$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: fFsetl+3/v5XpUVWvudkY+OMKuc6Sebn7/iw9r5pCzw= Subject key identifier: DB:FA:71:F2:7D:52:02:9D:73:C9:A5:7D:91:2F:20:9A:31:55:8C:02 Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 028B Signing time: Thu 21 May 2026 01:48:53 +0000 Manifest this update: Thu 21 May 2026 01:48:53 +0000 Manifest next update: Thu 28 May 2026 01:48:53 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: XFTxArA/dtjsk4Ipk51E151ugS6LytNosVzAGF42FF0=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: LdRxke1Bck5JxIBRCGjM9TpaCqk+l96r/JCtzyDPs+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: May 21 01:48:53 2026 GMT Not After : May 28 01:48:53 2026 GMT Subject: CN=6a0e6485-760d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:96:35:ed:51:38:b4:6d:cf:ba:c9:2a:1f:97: 12:6c:36:dd:5a:75:f4:12:9b:50:b2:73:a2:0a:ac: 24:d9:6d:52:07:b9:d2:7d:95:7f:12:90:df:96:a1: 97:2c:c0:27:ce:39:f2:e2:a8:ed:82:3f:bb:b6:2e: 47:79:cd:5c:43:a6:0a:72:57:47:79:78:29:74:21: ba:ea:82:28:20:d3:cc:58:6b:00:d9:e5:d5:dd:8f: bd:5d:81:fa:d3:ef:26:f9:93:b4:1e:9a:41:95:78: 54:f4:7d:4e:fa:15:50:9b:52:4f:1c:ab:0b:82:90: 39:26:07:be:22:b0:cc:20:68:ea:36:51:6b:a4:b1: 17:f8:22:0e:62:97:d8:b0:d1:ac:eb:c5:2c:57:6f: 46:d0:2f:61:0c:fd:55:3f:56:31:e7:cb:38:0b:22: bd:ad:c7:48:a0:9b:ab:20:53:c0:a9:b9:06:65:3a: 0f:e8:a2:e2:77:ba:14:2d:e7:5d:50:33:e0:6f:03: 26:63:46:3d:c0:9e:60:3e:98:02:56:07:aa:23:5c: df:6c:8a:ec:34:53:fe:1b:b8:fe:e1:36:af:70:8c: 68:8e:6a:6e:6b:a2:d7:7c:07:e3:56:48:58:0e:69: 46:b8:0c:38:1b:b3:eb:d5:70:44:88:4a:8d:98:5f: 02:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FA:71:F2:7D:52:02:9D:73:C9:A5:7D:91:2F:20:9A:31:55:8C:02 X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:4a:23:66:55:af:c4:3a:36:57:9c:9d:b1:cb:10:f1:29:15: ed:3f:d1:44:30:8e:7b:ad:10:2d:be:d4:39:74:ea:1e:3a:f2: e0:8a:de:7e:f5:06:69:da:a1:35:92:c3:5c:a6:a8:df:fd:cc: 8b:bd:4e:7b:49:cf:c0:49:be:95:69:fa:cd:48:e2:ec:de:55: 6d:ce:67:99:2c:5f:d5:f3:51:f3:ed:66:1a:d0:82:32:fd:e4: 68:7d:34:a2:44:94:2c:9b:92:15:3a:96:8d:7a:3d:c8:cc:63: 06:7b:08:35:24:4d:d6:ef:74:c1:f6:04:e2:dc:d7:21:0f:89: c7:e1:6b:f8:c8:d8:4c:a4:29:b3:0b:6f:7b:4c:da:42:c7:85: 35:f2:fd:e8:dc:3a:c4:b5:c9:9c:0d:5f:68:85:c4:a2:c8:f8: f2:6d:0c:b3:30:20:f6:d6:c2:43:22:c3:2a:ca:84:9e:e4:9c: fb:7e:23:13:86:85:4f:07:ae:3e:32:f7:4b:2b:fc:e2:d9:20: 93:a8:37:30:0f:b9:02:a2:33:84:b6:d6:dd:38:38:c1:a5:f0: 69:d5:d4:41:41:2b:cf:5c:24:5d:63:45:00:8d:41:72:18:21: d7:5e:d2:0e:db:8a:8c:a6:e4:5e:29:11:c2:93:27:b4:e6:0d: 65:ef:98:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjYwNTIxMDE0ODUzWhcNMjYwNTI4MDE0ODUzWjAYMRYwFAYD VQQDEw02YTBlNjQ4NS03NjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpY17VE4tG3PuskqH5cSbDbdWnX0EptQsnOiCqwk2W1SB7nSfZV/EpDflqGX LMAnzjny4qjtgj+7ti5Hec1cQ6YKcldHeXgpdCG66oIoINPMWGsA2eXV3Y+9XYH6 0+8m+ZO0HppBlXhU9H1O+hVQm1JPHKsLgpA5Jge+IrDMIGjqNlFrpLEX+CIOYpfY sNGs68UsV29G0C9hDP1VP1Yx58s4CyK9rcdIoJurIFPAqbkGZToP6KLid7oULedd UDPgbwMmY0Y9wJ5gPpgCVgeqI1zfbIrsNFP+G7j+4TavcIxojmpua6LXfAfjVkhY DmlGuAw4G7Pr1XBEiEqNmF8C+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNv6cfJ9 UgKdc8mlfZEvIJoxVYwCMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlUojZlWvxDo2V5ydscsQ8SkV7T/RRDCOe60QLb7UOXTqHjry4IrefvUGadqh NZLDXKao3/3Mi71Oe0nPwEm+lWn6zUji7N5Vbc5nmSxf1fNR8+1mGtCCMv3kaH00 okSULJuSFTqWjXo9yMxjBnsINSRN1u90wfYE4tzXIQ+Jx+Fr+MjYTKQpswtve0za QseFNfL96Nw6xLXJnA1faIXEosj48m0MszAg9tbCQyLDKsqEnuSc+34jE4aFTweu PjL3Syv84tkgk6g3MA+5AqIzhLbW3Tg4waXwadXUQUErz1wkXWNFAI1Bchgh117S DtuKjKbkXikRwpMntOYNZe+Y1Q== -----END CERTIFICATE-----Generated at Thu May 21 09:38:31 2026 by rpki-client