$ rpki-client -vvf rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft File: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft (raw, json) Hash identifier: Ld2umEhNKavLl4RPoGO1Vm1GEat8qj/9jTZYDyute90= Subject key identifier: 1C:9B:59:20:5F:C7:F5:4C:01:63:1E:A2:5A:A4:EC:FF:51:F2:BC:B6 Authority key identifier: BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 Certificate issuer: /CN=A918E1C4/serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft Manifest number: 4B Signing time: Fri 17 Apr 2026 08:03:00 +0000 Manifest this update: Fri 17 Apr 2026 08:02:59 +0000 Manifest next update: Fri 24 Apr 2026 08:02:59 +0000 Files and hashes: 1: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl (hash: gVjVX86dogGkf2r8gTQEc0o1jxwA+LOkGUUq81yHSJs=) 2: 722C58FACE9311F0A2C11D25C4F9AE02.roa (hash: ERXxcYaD/BipGW6AIZDMmzRHcboCoePXi+aLABZ/mKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E1C4, serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Validity Not Before: Apr 17 08:02:59 2026 GMT Not After : Apr 24 08:02:59 2026 GMT Subject: CN=69e1e934-12ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:09:ef:af:ac:04:53:bb:ac:e9:fa:3e:d4:40: 85:26:1b:e8:1f:c3:df:17:0f:7d:7c:90:43:7f:67: ee:38:e9:54:c8:46:cc:4f:d7:82:72:07:ba:25:84: eb:9e:5b:51:52:ae:9e:74:74:bc:f7:a3:89:55:6c: 14:b0:46:5a:0a:9d:e6:70:7b:f0:64:32:3f:54:4d: f1:b2:f8:9f:44:45:8f:c7:55:b3:2d:d3:ea:e4:12: 44:64:36:52:c7:e8:0e:1b:f2:fd:b3:4d:2b:ae:53: eb:4a:c4:7e:54:e5:a8:ac:05:a7:1c:82:00:51:a2: b9:66:3a:49:7b:82:4c:86:1c:88:6e:08:9a:83:b2: 76:5c:19:7f:59:7e:fa:9e:77:0d:31:88:61:cb:7b: 31:73:56:ed:fb:0f:84:53:ea:03:fa:8f:6d:ec:87: 59:85:6b:50:7a:de:e5:c2:9e:24:17:27:d3:87:42: 76:14:b8:dd:29:c4:b4:92:2f:7b:9e:8e:dd:36:18: f0:78:91:f1:f2:8e:31:4e:49:6e:e5:29:e1:64:0e: 61:78:9c:c7:61:75:c9:f8:ad:b0:72:8d:90:59:c1: 02:93:11:96:51:bc:04:26:4e:ac:53:b2:48:2e:2a: 9c:d7:90:3e:d1:44:b4:5c:25:50:e3:37:5e:d0:d5: 2f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:9B:59:20:5F:C7:F5:4C:01:63:1E:A2:5A:A4:EC:FF:51:F2:BC:B6 X509v3 Authority Key Identifier: keyid:BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:cc:a5:81:b7:72:6b:90:8e:80:c0:3b:bc:92:d9:89:d8:4f: 89:20:95:28:86:fe:81:e0:c3:f5:59:4e:8e:c5:08:4d:12:97: 80:55:f8:de:ce:f6:7d:9e:8b:01:ca:bc:f8:82:40:76:54:c4: 08:81:ba:b7:c1:b5:2c:66:55:08:6b:ac:1e:10:6f:a9:f2:e4: 3c:1d:fd:ea:3a:d8:45:98:3d:de:c9:a4:98:b3:32:62:60:85: d0:fb:23:f6:b6:eb:3d:53:93:dd:6e:e6:9a:1e:6f:24:bc:ea: 93:d0:c8:34:cc:83:48:c8:2d:5f:43:b1:fd:77:a5:d9:9d:86: dc:79:5c:f3:8d:a5:f3:bf:39:c8:f5:1f:7e:b4:6c:06:1a:71: d4:9a:e2:b1:37:8a:db:7a:08:0b:14:dd:94:a7:c1:8c:ff:34: 0b:01:1b:b4:3f:c3:0e:d8:3f:23:79:1e:12:1f:91:d8:1c:2f: fb:72:57:07:0f:f2:39:25:b1:c7:06:9d:6b:ee:76:c9:91:63: 3a:2f:2c:7a:11:f7:fa:47:c1:0e:eb:3e:48:b6:f9:10:37:ed: fc:76:d0:ce:fe:68:ba:6c:42:12:8f:48:2e:d5:29:b3:80:fb: de:54:65:af:5e:ad:ef:9b:e9:81:31:c4:fe:99:29:aa:a5:d7: 19:92:d0:b7 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTFDNDExMC8GA1UEBRMoQkQ4OTc4MTY1NkQ5RDE1ODM0N0I3QjE0QzA0QUQ5RUE0 NDFDQzk5NzAeFw0yNjA0MTcwODAyNTlaFw0yNjA0MjQwODAyNTlaMBgxFjAUBgNV BAMTDTY5ZTFlOTM0LTEyZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUCe+vrARTu6zp+j7UQIUmG+gfw98XD318kEN/Z+446VTIRsxP14JyB7olhOue W1FSrp50dLz3o4lVbBSwRloKneZwe/BkMj9UTfGy+J9ERY/HVbMt0+rkEkRkNlLH 6A4b8v2zTSuuU+tKxH5U5aisBaccggBRorlmOkl7gkyGHIhuCJqDsnZcGX9Zfvqe dw0xiGHLezFzVu37D4RT6gP6j23sh1mFa1B63uXCniQXJ9OHQnYUuN0pxLSSL3ue jt02GPB4kfHyjjFOSW7lKeFkDmF4nMdhdcn4rbByjZBZwQKTEZZRvAQmTqxTskgu KpzXkD7RRLRcJVDjN17Q1S81AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUHJtZIF/H 9UwBYx6iWqTs/1HyvLYwHwYDVR0jBBgwFoAUvYl4FlbZ0Vg0e3sUwErZ6kQcyZcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMUM0LzBDNzFFN0ZBQ0U5 MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZnMGUzc1V3RXJaNmtRY3la Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdllsNEZsYlowVmcwZTNzVXdFclo2a1FjeVpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MUM0LzBDNzFFN0ZBQ0U5MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZn MGUzc1V3RXJaNmtRY3laYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBZzKWBt3JrkI6AwDu8ktmJ2E+JIJUohv6B4MP1WU6OxQhNEpeAVfjezvZ9nosB yrz4gkB2VMQIgbq3wbUsZlUIa6weEG+p8uQ8Hf3qOthFmD3eyaSYszJiYIXQ+yP2 tus9U5PdbuaaHm8kvOqT0Mg0zINIyC1fQ7H9d6XZnYbceVzzjaXzvznI9R9+tGwG GnHUmuKxN4rbeggLFN2Up8GM/zQLARu0P8MO2D8jeR4SH5HYHC/7clcHD/I5JbHH Bp1r7nbJkWM6Lyx6Eff6R8EO6z5ItvkQN+38dtDO/mi6bEISj0gu1SmzgPveVGWv Xq3vm+mBMcT+mSmqpdcZktC3 -----END CERTIFICATE-----Generated at Fri Apr 17 12:07:40 2026 by rpki-client