$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: U0fzYE+2R6+ljtTaurnYlJyIDR0izgVsSIO3DUS3hUY= Subject key identifier: 0D:A4:66:F4:67:6F:8A:0B:82:5E:B6:12:B0:52:37:3B:20:27:05:B6 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0CFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0CBE Signing time: Thu 16 Apr 2026 18:25:27 +0000 Manifest this update: Thu 16 Apr 2026 18:25:26 +0000 Manifest next update: Thu 23 Apr 2026 18:25:26 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: hBvOMaIM4SmCT2GlOGwFFHhIQJ3wFZCOjtOkb9xC+Ag=) 2: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: ApbUgdUH10Pdfa6lJVrc4XPCGZcLshELo3PIV/SWLXw=) 3: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: 2VeVxpw4IPzgEibTNEjoXK/Qy1fd2SwF+0DbU+sMNRg=) 4: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: HqADfJ6PQAnaMYUSVaYaC1tzBINlqpUjolFi7987BYY=) 5: 183DE570057A11EC822F230EC4F9AE02.roa (hash: KDCY6i/WJ6l1BoCfZqKbKmaeWQcqDHXYwIFR4N1iXXE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3325 (0xcfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Apr 16 18:25:26 2026 GMT Not After : Apr 23 18:25:26 2026 GMT Subject: CN=69e12997-88d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:d8:fb:30:08:54:01:8b:74:e3:39:71:8a: e0:c2:d2:f1:22:dd:6e:90:72:6b:62:ac:bd:bf:05: 14:1d:79:ce:ba:af:2b:f0:80:75:7a:30:03:77:2c: b8:8a:0c:43:88:33:02:8a:8d:a2:ef:28:a6:9d:4a: 00:57:69:93:a5:47:3a:70:c9:d4:96:80:64:f0:2a: 8c:33:ee:a0:02:72:59:ce:63:8c:0b:20:e4:77:04: e5:25:3f:b8:dc:59:ef:7f:b0:63:3a:d7:d9:28:95: 0f:70:d3:73:34:d6:b7:d1:cc:d3:cd:a9:5d:37:33: e0:76:f6:72:f8:30:cc:9e:f7:39:f1:bd:22:ff:fa: e6:e1:78:1c:68:6b:82:fe:ce:36:69:db:6e:53:3d: 14:69:b6:9b:b5:82:61:43:86:44:ae:ce:a1:97:8c: 14:2c:98:57:9f:da:c9:c8:9f:8d:2d:56:23:b5:f0: 90:a0:57:02:c9:79:9e:39:84:c7:b3:f5:5d:a2:a4: d5:2a:b0:33:ec:55:2e:c3:29:d8:ea:ce:fe:5d:80: 0f:15:b4:da:f6:ca:69:91:5f:05:2a:d9:64:bb:88: 26:b6:77:68:d6:3f:e3:7a:dd:30:9a:4d:38:08:2f: 9c:ae:09:76:85:c1:ff:c1:f7:0d:df:e3:cc:b4:b8: 8f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A4:66:F4:67:6F:8A:0B:82:5E:B6:12:B0:52:37:3B:20:27:05:B6 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:b8:a5:58:a2:0c:6f:9d:3d:08:0d:be:df:cd:52:ea:1f:db: e5:d3:1c:d9:65:af:5e:b3:1b:67:04:f4:f1:10:11:b3:29:79: 51:c7:29:5c:6f:b1:5f:dd:1d:78:de:da:ff:a8:10:aa:8a:bf: c9:5a:99:3b:a4:0b:ee:2a:ec:30:44:28:72:cc:67:33:f4:62: 9c:b1:50:f1:76:fc:19:95:5e:ec:6f:bb:b9:c2:e8:f0:ec:83: fa:1d:4b:4b:b1:56:8c:02:86:3a:71:60:45:5c:69:27:73:fc: 9f:4b:0d:cf:43:62:1c:83:4c:51:b0:9d:40:14:0b:ce:ee:0e: 5b:a5:6b:8c:92:3e:ba:d8:3b:6f:3a:34:34:e9:78:22:17:cf: 05:2d:f4:ea:5d:b5:4c:01:65:e6:de:46:e8:04:62:84:c7:d8: 1f:1c:3d:6c:ac:c6:ac:8f:85:55:a3:88:72:32:8f:41:53:16: 3b:b7:d6:3e:11:a0:3d:73:36:f5:ef:ec:47:83:6b:6e:45:cc: 43:3a:06:f2:40:79:b3:2e:5e:94:cc:d5:05:44:84:95:5f:21: d0:ec:43:68:4f:c2:39:7a:d4:7f:c7:39:f7:7d:42:6b:28:1f: af:31:aa:e5:3a:e9:70:2c:23:9b:a9:30:ab:d4:40:8d:cd:4a: ca:e5:5c:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjYwNDE2MTgyNTI2WhcNMjYwNDIzMTgyNTI2WjAYMRYwFAYD VQQDEw02OWUxMjk5Ny04OGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mTY+zAIVAGLdOM5cYrgwtLxIt1ukHJrYqy9vwUUHXnOuq8r8IB1ejADdyy4 igxDiDMCio2i7yimnUoAV2mTpUc6cMnUloBk8CqMM+6gAnJZzmOMCyDkdwTlJT+4 3Fnvf7BjOtfZKJUPcNNzNNa30czTzaldNzPgdvZy+DDMnvc58b0i//rm4XgcaGuC /s42adtuUz0UababtYJhQ4ZErs6hl4wULJhXn9rJyJ+NLVYjtfCQoFcCyXmeOYTH s/VdoqTVKrAz7FUuwynY6s7+XYAPFbTa9sppkV8FKtlku4gmtndo1j/jet0wmk04 CC+crgl2hcH/wfcN3+PMtLiPvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA2kZvRn b4oLgl62ErBSNzsgJwW2MB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMbilWKIMb509CA2+381S6h/b5dMc2WWvXrMbZwT08RARsyl5UccpXG+xX90d eN7a/6gQqoq/yVqZO6QL7irsMEQocsxnM/RinLFQ8Xb8GZVe7G+7ucLo8OyD+h1L S7FWjAKGOnFgRVxpJ3P8n0sNz0NiHINMUbCdQBQLzu4OW6VrjJI+utg7bzo0NOl4 IhfPBS306l21TAFl5t5G6ARihMfYHxw9bKzGrI+FVaOIcjKPQVMWO7fWPhGgPXM2 9e/sR4NrbkXMQzoG8kB5sy5elMzVBUSElV8h0OxDaE/COXrUf8c5931CaygfrzGq 5TrpcCwjm6kwq9RAjc1KyuVctg== -----END CERTIFICATE-----Generated at Fri Apr 17 05:29:20 2026 by rpki-client