:81:96:e2:b1:6d:34:a6:84:72:9b:e9:12:70: ea:84:07:8e:d7:4c:7f:8c:bc:7d:cf:20:ad:4c:e9:0f:88:9e: 5a:9e:af:99:77:03:b3:6f:28:5e:5b:60:d5:d7:14:1a:f5:67: 06:86:28:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjYwNDE3MDExOTExWhcNMjYwNDI0MDExOTExWjAYMRYwFAYD VQQDEw02OWUxOGE4Zi05Y2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6kEuuWHlRLAmWk6MGTIsg7Jppa3k2poZhbw6FrpHvZJm9iYJUWXlQ1jLbX+ kLbCsVphKAzD1Yy9maX5g806a7Vh2IR7HVa73IG2mWr2lyfD/dukG0vVjrwNMVBb E7Tebq1UijHBAKP31TwdGouM8qNVrzpTPGSH6vd72aZgQpp3wTZzboZYDURd2O/0 xxgCfcejroIY0oYVyuNE8dpPTwLOlhJWszCgYd9Z5vktyt7w4ype2s6F4MEPUuYa pjO/bhF5fUTlOyVS26ByPDL93K0FHq4QWjUQsh6effSU86cN2DNug71xRvi4bJm9 9sEexW5sTtxobya5DLWAYIWSIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDgNLYdQ rn70UUSbVG9GOlOJ1aYcMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWBIz2FpX8tKJdfd3EqN8/aAoHcUay6hO/CVKV8OHlRhmb45rAJNRSHHC2cx/ VjgYb/3BhamVrpxbvXRJyLm8oE1sQcBV13oFVUbkJY47m5mErxFhEYyQTc7oYPNI 1mTXT4keauflyAyqk1NY0AIdotTljD691srKtjgVYAa8EA7u1F6B6JaUbDiO6RNT dS5GkJLx2TqylMmKrpSpS6tB4fhzQL6dY1JANA73tzkKEYsbXuyDJUl7ukAz1dwK VIctdbOO3CRXYKq71GyBluKxbTSmhHKb6RJw6oQHjtdMf4y8fc8grUzpD4ieWp6v mXcDs28oXltg1dcUGvVnBoYoDw== -----END CERTIFICATE-----Generated at Fri Apr 17 20:03:28 2026 by rpki-client