$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: o1ylh4dpFMkjeWyR0Tz7mtu17elvp/Y8W5TFJhwGlIg= Subject key identifier: FF:8B:48:E8:F8:9D:32:E9:54:27:84:DD:A0:C0:BA:A8:D9:33:42:39 Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 027A Signing time: Fri 17 Apr 2026 01:41:32 +0000 Manifest this update: Fri 17 Apr 2026 01:41:32 +0000 Manifest next update: Fri 24 Apr 2026 01:41:32 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: YiYN28Oow7aQRZtnmckphz6uyW5NTHfmgf131dt1JWA=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: LdRxke1Bck5JxIBRCGjM9TpaCqk+l96r/JCtzyDPs+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Apr 17 01:41:32 2026 GMT Not After : Apr 24 01:41:32 2026 GMT Subject: CN=69e18fcc-1b6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:34:08:f1:14:65:1a:1b:90:8d:10:7f:3d:96: 38:5f:17:98:33:a2:ff:0b:c6:ee:9f:af:b8:24:ba: de:37:75:7f:f1:8d:d9:0e:ba:d4:4c:33:04:6d:a2: ab:8d:e5:d2:e0:ca:75:cd:8b:aa:fa:84:ca:ae:d5: ee:43:b2:37:1e:12:9c:29:83:7a:19:61:89:70:c6: 5e:34:b6:eb:6c:1f:77:d7:2d:93:cb:7b:1c:b6:07: a4:5a:e3:a8:04:13:6c:8c:6b:b1:be:18:9b:43:3b: 0f:cd:90:fd:7e:db:79:7c:d4:5c:40:53:e0:d8:2f: f7:bc:44:e2:55:55:65:d0:4f:1c:8e:2d:6d:39:7a: 20:4a:f9:bd:49:ca:4d:c5:61:a6:fc:28:de:1b:69: a7:3b:ea:94:e6:68:61:50:a1:5c:ff:d7:55:ed:50: f5:59:9e:1a:65:fd:1b:21:a3:47:ab:0b:61:bb:05: 07:00:66:75:4b:65:e4:00:b4:62:98:f1:1e:25:19: ce:a5:59:b3:11:6d:a2:56:1c:00:b7:78:3c:4a:ab: 87:21:47:f7:75:b5:e1:58:ad:c7:3d:4f:2b:51:a0: 5a:70:f3:67:2f:04:1c:6e:a9:6e:a6:bf:83:f9:e4: 14:34:46:12:86:63:95:7b:8a:2e:ce:de:7a:b4:8b: 93:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8B:48:E8:F8:9D:32:E9:54:27:84:DD:A0:C0:BA:A8:D9:33:42:39 X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:6a:6f:66:d0:74:d2:93:1d:7c:a5:b9:7c:41:07:27:f7:bc: 91:a4:e3:b4:c1:02:19:63:d1:8d:44:6e:9d:44:57:28:bc:5a: af:3a:c1:df:17:f3:e5:3f:46:ff:81:a0:38:e2:f8:56:80:fc: 11:28:aa:44:b1:b7:e8:f6:92:66:f0:04:05:d9:c2:b4:5f:1a: 79:c0:78:08:78:1e:d7:77:7f:05:8e:29:50:79:4f:c7:04:90: 47:ce:a9:47:20:70:30:93:62:f7:41:8a:72:a1:8b:41:46:16: cf:b3:5f:ca:64:61:d4:32:dc:eb:d9:64:f8:41:13:72:5f:cf: fc:c4:52:21:20:53:a4:77:5c:ec:ff:07:14:98:26:af:27:c0: 22:cf:f2:63:3b:23:93:6f:8a:b9:9d:9c:48:0e:e4:3b:c3:6d: e4:dc:b5:9b:d2:59:ae:38:a3:5d:96:6c:ce:a7:77:21:48:e1: 58:cb:b1:a6:54:75:6c:61:ff:5e:3b:85:77:44:b3:cf:a9:18: 2b:75:92:8d:67:14:48:bc:c2:3e:b6:6e:f1:83:41:81:69:25: cc:29:a2:f7:31:dc:d6:ff:b0:17:ae:2b:1f:df:1c:ff:52:ac: 5b:43:66:56:ac:93:96:09:17:97:04:d6:a1:f6:86:8d:b5:2f: 76:23:16:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjYwNDE3MDE0MTMyWhcNMjYwNDI0MDE0MTMyWjAYMRYwFAYD VQQDEw02OWUxOGZjYy0xYjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzQI8RRlGhuQjRB/PZY4XxeYM6L/C8bun6+4JLreN3V/8Y3ZDrrUTDMEbaKr jeXS4Mp1zYuq+oTKrtXuQ7I3HhKcKYN6GWGJcMZeNLbrbB931y2Ty3sctgekWuOo BBNsjGuxvhibQzsPzZD9ftt5fNRcQFPg2C/3vETiVVVl0E8cji1tOXogSvm9ScpN xWGm/CjeG2mnO+qU5mhhUKFc/9dV7VD1WZ4aZf0bIaNHqwthuwUHAGZ1S2XkALRi mPEeJRnOpVmzEW2iVhwAt3g8SquHIUf3dbXhWK3HPU8rUaBacPNnLwQcbqlupr+D +eQUNEYShmOVe4ouzt56tIuTQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP+LSOj4 nTLpVCeE3aDAuqjZM0I5MB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQmpvZtB00pMdfKW5fEEHJ/e8kaTjtMECGWPRjURunURXKLxarzrB3xfz5T9G /4GgOOL4VoD8ESiqRLG36PaSZvAEBdnCtF8aecB4CHge13d/BY4pUHlPxwSQR86p RyBwMJNi90GKcqGLQUYWz7NfymRh1DLc69lk+EETcl/P/MRSISBTpHdc7P8HFJgm ryfAIs/yYzsjk2+KuZ2cSA7kO8Nt5Ny1m9JZrjijXZZszqd3IUjhWMuxplR1bGH/ XjuFd0Szz6kYK3WSjWcUSLzCPrZu8YNBgWklzCmi9zHc1v+wF64rH98c/1KsW0Nm VqyTlgkXlwTWofaGjbUvdiMWWA== -----END CERTIFICATE-----Generated at Fri Apr 17 13:07:00 2026 by rpki-client