$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: KbJV+ni2dySLqQYxpm+psdZuU7GWgo0rpieBkRMheAM= Subject key identifier: C5:40:BA:AF:65:46:F5:32:D9:1A:C4:29:DD:5D:05:E0:0D:4E:45:FF Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 0939 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 15E4 Signing time: Thu 16 Apr 2026 18:22:12 +0000 Manifest this update: Thu 16 Apr 2026 18:22:11 +0000 Manifest next update: Thu 23 Apr 2026 18:22:11 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: jSuunbC2qrK/6jMFdH1ygMPs+RlIY8m0PywJSLNQ1Mw=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: +TwMS23E8Rm70aif9FJK4tvKCbQcLkwBDHY6azQ9woU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:22:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2361 (0x939) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Apr 16 18:22:11 2026 GMT Not After : Apr 23 18:22:11 2026 GMT Subject: CN=69e128d3-bcdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4b:f0:2e:aa:3a:14:2f:97:c1:51:8e:89:19: 36:ff:da:84:3a:17:41:80:2d:30:d5:6e:a1:67:f9: 1a:03:e7:fc:d4:bb:28:3b:a2:99:05:13:19:e5:02: 2e:40:72:0f:b9:3f:37:18:fc:01:b5:6b:18:4b:65: b3:19:ff:af:14:df:b2:07:8c:6a:1b:8c:e0:e5:06: d0:1d:b6:8e:61:d6:24:27:42:af:66:6b:83:0e:a6: 81:26:b0:a5:da:ce:14:14:52:7b:58:cc:16:1e:54: dc:aa:40:a7:99:4b:d9:33:70:f0:d6:50:30:65:d9: 3b:dc:25:a3:70:07:66:8a:59:25:87:ea:3c:e7:5e: 26:f0:0d:9a:3d:d6:59:94:47:02:6f:d2:67:9d:d5: 9f:dc:04:80:d5:09:7d:63:f6:78:78:c3:7d:12:5d: 88:b8:1c:57:9a:61:17:02:47:97:07:46:0f:0a:e9: 0b:a1:66:a4:37:ab:c6:89:6b:75:1a:15:26:ac:f8: 05:18:38:11:37:bf:07:b8:df:15:9e:91:27:66:0f: 5e:42:85:6a:d3:61:45:00:38:85:c9:08:9c:e3:07: 7c:0e:ef:0a:20:28:ca:5a:ee:e9:91:be:ae:f2:15: 2f:2a:d7:4b:ff:13:98:38:7e:7b:69:d2:60:20:a8: b3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:40:BA:AF:65:46:F5:32:D9:1A:C4:29:DD:5D:05:E0:0D:4E:45:FF X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b7:97:85:0b:89:22:81:ff:77:f0:5c:a3:2f:93:59:03:7b: 52:1d:2a:ff:ab:fa:1c:a3:32:95:4b:b8:8d:c3:1c:a4:6b:46: 82:5e:33:79:99:ff:e1:68:ee:21:a8:d9:65:bb:f9:cb:83:d1: 29:77:aa:e3:34:c3:de:b2:55:0f:3f:6f:44:9d:f8:2f:9f:18: 79:a6:a3:40:5b:77:c6:3f:77:f9:14:19:d7:62:79:27:4d:e1: c4:d7:eb:8e:df:fd:64:b9:34:c1:7a:96:10:40:58:be:68:67: 67:28:5d:66:57:41:ff:fa:8a:e1:61:ee:a3:fa:59:3c:69:08: db:88:ec:47:b1:49:c8:b8:90:ee:bc:c2:22:b6:7c:6f:69:b5: b8:23:26:41:ed:c3:72:2c:a0:0a:03:ea:e0:51:90:57:d5:e9: 3b:36:1c:e0:8e:89:08:3d:73:0c:f3:c9:41:0a:83:bd:f0:46: 13:37:c4:cf:71:78:ea:5f:7d:73:fb:c8:a8:1b:d7:67:f3:55: f4:f7:26:57:09:2b:98:a3:47:30:3b:7c:5f:4e:22:2a:85:88: 86:df:b0:97:89:93:6a:e8:b3:2b:c9:e5:a8:c3:f5:91:4d:2a: a7:fc:d8:ab:82:d8:3a:28:15:4f:f0:1d:54:48:bc:45:20:ed: 86:c7:e6:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjYwNDE2MTgyMjExWhcNMjYwNDIzMTgyMjExWjAYMRYwFAYD VQQDEw02OWUxMjhkMy1iY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kvwLqo6FC+XwVGOiRk2/9qEOhdBgC0w1W6hZ/kaA+f81LsoO6KZBRMZ5QIu QHIPuT83GPwBtWsYS2WzGf+vFN+yB4xqG4zg5QbQHbaOYdYkJ0KvZmuDDqaBJrCl 2s4UFFJ7WMwWHlTcqkCnmUvZM3Dw1lAwZdk73CWjcAdmilklh+o8514m8A2aPdZZ lEcCb9JnndWf3ASA1Ql9Y/Z4eMN9El2IuBxXmmEXAkeXB0YPCukLoWakN6vGiWt1 GhUmrPgFGDgRN78HuN8VnpEnZg9eQoVq02FFADiFyQic4wd8Du8KICjKWu7pkb6u 8hUvKtdL/xOYOH57adJgIKiznQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMVAuq9l RvUy2RrEKd1dBeANTkX/MB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIreXhQuJIoH/d/Bcoy+TWQN7Uh0q/6v6HKMylUu4jcMcpGtGgl4zeZn/4Wju IajZZbv5y4PRKXeq4zTD3rJVDz9vRJ34L58YeaajQFt3xj93+RQZ12J5J03hxNfr jt/9ZLk0wXqWEEBYvmhnZyhdZldB//qK4WHuo/pZPGkI24jsR7FJyLiQ7rzCIrZ8 b2m1uCMmQe3DciygCgPq4FGQV9XpOzYc4I6JCD1zDPPJQQqDvfBGEzfEz3F46l99 c/vIqBvXZ/NV9PcmVwkrmKNHMDt8X04iKoWIht+wl4mTauizK8nlqMP1kU0qp/zY q4LYOigVT/AdVEi8RSDthsfmmA== -----END CERTIFICATE-----Generated at Fri Apr 17 10:21:31 2026 by rpki-client