$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft File: 25LUPJBhJQWzr0bpZKaMyfXzsq8.mft (raw, json) Hash identifier: rQH7KQL9WyfNinM6XHZlURNRtQLj+46872qVi8a0aRE= Subject key identifier: DD:AD:EA:EF:9D:29:8E:EE:08:3E:BF:3A:D3:7F:B4:4B:A8:2D:48:7B Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Certificate serial: 03E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft Manifest number: 03C5 Signing time: Fri 17 Apr 2026 00:37:43 +0000 Manifest this update: Fri 17 Apr 2026 00:37:42 +0000 Manifest next update: Fri 24 Apr 2026 00:37:42 +0000 Files and hashes: 1: 25LUPJBhJQWzr0bpZKaMyfXzsq8.crl (hash: ZUh9QQBv7UgADBMBJgSYUSSW5w/KZxV612JaM5mkd1g=) 2: 299F07F2E15611EFA15DF23DC4F9AE02.roa (hash: xB0/pb5I5xHP02aSQCO9upGknx6BvV6q4THXB9XtRB8=) 3: B2FCF1C07FF911F08FAAC57FC4F9AE02.roa (hash: jNzbZDAmJi3yGAnoraLhyCZK40ZfYa1fB/jtVGeYRGI=) 4: 9ABE08C606F311F08407D351C4F9AE02.roa (hash: mJ+4aNLfvZt4Gxz5lM68lm7uHN4nwmUYx/R+WnSzyKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 996 (0x3e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Validity Not Before: Apr 17 00:37:42 2026 GMT Not After : Apr 24 00:37:42 2026 GMT Subject: CN=69e180d6-05a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:71:44:e7:78:14:30:85:62:25:6f:b6:65:32: bb:d9:22:e4:d2:71:8f:e2:fd:bb:59:6b:23:79:4f: 29:24:f7:28:6c:c0:06:ec:1b:03:15:11:dc:cd:64: d7:fa:47:73:ed:f8:20:0b:8a:ff:3a:2a:25:8d:2f: fc:60:b2:c3:29:aa:2a:af:52:4c:b8:15:2a:c4:df: fc:19:df:53:b6:16:ad:cc:45:15:16:c9:d1:9e:cf: 3b:38:04:e1:e8:fe:2d:f0:f3:e8:98:b2:5a:e2:53: f3:2f:07:88:ba:c9:92:20:55:7e:5f:46:ba:59:a6: 3c:f2:81:5f:53:66:dc:e3:e0:3b:0c:53:11:58:c9: 80:a9:17:0f:ed:de:e2:12:67:5a:53:90:b4:5c:48: c8:a2:45:6a:8a:53:b1:97:34:23:24:f4:ea:c7:2c: ed:a9:27:f6:a2:8c:df:00:1c:3b:22:70:6f:7b:a2: 5f:1f:a4:0e:ac:f2:95:2b:9f:34:9e:5e:8c:33:60: e7:4c:01:00:c4:34:4b:1c:a1:0d:3e:a8:85:93:34: d3:30:69:51:ac:12:22:62:30:3c:0e:14:e3:a9:8b: 02:20:6a:70:57:8d:65:5c:16:0b:31:e5:43:2c:e7: 37:0b:bb:e4:c4:0d:c6:a4:c4:48:19:d6:88:c1:04: 2a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:AD:EA:EF:9D:29:8E:EE:08:3E:BF:3A:D3:7F:B4:4B:A8:2D:48:7B X509v3 Authority Key Identifier: keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:80:19:31:28:db:ec:d6:5b:5d:f4:d6:7d:e0:49:e3:d2:99: f5:8b:12:5e:61:26:95:d2:36:84:f7:a0:55:e4:65:ca:3d:a8: a8:5d:37:ab:6a:67:5c:4e:aa:70:28:a7:b2:86:bc:5c:b4:87: 97:5b:d3:61:2b:2c:5c:b6:c3:88:71:a7:a6:08:b7:a0:21:63: fa:17:00:3f:fa:1f:bd:fb:c2:9b:22:1c:19:7d:e7:0a:9d:7b: 7b:ab:1e:3f:2e:65:8b:de:f3:92:2f:2c:30:54:b0:84:8d:7a: 39:ea:75:75:d2:82:60:fb:bd:2b:e3:1d:45:7c:39:fd:da:28: f8:cc:69:64:6d:18:3a:b9:34:77:33:56:bf:f9:5e:17:fd:2b: 35:90:4e:52:1e:c5:5a:e8:ec:e1:51:62:7b:5e:e1:05:c9:8c: 75:5f:b5:0c:bf:c5:2c:9b:b3:d0:cd:a1:f0:43:06:23:f1:b9: 91:c8:63:3d:78:d8:75:d5:4e:62:23:75:c6:7f:af:c2:22:14: db:ac:83:80:0b:3e:ac:be:e9:4b:ed:84:e0:bf:36:fe:c5:e7: a4:f7:f5:5b:67:f7:94:3b:cf:3b:a0:30:48:c4:7e:4c:df:e2: 2a:2d:f2:18:17:5f:56:f5:49:d8:82:25:89:b2:6e:e9:da:38: 68:d4:26:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZFOTY0QTY4Q0M5 RjVGM0IyQUYwHhcNMjYwNDE3MDAzNzQyWhcNMjYwNDI0MDAzNzQyWjAYMRYwFAYD VQQDEw02OWUxODBkNi0wNWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHFE53gUMIViJW+2ZTK72SLk0nGP4v27WWsjeU8pJPcobMAG7BsDFRHczWTX +kdz7fggC4r/OioljS/8YLLDKaoqr1JMuBUqxN/8Gd9TthatzEUVFsnRns87OATh 6P4t8PPomLJa4lPzLweIusmSIFV+X0a6WaY88oFfU2bc4+A7DFMRWMmAqRcP7d7i EmdaU5C0XEjIokVqilOxlzQjJPTqxyztqSf2oozfABw7InBve6JfH6QOrPKVK580 nl6MM2DnTAEAxDRLHKENPqiFkzTTMGlRrBIiYjA8DhTjqYsCIGpwV41lXBYLMeVD LOc3C7vkxA3GpMRIGdaIwQQq1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN2t6u+d KY7uCD6/OtN/tEuoLUh7MB8GA1UdIwQYMBaAFNuS1DyQYSUFs69G6WSmjMn187Kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjEzQi8wNzA3NkZBMEQ5 QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpRV3pyMGJwWkthTXlmWHpz cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1TFVQSkJoSlFXenIwYnBaS2FNeWZYenNxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjEzQi8wNzA3NkZBMEQ5QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpR V3pyMGJwWkthTXlmWHpzcTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAz4AZMSjb7NZbXfTWfeBJ49KZ9YsSXmEmldI2hPegVeRlyj2oqF03q2pnXE6q cCinsoa8XLSHl1vTYSssXLbDiHGnpgi3oCFj+hcAP/ofvfvCmyIcGX3nCp17e6se Py5li97zki8sMFSwhI16Oep1ddKCYPu9K+MdRXw5/doo+MxpZG0YOrk0dzNWv/le F/0rNZBOUh7FWujs4VFie17hBcmMdV+1DL/FLJuz0M2h8EMGI/G5kchjPXjYddVO YiN1xn+vwiIU26yDgAs+rL7pS+2E4L82/sXnpPf1W2f3lDvPO6AwSMR+TN/iKi3y GBdfVvVJ2IIlibJu6do4aNQm0g== -----END CERTIFICATE-----Generated at Fri Apr 17 13:00:45 2026 by rpki-client