$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: 14vSJmjr1wzfeW9zvj+tViOW/XANh3A9HLa0oFhDI24= Subject key identifier: E0:19:4C:CD:04:7B:63:73:61:52:60:BC:E3:7C:49:E8:6C:6F:5A:13 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 0A39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 0A2D Signing time: Thu 16 Apr 2026 19:41:04 +0000 Manifest this update: Thu 16 Apr 2026 19:41:03 +0000 Manifest next update: Thu 23 Apr 2026 19:41:03 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: nKdPdgxrq9fiNZReuB6IEXcFBc+wEPmz8EJ23QiNdLA=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: Lmz5u1XQZ5pr8gx+0xG0dq5xcsKIBrpCQ17vf78quGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2617 (0xa39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Apr 16 19:41:03 2026 GMT Not After : Apr 23 19:41:03 2026 GMT Subject: CN=69e13b50-36c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:68:27:ea:08:4c:1a:4a:79:4e:95:fd:40:51: ad:71:8b:14:df:0c:8d:9c:59:81:93:c8:a6:20:22: 71:27:db:55:ab:e9:d6:42:c2:0e:d8:01:ed:d9:c7: ba:ba:07:03:36:0b:1c:c1:37:f5:1e:48:88:16:e5: be:ed:5a:9d:63:1c:64:71:e8:53:13:b4:3f:2e:50: 55:13:77:2e:39:f8:1f:41:8c:14:2f:64:45:e3:ce: 58:4f:a8:4f:13:e3:76:d4:55:88:56:1c:2f:71:08: d0:31:c6:06:1b:d8:28:7e:c6:09:de:22:cb:fe:d8: e3:94:f7:d3:79:c8:4a:91:d3:c1:c2:93:e6:0d:26: bc:86:a6:ea:32:07:56:2e:ce:c5:be:93:7b:42:ce: 2b:f1:7a:6c:2c:50:69:0b:5f:29:81:16:55:9d:58: 9d:92:1e:2f:97:d1:d6:26:7c:51:8f:42:d3:e1:a5: d6:70:b3:f6:c4:e5:e3:ec:e2:61:7b:a4:6c:8d:f3: 5c:6c:19:8a:3c:2b:62:07:f2:e4:34:ab:ff:d4:f2: 88:ad:ba:d0:e7:fe:3d:b8:74:aa:54:3c:36:8e:d4: 36:d5:69:c5:e6:0e:7c:1d:54:29:8f:01:4f:d3:51: 42:43:8f:e7:13:62:bd:e1:ed:35:5c:f7:81:3a:d1: 25:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:19:4C:CD:04:7B:63:73:61:52:60:BC:E3:7C:49:E8:6C:6F:5A:13 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:bb:03:fb:36:45:8e:9a:bb:85:7c:23:ea:bf:cb:d8:76:bb: 08:82:29:9b:8e:4f:1d:1c:19:1d:52:1a:04:d1:01:87:d5:ff: 0c:42:db:15:a1:ba:df:92:67:69:4d:64:be:33:00:7d:0e:e3: 43:5d:fe:dd:69:89:26:e2:fb:f3:6e:15:e7:ba:64:08:ef:09: f1:fe:69:96:01:cc:52:6a:12:42:02:21:1b:31:4c:c6:20:90: c7:1c:48:a8:5b:7f:55:6f:71:6c:05:7b:a0:73:e9:f1:d2:6e: e6:4e:cc:bc:68:03:80:21:b2:03:a7:60:ca:ca:3c:30:fb:34: 02:d3:22:cf:18:c9:cd:c9:e1:c6:d4:70:81:7a:82:21:52:7b: e5:cd:bc:b2:0b:42:78:1c:be:04:dc:86:db:13:a2:f5:88:55: b2:e1:5a:e9:c5:30:a4:6d:e9:f0:15:47:61:45:dd:9f:73:84: 78:2d:d0:da:30:ad:31:9f:f4:4b:fc:3d:2f:e0:cc:5a:ad:4e: 3d:78:15:d1:d0:2e:26:d3:3b:42:9b:51:71:41:4d:c2:bd:56: 04:c7:3f:63:63:fe:5e:ed:d5:80:c0:cb:7c:9d:f1:a2:83:96: f3:13:2d:71:f7:57:f6:1c:db:2e:0a:41:ea:55:e7:7f:55:80: 58:e0:8c:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjYwNDE2MTk0MTAzWhcNMjYwNDIzMTk0MTAzWjAYMRYwFAYD VQQDEw02OWUxM2I1MC0zNmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2gn6ghMGkp5TpX9QFGtcYsU3wyNnFmBk8imICJxJ9tVq+nWQsIO2AHt2ce6 ugcDNgscwTf1HkiIFuW+7VqdYxxkcehTE7Q/LlBVE3cuOfgfQYwUL2RF485YT6hP E+N21FWIVhwvcQjQMcYGG9gofsYJ3iLL/tjjlPfTechKkdPBwpPmDSa8hqbqMgdW Ls7FvpN7Qs4r8XpsLFBpC18pgRZVnVidkh4vl9HWJnxRj0LT4aXWcLP2xOXj7OJh e6RsjfNcbBmKPCtiB/LkNKv/1PKIrbrQ5/49uHSqVDw2jtQ21WnF5g58HVQpjwFP 01FCQ4/nE2K94e01XPeBOtElYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOAZTM0E e2NzYVJgvON8Sehsb1oTMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW7sD+zZFjpq7hXwj6r/L2Ha7CIIpm45PHRwZHVIaBNEBh9X/DELbFaG635Jn aU1kvjMAfQ7jQ13+3WmJJuL7824V57pkCO8J8f5plgHMUmoSQgIhGzFMxiCQxxxI qFt/VW9xbAV7oHPp8dJu5k7MvGgDgCGyA6dgyso8MPs0AtMizxjJzcnhxtRwgXqC IVJ75c28sgtCeBy+BNyG2xOi9YhVsuFa6cUwpG3p8BVHYUXdn3OEeC3Q2jCtMZ/0 S/w9L+DMWq1OPXgV0dAuJtM7QptRcUFNwr1WBMc/Y2P+Xu3VgMDLfJ3xooOW8xMt cfdX9hzbLgpB6lXnf1WAWOCMZg== -----END CERTIFICATE-----Generated at Fri Apr 17 16:55:25 2026 by rpki-client