$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: oJMagguJ4XOVH1ZQQtNZIbIfgy3xUTIf/0JOlBK3E9M= Subject key identifier: E3:68:F6:4D:F1:F3:D1:0A:40:31:77:B5:F4:B0:BD:4A:23:26:27:E0 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01F8 Signing time: Wed 29 Apr 2026 03:45:41 +0000 Manifest this update: Wed 29 Apr 2026 03:45:40 +0000 Manifest next update: Wed 06 May 2026 03:45:40 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: dRJxSTC1es27V+LqlMmcVDgO90bZoLVz146RWGib5vY=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: M/VXx2BREvwNHgixBQpTJl5Ai6BjqeXEvNMr3p9U1X8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 03:45:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Apr 29 03:45:40 2026 GMT Not After : May 6 03:45:40 2026 GMT Subject: CN=69f17ee4-696d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c1:43:41:14:01:13:7d:6f:ef:7c:30:fa:83: 64:07:c8:f3:94:42:98:e5:88:98:f9:6c:a0:a6:3b: 40:6b:f9:77:de:53:16:c6:03:fb:70:f4:ff:b9:ef: ef:98:89:b9:8a:d0:24:1b:ca:ab:c3:32:cf:1b:87: 18:c0:fd:5f:ab:56:39:07:a0:d4:65:6b:04:2b:9d: 37:d3:0a:f0:67:61:32:17:8c:98:19:fb:0d:47:a1: 63:45:dc:6e:45:42:43:33:9f:9f:44:56:49:9f:98: 45:14:8d:4c:cb:8f:8b:a6:93:c1:86:d5:03:df:90: c7:82:b8:6b:40:a5:19:22:e1:aa:a1:cc:d9:b3:74: 11:97:fd:94:3c:d0:e2:b1:e6:af:ca:aa:e3:78:41: 98:ec:e2:90:8d:b8:fb:1f:52:11:d0:e1:56:5e:f3: 7d:4d:5c:41:49:ea:2a:06:7e:3c:92:bc:1e:89:45: 53:2a:93:d1:61:3f:94:6c:d7:21:29:e7:53:ea:ab: 9e:73:34:fc:4d:57:53:83:58:0a:73:40:3d:cf:35: 8e:6c:2d:2e:dc:1f:85:01:d4:b1:19:17:eb:34:9e: a1:2d:6d:0f:0c:65:b5:05:d2:fb:43:07:59:98:22: cf:07:86:76:10:cd:7f:37:0b:dd:50:1b:0f:f0:7f: ae:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:68:F6:4D:F1:F3:D1:0A:40:31:77:B5:F4:B0:BD:4A:23:26:27:E0 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:15:ec:ad:a4:4e:6f:c1:fe:f7:71:7a:ae:80:2c:bf:cb:a0: 77:30:31:16:bf:5c:15:93:85:12:b6:03:94:15:01:0d:4f:b3: 0f:d9:80:7d:3b:ac:05:71:4e:25:14:5c:e8:45:36:2a:57:a1: 22:67:9a:43:b9:00:69:bc:fd:6a:36:79:1e:0e:cd:3b:d6:af: 98:dc:32:52:61:10:de:d6:c4:0c:29:41:70:84:f8:6d:8f:e7: 23:a8:9f:09:d7:3f:4d:af:47:b9:5f:39:f4:35:9c:ac:20:d5: bf:cb:92:7b:ef:47:34:47:a5:2a:d0:8a:17:b6:45:9a:0a:b1: 57:0b:5c:b5:88:3c:fd:47:68:35:27:58:60:b7:5e:4d:bd:32: f3:8f:e2:11:0a:78:65:36:50:07:e3:7e:e9:88:22:85:99:75: 8c:0a:81:fb:0a:dc:ce:76:4b:71:54:79:98:68:63:c2:15:43: a0:8a:22:89:e6:6d:f8:55:7a:6d:c6:f3:51:6d:2d:02:ab:bd: 0d:76:04:f4:aa:80:fb:17:6c:de:32:55:ab:cd:28:c8:4b:6c: e7:d3:3c:c9:35:f0:07:80:00:6a:2a:b7:65:b8:f8:48:41:ab: 3e:63:c8:05:8e:9b:c1:3b:9a:8b:e6:b5:7f:47:09:18:b9:93: a3:33:e1:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjYwNDI5MDM0NTQwWhcNMjYwNTA2MDM0NTQwWjAYMRYwFAYD VQQDEw02OWYxN2VlNC02OTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMFDQRQBE31v73ww+oNkB8jzlEKY5YiY+WygpjtAa/l33lMWxgP7cPT/ue/v mIm5itAkG8qrwzLPG4cYwP1fq1Y5B6DUZWsEK5030wrwZ2EyF4yYGfsNR6FjRdxu RUJDM5+fRFZJn5hFFI1My4+LppPBhtUD35DHgrhrQKUZIuGqoczZs3QRl/2UPNDi seavyqrjeEGY7OKQjbj7H1IR0OFWXvN9TVxBSeoqBn48krweiUVTKpPRYT+UbNch KedT6queczT8TVdTg1gKc0A9zzWObC0u3B+FAdSxGRfrNJ6hLW0PDGW1BdL7QwdZ mCLPB4Z2EM1/NwvdUBsP8H+uawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONo9k3x 89EKQDF3tfSwvUojJifgMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAURXsraROb8H+93F6roAsv8ugdzAxFr9cFZOFErYDlBUBDU+zD9mAfTusBXFO JRRc6EU2KlehImeaQ7kAabz9ajZ5Hg7NO9avmNwyUmEQ3tbEDClBcIT4bY/nI6if Cdc/Ta9HuV859DWcrCDVv8uSe+9HNEelKtCKF7ZFmgqxVwtctYg8/UdoNSdYYLde Tb0y84/iEQp4ZTZQB+N+6YgihZl1jAqB+wrcznZLcVR5mGhjwhVDoIoiieZt+FV6 bcbzUW0tAqu9DXYE9KqA+xds3jJVq80oyEts59M8yTXwB4AAaiq3Zbj4SEGrPmPI BY6bwTuai+a1f0cJGLmTozPhNw== -----END CERTIFICATE-----Generated at Wed Apr 29 16:59:48 2026 by rpki-client