$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: dsqDCzygHcSKPOdDsKPOQOFNWqWCHJpKR7JV0ZoSwEg= Subject key identifier: 70:1B:4C:28:12:30:48:8F:CF:38:2A:0F:62:2E:66:05:8F:8B:E4:DE Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 15EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 15DE Signing time: Thu 16 Apr 2026 16:40:18 +0000 Manifest this update: Thu 16 Apr 2026 16:40:17 +0000 Manifest next update: Thu 23 Apr 2026 16:40:17 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: 5t5pom1IIlyLuii2vE5gXXIe/+BnLV3ZOeKR7DAjG+w=) 2: 13EB2806503611F0AE9ACE86C4F9AE02.roa (hash: 37MFTRtj6HppQxCoUEgCfAZAr1h1fh41jvtDr9mnmBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5611 (0x15eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233, serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: Apr 16 16:40:17 2026 GMT Not After : Apr 23 16:40:17 2026 GMT Subject: CN=69e110f1-95f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0f:f7:53:8a:aa:01:4f:f9:6f:64:c3:0e:9f: c8:5b:08:9c:80:36:84:74:38:c1:f0:3b:5a:79:29: 60:6f:a9:cb:6b:1d:67:da:f6:6b:18:04:b7:de:ec: 61:1d:7a:55:1e:f2:6f:20:35:66:f9:ef:22:14:ef: 43:74:10:91:00:e2:af:08:38:ad:46:d0:1e:4d:77: e2:05:99:e4:05:8a:c3:95:68:c6:51:12:28:d6:77: 9b:c0:21:18:f1:39:25:30:0f:5b:ca:6a:c5:ee:79: 5c:0b:bb:5d:cd:85:b6:4a:12:8a:47:38:56:a8:ee: 5a:cb:66:0d:0c:7d:72:85:53:35:86:89:0f:11:28: 23:25:58:88:16:06:65:73:ce:bb:7f:d3:8c:a1:49: ef:ab:0d:07:14:6c:3b:15:e1:3c:0d:53:11:87:3a: 57:73:6f:a8:13:55:9b:69:ab:eb:fa:a8:83:1d:f2: b2:2d:ee:62:a1:fd:fe:cd:94:09:45:30:8b:48:04: e5:bd:b1:29:6a:f3:5f:d3:91:5b:b5:b0:6a:60:92: 6d:bc:d8:01:d4:41:01:e4:01:7b:dc:7c:55:6c:0b: c6:9b:78:a6:4f:26:ff:32:e1:88:67:26:0e:72:cf: f7:0b:7c:2d:8d:13:4d:74:79:c3:82:5e:8f:10:a9: 18:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:1B:4C:28:12:30:48:8F:CF:38:2A:0F:62:2E:66:05:8F:8B:E4:DE X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:a5:79:b4:8f:26:05:5e:6c:08:c4:74:54:9b:b5:fa:33:fc: a2:c4:f8:ec:44:d3:4c:8c:b7:e7:1b:de:60:36:2c:87:ae:ba: cb:2d:f8:b0:88:64:34:88:b0:6c:33:95:83:30:35:04:0b:5e: 61:46:1d:17:c9:1f:92:1e:39:11:f0:fd:d0:f4:22:2a:25:55: 02:10:c2:e4:ec:e0:f0:03:d0:ad:bd:33:55:d8:9f:6e:f6:4e: ab:c6:65:de:59:ea:41:a1:3a:24:29:5a:28:81:a3:78:67:24: 2f:e0:20:58:70:72:96:7e:95:f6:49:92:05:0b:9d:61:8c:9b: ba:8f:05:52:d6:33:8c:8f:15:83:b6:ab:29:d3:52:55:40:af: f9:d0:97:36:eb:ef:a2:9e:92:e3:08:61:e4:50:7b:0a:3f:86: 40:fa:7e:64:6f:22:91:d0:0b:25:91:c1:3e:85:f4:75:82:01: 8f:d5:14:34:e8:b5:0a:a7:18:fe:88:25:ec:d8:d1:24:cf:d0: 36:e3:9b:cb:b2:c3:b1:34:a0:72:22:3a:f3:9d:6c:dc:0f:02: bd:63:00:1c:16:87:34:f8:19:2f:e2:af:0d:d7:59:1c:c3:8d: 26:7b:99:c7:18:e0:a7:12:cf:ca:3f:50:3c:22:0d:e5:d2:13: 84:bd:76:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjYwNDE2MTY0MDE3WhcNMjYwNDIzMTY0MDE3WjAYMRYwFAYD VQQDEw02OWUxMTBmMS05NWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArw/3U4qqAU/5b2TDDp/IWwicgDaEdDjB8DtaeSlgb6nLax1n2vZrGAS33uxh HXpVHvJvIDVm+e8iFO9DdBCRAOKvCDitRtAeTXfiBZnkBYrDlWjGURIo1nebwCEY 8TklMA9bymrF7nlcC7tdzYW2ShKKRzhWqO5ay2YNDH1yhVM1hokPESgjJViIFgZl c867f9OMoUnvqw0HFGw7FeE8DVMRhzpXc2+oE1Wbaavr+qiDHfKyLe5iof3+zZQJ RTCLSATlvbEpavNf05FbtbBqYJJtvNgB1EEB5AF73HxVbAvGm3imTyb/MuGIZyYO cs/3C3wtjRNNdHnDgl6PEKkYcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHAbTCgS MEiPzzgqD2IuZgWPi+TeMB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqaV5tI8mBV5sCMR0VJu1+jP8osT47ETTTIy35xveYDYsh666yy34sIhkNIiw bDOVgzA1BAteYUYdF8kfkh45EfD90PQiKiVVAhDC5Ozg8APQrb0zVdifbvZOq8Zl 3lnqQaE6JClaKIGjeGckL+AgWHByln6V9kmSBQudYYybuo8FUtYzjI8Vg7arKdNS VUCv+dCXNuvvop6S4whh5FB7Cj+GQPp+ZG8ikdALJZHBPoX0dYIBj9UUNOi1CqcY /ogl7NjRJM/QNuOby7LDsTSgciI6851s3A8CvWMAHBaHNPgZL+KvDddZHMONJnuZ xxjgpxLPyj9QPCIN5dIThL12tQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:23:57 2026 by rpki-client