$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: d4QVR7Kj3O8lHDAKGuDPHq6E3z9+5wplFisku9/p9m4= Subject key identifier: B8:B2:05:D8:7B:D0:48:30:1C:4F:B1:4E:D8:93:C5:12:96:1A:24:1F Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01F0 Signing time: Fri 17 Apr 2026 03:01:09 +0000 Manifest this update: Fri 17 Apr 2026 03:01:09 +0000 Manifest next update: Fri 24 Apr 2026 03:01:09 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: cnep6YMUtha+kHfKN938JOyjKQfLwFkymixMl32LAGw=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: MzBqBNOieBSY9GInzC0v3uqqkT/gsysN6ytNDyiS4fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Apr 17 03:01:09 2026 GMT Not After : Apr 24 03:01:09 2026 GMT Subject: CN=69e1a275-4385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c7:dd:ee:9f:0f:60:81:c4:9d:44:61:49:45: 82:57:53:c0:48:01:48:c7:20:45:2f:c4:ef:bb:b2: 81:bd:3c:49:64:71:ec:71:0c:4f:6e:f1:db:e9:a6: 5d:73:42:21:93:a0:4a:2c:17:30:3a:c0:91:9b:c9: 13:c3:08:e7:1f:04:a7:9c:c6:42:3f:fb:ca:03:e5: 71:56:1c:89:b9:1a:a6:c6:e7:32:da:d2:3c:a9:01: fe:6a:29:47:61:39:ce:64:6f:e7:a4:80:99:66:4e: 8f:3e:c1:85:72:5a:f7:e0:0a:7a:75:aa:f5:0e:0a: 44:6b:6a:4a:d5:de:ee:80:03:0e:5a:0a:aa:0e:94: a4:3e:72:30:1e:d9:85:21:10:8e:9f:1f:47:b0:99: 87:53:34:9b:bf:9d:26:bb:33:9b:ef:24:16:56:bb: ef:9a:d8:14:78:92:d4:c7:7f:49:db:98:10:d4:6d: bd:f4:aa:be:08:2a:f1:c5:3c:77:03:9a:17:ce:38: fe:15:25:49:06:c8:57:84:45:ec:bf:64:df:e9:0f: 4a:a7:23:90:2b:37:ba:66:ab:24:e5:04:71:2f:a8: c0:a5:cf:8a:1c:d1:f2:23:69:91:4c:5d:96:63:e5: 1a:0c:b0:be:69:4f:a2:ed:ac:da:79:b0:e3:08:80: 73:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B2:05:D8:7B:D0:48:30:1C:4F:B1:4E:D8:93:C5:12:96:1A:24:1F X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c2:13:ae:a3:fb:1d:4e:94:a4:ac:50:10:c7:be:44:d3:b6: 07:f9:f1:42:c6:a0:f5:b7:3d:ee:d3:54:1c:a6:9c:21:88:10: 70:b2:41:aa:13:ed:fa:59:21:11:d5:37:67:f3:25:91:4a:18: 59:9d:83:bd:15:6a:56:33:4e:2a:4d:6b:b8:21:89:3d:cb:5f: 85:ad:bf:99:75:7c:78:a5:a0:97:2e:61:44:2b:93:04:fe:19: 49:91:24:be:36:1d:8e:c5:b8:73:d0:76:74:6d:05:89:4a:ed: e2:15:9e:d8:e3:39:f5:f2:ea:c6:5f:2b:19:bd:4f:09:16:89: da:63:e3:8f:10:5e:c9:f4:03:d4:7d:c7:2e:46:93:b9:25:01: 39:01:bf:c3:a5:2f:a6:b6:5e:0a:bd:3e:91:3a:03:02:58:d8: cb:05:5c:68:e9:f0:4e:24:b2:46:7d:b1:cb:97:af:6e:43:2c: 69:e3:2f:1f:4a:b8:06:2d:0c:83:b0:1d:76:5a:02:0f:8f:51: 37:cd:9c:73:03:33:22:bf:ca:3d:40:48:2f:47:79:b9:a7:c6: 89:ea:b6:5e:58:21:2f:e6:ed:b0:17:f9:b4:4c:9b:70:53:ea: 76:af:93:0f:a8:c6:2e:e4:e2:47:18:d4:44:ae:4f:55:9d:06: 76:26:c5:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjYwNDE3MDMwMTA5WhcNMjYwNDI0MDMwMTA5WjAYMRYwFAYD VQQDEw02OWUxYTI3NS00Mzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcfd7p8PYIHEnURhSUWCV1PASAFIxyBFL8Tvu7KBvTxJZHHscQxPbvHb6aZd c0Ihk6BKLBcwOsCRm8kTwwjnHwSnnMZCP/vKA+VxVhyJuRqmxucy2tI8qQH+ailH YTnOZG/npICZZk6PPsGFclr34Ap6dar1DgpEa2pK1d7ugAMOWgqqDpSkPnIwHtmF IRCOnx9HsJmHUzSbv50muzOb7yQWVrvvmtgUeJLUx39J25gQ1G299Kq+CCrxxTx3 A5oXzjj+FSVJBshXhEXsv2Tf6Q9KpyOQKze6Zqsk5QRxL6jApc+KHNHyI2mRTF2W Y+UaDLC+aU+i7azaebDjCIBzkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLiyBdh7 0EgwHE+xTtiTxRKWGiQfMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKcITrqP7HU6UpKxQEMe+RNO2B/nxQsag9bc97tNUHKacIYgQcLJBqhPt+lkh EdU3Z/MlkUoYWZ2DvRVqVjNOKk1ruCGJPctfha2/mXV8eKWgly5hRCuTBP4ZSZEk vjYdjsW4c9B2dG0FiUrt4hWe2OM59fLqxl8rGb1PCRaJ2mPjjxBeyfQD1H3HLkaT uSUBOQG/w6UvprZeCr0+kToDAljYywVcaOnwTiSyRn2xy5evbkMsaeMvH0q4Bi0M g7AddloCD49RN82ccwMzIr/KPUBIL0d5uafGieq2XlghL+btsBf5tEybcFPqdq+T D6jGLuTiRxjURK5PVZ0GdibFxQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:25:35 2026 by rpki-client