$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: tptzcNezSJFh4mL+J+Jb5Q0kIqTsbP0mRVwC4FcuZG8= Subject key identifier: 5A:10:27:A1:4A:34:90:34:7C:05:D0:B1:B4:B8:7E:F3:0F:9B:24:62 Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 027A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 0274 Signing time: Sun 05 Apr 2026 01:32:26 +0000 Manifest this update: Sun 05 Apr 2026 01:32:26 +0000 Manifest next update: Sun 12 Apr 2026 01:32:26 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: 4399wSLY9xTYjzb+wobSV0uhNkGC1y6OMRj9AHGbgLM=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: LdRxke1Bck5JxIBRCGjM9TpaCqk+l96r/JCtzyDPs+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Apr 5 01:32:26 2026 GMT Not After : Apr 12 01:32:26 2026 GMT Subject: CN=69d1bbaa-2300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:25:34:ce:22:86:f3:28:1e:74:8d:91:75:ab: a1:eb:f4:72:cd:d0:db:f1:f3:77:d0:c2:59:c1:08: 55:e4:95:95:c4:a3:7f:b5:05:cb:7c:ca:92:9e:3c: 24:27:96:ec:0f:af:45:61:17:6c:11:1c:a2:b9:bc: 95:8e:64:cc:f1:14:81:10:28:25:45:39:2a:24:54: 30:15:18:17:0e:f7:c7:68:cf:4c:e0:58:3c:93:d6: 12:88:d5:77:a9:29:26:45:55:12:2f:dc:7f:c0:42: b1:46:de:81:39:fe:1f:d4:22:bc:a8:ab:c4:93:59: b2:08:c3:2d:86:ba:d1:4a:a7:e9:c1:54:94:3b:d1: 7d:c2:73:93:d8:b3:b1:5a:73:67:d4:c8:9e:53:6b: be:3a:bd:24:22:ac:11:9d:d0:9a:3f:97:5c:a7:d3: c7:31:4f:1c:48:63:76:0b:e3:4f:35:b2:65:42:af: 74:82:93:67:4c:33:7c:b9:a5:48:d5:3d:1a:0d:e2: 55:97:b3:54:ee:b2:75:f4:90:52:89:c3:c2:e1:fb: 69:f4:67:f0:35:f6:3c:79:23:46:58:40:22:1e:92: 4c:f4:fc:bf:08:da:9e:a3:71:54:c7:38:4d:00:2d: 17:e7:7f:f7:58:9c:41:33:44:31:58:e7:81:7d:f9: 2f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:10:27:A1:4A:34:90:34:7C:05:D0:B1:B4:B8:7E:F3:0F:9B:24:62 X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:3e:29:fa:6e:dd:52:66:7b:9a:ab:45:88:92:9b:cf:b8:ca: c4:0f:8b:a3:94:2e:73:04:83:27:8d:51:56:e3:0a:19:91:04: 6a:f9:0f:d4:e7:09:82:fc:ad:f0:56:d7:15:32:de:8a:ee:ec: 89:df:24:2e:4e:22:cd:71:68:18:c5:b1:26:10:a8:63:79:db: 09:0d:25:8b:2f:0c:ec:f6:d7:33:89:a3:83:2c:74:b5:3a:06: 11:cd:c7:e1:0b:01:0b:3c:cc:bc:85:72:d8:24:90:87:cc:01: 96:36:46:19:bc:d0:ee:d3:74:9b:a7:78:e2:fa:d4:ab:ac:f4: 47:f4:77:6c:9f:bd:ea:9f:ef:c6:cc:6a:b1:f1:37:aa:2c:cd: 1c:3f:83:f5:17:c6:a3:fe:1e:ac:37:fd:21:ee:e3:fa:e6:17: 94:57:d1:cf:2f:d9:9c:4f:ee:eb:c2:b5:be:61:a8:af:f1:ff: 9b:4a:24:d7:54:d7:f8:0f:2a:de:95:94:72:9c:89:f3:ad:33: 44:6a:51:1a:7a:9e:c1:2f:be:6d:91:49:8e:6f:85:a3:30:0b: 9a:4a:9d:27:ca:4a:88:a9:ba:06:88:57:d4:b4:79:2e:06:46: b3:cf:eb:23:ee:0a:64:bb:c0:97:35:25:0d:8d:28:d3:14:ba: 36:bd:62:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjYwNDA1MDEzMjI2WhcNMjYwNDEyMDEzMjI2WjAYMRYwFAYD VQQDEw02OWQxYmJhYS0yMzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiU0ziKG8ygedI2Rdauh6/RyzdDb8fN30MJZwQhV5JWVxKN/tQXLfMqSnjwk J5bsD69FYRdsERyiubyVjmTM8RSBECglRTkqJFQwFRgXDvfHaM9M4Fg8k9YSiNV3 qSkmRVUSL9x/wEKxRt6BOf4f1CK8qKvEk1myCMMthrrRSqfpwVSUO9F9wnOT2LOx WnNn1MieU2u+Or0kIqwRndCaP5dcp9PHMU8cSGN2C+NPNbJlQq90gpNnTDN8uaVI 1T0aDeJVl7NU7rJ19JBSicPC4ftp9GfwNfY8eSNGWEAiHpJM9Py/CNqeo3FUxzhN AC0X53/3WJxBM0QxWOeBffkvzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFoQJ6FK NJA0fAXQsbS4fvMPmyRiMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiD4p+m7dUmZ7mqtFiJKbz7jKxA+Lo5QucwSDJ41RVuMKGZEEavkP1OcJgvyt 8FbXFTLeiu7sid8kLk4izXFoGMWxJhCoY3nbCQ0liy8M7PbXM4mjgyx0tToGEc3H 4QsBCzzMvIVy2CSQh8wBljZGGbzQ7tN0m6d44vrUq6z0R/R3bJ+96p/vxsxqsfE3 qizNHD+D9RfGo/4erDf9Ie7j+uYXlFfRzy/ZnE/u68K1vmGor/H/m0ok11TX+A8q 3pWUcpyJ860zRGpRGnqewS++bZFJjm+FozALmkqdJ8pKiKm6BohX1LR5LgZGs8/r I+4KZLvAlzUlDY0o0xS6Nr1ilQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:46 2026 by rpki-client