$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft File: kNimlscsPFwGLY8AJhBf_c0Bz40.mft (raw, json) Hash identifier: Pfrk6usp7sXB1jwlKq5PvxjSxYi0UO+Fx4mKpZcZzo4= Subject key identifier: 2B:D7:FE:EC:07:43:9E:63:BA:B4:23:54:C4:BC:31:43:6C:BA:D4:2A Authority key identifier: 90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D Certificate issuer: /CN=A9192C28/serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Certificate serial: 04C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft Manifest number: 04BE Signing time: Thu 16 Apr 2026 23:48:35 +0000 Manifest this update: Thu 16 Apr 2026 23:48:34 +0000 Manifest next update: Thu 23 Apr 2026 23:48:34 +0000 Files and hashes: 1: kNimlscsPFwGLY8AJhBf_c0Bz40.crl (hash: /TFOlrfrZKwst4gghmgzDckeKpt3BML0pQ5G6ZvBONM=) 2: 28741DDC85CD11ECA5E28171C4F9AE02.roa (hash: aMf5ZQEPQtwObqmvJT5ItKQeDQ+Q+Lo8Gpi2rkRE0lI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1225 (0x4c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C28, serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Validity Not Before: Apr 16 23:48:34 2026 GMT Not After : Apr 23 23:48:34 2026 GMT Subject: CN=69e17553-8e0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e0:94:d2:9a:30:da:9a:67:7f:63:6e:02:37: 04:f6:62:40:9c:9f:27:f5:a5:f2:79:f5:84:c3:b8: 04:d0:69:30:00:3f:bd:c1:8f:90:23:d0:fe:73:82: 32:36:83:a5:1f:7c:0b:56:f8:c1:06:5f:b5:63:7b: 3f:b2:0f:fe:e5:91:63:d8:0a:ac:f6:9c:be:16:d6: ed:b2:93:05:ca:68:22:24:4a:25:e8:c9:2b:bd:29: 60:4c:2d:9d:bc:f8:58:ad:29:fa:1e:38:b3:28:75: 00:6e:fe:00:13:a0:22:9e:bf:52:c6:a9:fa:82:61: d2:22:18:8d:e1:4f:41:60:cb:8d:f7:8e:61:f5:43: 6f:8b:fd:e6:d1:7a:23:2f:e2:79:18:fb:d0:b0:90: a8:ef:bb:d5:b2:cf:51:be:66:d4:e7:ab:06:b6:e0: 41:2d:57:5b:96:9c:8f:ed:38:34:a7:88:23:ca:70: fd:c6:cc:74:a2:c7:01:b0:b7:ca:9f:b1:32:a8:25: fd:f8:40:5c:f4:22:c2:36:72:d4:ac:c8:bb:8b:6e: 46:68:1f:6b:c0:43:d9:bd:3a:63:ac:5d:df:b1:58: 99:ef:90:c7:4f:78:d4:d0:74:c9:d6:9a:3f:49:94: 60:d9:e7:56:65:bb:cf:81:76:ef:a1:cf:0f:e8:8f: 63:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D7:FE:EC:07:43:9E:63:BA:B4:23:54:C4:BC:31:43:6C:BA:D4:2A X509v3 Authority Key Identifier: keyid:90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:86:47:7e:c4:28:22:88:c1:c6:2d:05:4c:96:ff:95:63:11: 7c:47:bc:fc:a4:d1:57:b9:79:ed:b7:aa:95:05:1c:92:2e:0a: 2f:a2:42:64:8d:d6:d2:48:c6:be:dd:54:d7:01:0d:af:52:44: bc:56:e9:b1:54:47:b2:96:c9:91:9b:e3:d3:5f:9b:5a:f7:38: fa:a7:e2:88:69:a1:0e:04:51:d5:da:ac:af:90:1e:d1:cd:d8: 2e:db:9c:2d:85:35:a0:f5:de:de:b9:ef:71:aa:5e:18:b2:bf: d5:8e:67:6c:34:b0:db:4e:d8:87:d6:8c:08:3d:16:aa:65:7a: 82:79:3f:88:eb:b7:75:cf:2c:b7:83:30:b2:4f:6a:38:21:b1: 4a:2b:ba:8c:04:31:71:7e:c9:3a:4a:ef:3a:d1:5f:df:5a:98: a7:a6:e5:75:11:81:76:cc:e0:5d:e6:d0:79:27:84:d6:37:50: c2:7a:67:5f:50:1b:a6:29:f0:b9:63:1d:22:b5:6a:29:69:8a: b5:cd:cf:c6:4f:b9:fa:37:77:f0:46:54:b2:1b:e9:d6:ec:8e: 53:c4:9a:5c:88:fd:25:02:88:ca:ec:13:68:70:64:97:47:55: 31:fe:76:bf:3d:4d:82:af:4b:8b:9f:a1:1c:18:a9:57:bc:cd: 87:3c:50:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMjgxMTAvBgNVBAUTKDkwRDhBNjk2QzcyQzNDNUMwNjJEOEYwMDI2MTA1RkZE Q0QwMUNGOEQwHhcNMjYwNDE2MjM0ODM0WhcNMjYwNDIzMjM0ODM0WjAYMRYwFAYD VQQDEw02OWUxNzU1My04ZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOCU0pow2ppnf2NuAjcE9mJAnJ8n9aXyefWEw7gE0GkwAD+9wY+QI9D+c4Iy NoOlH3wLVvjBBl+1Y3s/sg/+5ZFj2Aqs9py+FtbtspMFymgiJEol6MkrvSlgTC2d vPhYrSn6HjizKHUAbv4AE6Ainr9Sxqn6gmHSIhiN4U9BYMuN945h9UNvi/3m0Xoj L+J5GPvQsJCo77vVss9RvmbU56sGtuBBLVdblpyP7Tg0p4gjynD9xsx0oscBsLfK n7EyqCX9+EBc9CLCNnLUrMi7i25GaB9rwEPZvTpjrF3fsViZ75DHT3jU0HTJ1po/ SZRg2edWZbvPgXbvoc8P6I9jeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCvX/uwH Q55jurQjVMS8MUNsutQqMB8GA1UdIwQYMBaAFJDYppbHLDxcBi2PACYQX/3NAc+N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMyOC8zQTAxNjQ3NjZE NTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BGd0dMWThBSmhCZl9jMEJ6 NDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOaW1sc2NzUEZ3R0xZOEFKaEJmX2MwQno0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkMyOC8zQTAxNjQ3NjZENTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BG d0dMWThBSmhCZl9jMEJ6NDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVYZHfsQoIojBxi0FTJb/lWMRfEe8/KTRV7l57beqlQUcki4KL6JCZI3W0kjG vt1U1wENr1JEvFbpsVRHspbJkZvj01+bWvc4+qfiiGmhDgRR1dqsr5Ae0c3YLtuc LYU1oPXe3rnvcapeGLK/1Y5nbDSw207Yh9aMCD0WqmV6gnk/iOu3dc8st4Mwsk9q OCGxSiu6jAQxcX7JOkrvOtFf31qYp6bldRGBdszgXebQeSeE1jdQwnpnX1Abpinw uWMdIrVqKWmKtc3Pxk+5+jd38EZUshvp1uyOU8SaXIj9JQKIyuwTaHBkl0dVMf52 vz1Ngq9Li5+hHBipV7zNhzxQAw== -----END CERTIFICATE-----Generated at Fri Apr 17 10:06:38 2026 by rpki-client