$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: Ieva+SpGwUO6T81A23KSDLGN2cJn98EbrHRVogXSo6k= Subject key identifier: 3B:45:9C:E0:2E:D2:B7:62:24:03:88:59:4E:6E:DA:17:E8:8D:5E:60 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 025F Signing time: Fri 17 Apr 2026 01:59:38 +0000 Manifest this update: Fri 17 Apr 2026 01:59:37 +0000 Manifest next update: Fri 24 Apr 2026 01:59:37 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: vnhzf/DAAbEivKygXoNWab3gul5BUcnFknbAIpg2U24=) 2: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: u+QDJnt7Mnh/rwyXgRJ0Kw+8drLnsA9xJpkCviyiVSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Apr 17 01:59:37 2026 GMT Not After : Apr 24 01:59:37 2026 GMT Subject: CN=69e1940a-b776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:34:10:93:05:7f:62:4e:5b:4d:a9:4c:2e:ac: 1c:7a:41:ca:b3:6f:9d:a9:55:b2:5f:6e:03:d5:26: 8b:4f:63:d5:89:fc:c6:70:9f:04:14:ea:df:56:c7: f8:bd:a6:e9:42:b1:19:2c:89:e9:37:b3:d4:af:a4: 82:65:6a:0e:2e:15:dc:d4:33:5a:e5:8e:60:1d:b9: 2b:6e:c5:9e:c0:7a:9b:77:2f:dc:98:82:aa:ec:8b: 73:87:30:62:82:43:74:cf:70:36:b1:cd:03:33:e5: ab:ea:f7:26:e9:16:98:7d:23:99:f0:b2:3e:fb:b3: 8a:6b:fc:21:e1:07:b7:7a:26:72:04:c2:0c:0e:82: 1b:92:49:4b:65:ba:b2:a2:70:6a:64:a4:25:f6:96: 21:1c:3c:be:83:5d:82:92:97:25:3f:11:ac:8c:da: 81:76:38:cb:4a:f7:b8:9b:26:64:91:7a:dd:a8:fb: 08:df:2c:92:f4:14:01:a6:6f:76:a2:81:76:d5:72: 3e:1c:a2:f1:bb:1a:7d:ec:ee:07:c2:09:2c:e3:e2: 37:13:97:64:99:a0:7f:76:f0:c5:17:06:38:08:ab: ce:f6:43:8c:01:dc:d2:98:de:61:f5:c1:87:c6:7d: 37:e0:31:1c:f8:d3:e1:42:95:a4:97:ac:ae:06:76: aa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:45:9C:E0:2E:D2:B7:62:24:03:88:59:4E:6E:DA:17:E8:8D:5E:60 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:a9:14:c9:74:f1:35:38:4d:5e:51:0c:2a:9b:5a:bc:e3:fb: 2a:56:bf:0d:1a:d2:31:81:62:30:94:bc:b1:6a:94:36:cc:aa: c3:79:23:32:9f:a3:40:72:76:f9:8b:d9:69:70:e9:5a:f2:b4: 06:27:ac:2d:25:8c:b8:fa:82:ee:38:19:9d:21:04:53:95:a6: 91:c0:d9:67:84:73:3f:12:9e:a7:83:43:fb:a7:9f:6c:16:b7: 2f:19:61:4e:75:87:ad:d9:a8:fa:6d:4d:7a:a0:5a:63:09:92: 97:e3:23:30:d7:2e:f3:4a:26:ea:75:1a:01:da:be:de:d2:61: 77:06:32:0a:af:c9:fc:9a:7e:f9:6e:39:25:ab:10:61:a5:54: a9:ca:b1:46:fe:26:43:09:62:dd:ca:79:46:3c:b9:2d:f4:8c: f3:6d:6f:4d:dd:c3:6d:51:f5:c7:01:97:3b:13:62:70:83:59: 61:7b:ea:f5:63:51:e6:17:0c:33:79:b5:d5:95:a3:9e:b8:26: de:64:f1:85:bf:0f:8f:69:97:73:4e:df:23:70:bb:f0:96:e6: a0:fe:40:df:c9:f0:a9:6c:3d:ba:42:37:cb:ce:ac:6b:8e:51: cd:bb:11:3c:fd:bf:3f:57:c5:69:b3:f4:57:53:ed:b0:c9:0d: d8:af:49:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjYwNDE3MDE1OTM3WhcNMjYwNDI0MDE1OTM3WjAYMRYwFAYD VQQDEw02OWUxOTQwYS1iNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjQQkwV/Yk5bTalMLqwcekHKs2+dqVWyX24D1SaLT2PVifzGcJ8EFOrfVsf4 vabpQrEZLInpN7PUr6SCZWoOLhXc1DNa5Y5gHbkrbsWewHqbdy/cmIKq7ItzhzBi gkN0z3A2sc0DM+Wr6vcm6RaYfSOZ8LI++7OKa/wh4Qe3eiZyBMIMDoIbkklLZbqy onBqZKQl9pYhHDy+g12CkpclPxGsjNqBdjjLSve4myZkkXrdqPsI3yyS9BQBpm92 ooF21XI+HKLxuxp97O4Hwgks4+I3E5dkmaB/dvDFFwY4CKvO9kOMAdzSmN5h9cGH xn034DEc+NPhQpWkl6yuBnaqwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDtFnOAu 0rdiJAOIWU5u2hfojV5gMB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAqkUyXTxNThNXlEMKptavOP7Kla/DRrSMYFiMJS8sWqUNsyqw3kjMp+jQHJ2 +YvZaXDpWvK0BiesLSWMuPqC7jgZnSEEU5WmkcDZZ4RzPxKep4ND+6efbBa3Lxlh TnWHrdmo+m1NeqBaYwmSl+MjMNcu80om6nUaAdq+3tJhdwYyCq/J/Jp++W45JasQ YaVUqcqxRv4mQwli3cp5Rjy5LfSM821vTd3DbVH1xwGXOxNicINZYXvq9WNR5hcM M3m11ZWjnrgm3mTxhb8Pj2mXc07fI3C78JbmoP5A38nwqWw9ukI3y86sa45RzbsR PP2/P1fFabP0V1PtsMkN2K9Jog== -----END CERTIFICATE-----Generated at Fri Apr 17 06:49:55 2026 by rpki-client