$ rpki-client -vvf rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft File: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft (raw, json) Hash identifier: bLTXuRteHKIQbQsd2fo0COQ8fp3kwSjgU4UnjOrOJSQ= Subject key identifier: 41:D6:DA:AB:93:34:FD:1D:F7:76:A4:D2:7E:04:53:64:4D:88:88:5E Authority key identifier: E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 Certificate issuer: /CN=A918D96C/serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Certificate serial: 3529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft Manifest number: 3529 Signing time: Sat 04 Apr 2026 14:49:34 +0000 Manifest this update: Sat 04 Apr 2026 14:49:33 +0000 Manifest next update: Sat 11 Apr 2026 14:49:33 +0000 Files and hashes: 1: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl (hash: wbC4gG/N2in8bdN5W9Fcsn/XNpGcQCIiDrtbNk6fNec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13609 (0x3529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D96C, serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Validity Not Before: Apr 4 14:49:33 2026 GMT Not After : Apr 11 14:49:33 2026 GMT Subject: CN=69d124fe-8f1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c1:f7:89:e8:2f:a2:ab:50:32:f3:bf:c3:15: ee:4c:22:c9:8c:78:75:8c:16:89:d0:1c:3d:a6:f4: 28:06:47:29:88:57:49:af:3a:78:7e:6a:56:72:d9: a7:41:35:b7:64:6e:9a:54:73:21:dc:5e:76:32:1f: 87:9f:83:68:14:e7:5d:9e:90:0e:aa:f5:cf:21:9e: 9e:94:56:ae:92:f0:1a:2e:80:23:59:4a:8a:5f:85: 5c:ae:52:26:e0:9d:74:66:62:4d:45:a5:f6:a1:8e: a5:44:37:37:7c:8d:f7:0d:eb:c3:29:5e:e4:23:d6: 9c:2c:78:18:0f:1d:d1:cf:d8:e8:ad:aa:43:ff:29: ce:78:81:81:d2:29:6f:87:96:8c:8f:bb:9d:9d:63: 96:fa:22:04:80:c7:75:e8:e6:44:7f:f4:9a:40:b7: 3c:16:0b:a2:10:24:1f:63:1a:86:4a:93:03:90:06: 03:90:ae:7f:6a:b8:56:8e:2b:c6:c6:f9:58:be:8c: 03:b9:38:c1:c6:4e:f9:0f:48:20:87:40:f7:0c:15: 57:8b:62:b2:06:a3:10:c9:94:97:ce:80:f3:80:90: 77:5e:7d:c7:46:1a:d0:c1:2c:a5:b9:97:c8:16:ec: 88:d5:0a:d7:8e:96:04:fd:22:c3:b0:6b:b4:9c:2c: f2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D6:DA:AB:93:34:FD:1D:F7:76:A4:D2:7E:04:53:64:4D:88:88:5E X509v3 Authority Key Identifier: keyid:E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:86:8e:f7:bd:95:bd:75:a6:1c:e5:f5:32:4c:d2:91:3c:a6: 5c:11:b0:c9:20:f3:ea:e4:11:69:b8:86:80:d2:8c:8d:6a:f7: 76:c9:bd:70:e3:b6:a1:e6:0e:f9:ad:8b:f6:53:4c:f5:9f:d3: 70:61:c7:98:2d:7b:d9:ed:e9:60:c5:31:01:50:39:1f:ce:de: 2c:ca:69:c9:d6:9b:49:a1:75:72:06:90:81:74:f1:9d:1d:d8: 46:65:c4:c3:14:f3:2d:ee:d6:44:e1:80:0a:3d:ac:24:5a:8a: 40:a6:27:c6:f1:a2:10:28:74:aa:65:72:9d:d2:94:3f:b3:fd: 73:66:d2:22:6d:22:c5:a7:f5:c9:cf:e0:05:41:25:13:b2:38: 8b:2d:55:8d:be:12:bf:47:ff:9e:e9:97:b1:a8:a0:d5:11:74: 1a:ed:1d:b7:0c:f1:8a:92:35:89:10:7f:14:ec:0a:88:51:c6: 60:59:0d:5a:ba:39:29:20:78:3a:43:67:4c:4c:a8:62:ff:22: af:da:72:2a:ee:e9:20:60:2a:f8:34:54:b8:38:e3:55:1f:c9: a5:7a:ad:8a:70:f5:48:99:e1:ef:a3:be:92:85:f2:6b:c5:3b: b3:d2:ff:39:1f:02:fd:38:35:96:45:ba:03:ca:03:98:82:46: 19:fd:ac:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5NkMxMTAvBgNVBAUTKEUwOEQ2QzdGRTM1RkUzNjY0MkZFNkY2NkNDREEyODY2 QTY2MjQyRjEwHhcNMjYwNDA0MTQ0OTMzWhcNMjYwNDExMTQ0OTMzWjAYMRYwFAYD VQQDEw02OWQxMjRmZS04ZjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48H3iegvoqtQMvO/wxXuTCLJjHh1jBaJ0Bw9pvQoBkcpiFdJrzp4fmpWctmn QTW3ZG6aVHMh3F52Mh+Hn4NoFOddnpAOqvXPIZ6elFaukvAaLoAjWUqKX4VcrlIm 4J10ZmJNRaX2oY6lRDc3fI33DevDKV7kI9acLHgYDx3Rz9jorapD/ynOeIGB0ilv h5aMj7udnWOW+iIEgMd16OZEf/SaQLc8FguiECQfYxqGSpMDkAYDkK5/arhWjivG xvlYvowDuTjBxk75D0ggh0D3DBVXi2KyBqMQyZSXzoDzgJB3Xn3HRhrQwSyluZfI FuyI1QrXjpYE/SLDsGu0nCzy9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEHW2quT NP0d93ak0n4EU2RNiIheMB8GA1UdIwQYMBaAFOCNbH/jX+NmQv5vZszaKGamYkLx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDk2Qy9BNDJFMzdGRTFE OTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQyWkNfbTltek5vb1pxWmlR dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJMXNmLU5mNDJaQ19tOW16Tm9vWnFaaVF2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDk2Qy9BNDJFMzdGRTFEOTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQy WkNfbTltek5vb1pxWmlRdkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcoaO972VvXWmHOX1MkzSkTymXBGwySDz6uQRabiGgNKMjWr3dsm9cOO2oeYO +a2L9lNM9Z/TcGHHmC172e3pYMUxAVA5H87eLMppydabSaF1cgaQgXTxnR3YRmXE wxTzLe7WROGACj2sJFqKQKYnxvGiECh0qmVyndKUP7P9c2bSIm0ixaf1yc/gBUEl E7I4iy1Vjb4Sv0f/numXsaig1RF0Gu0dtwzxipI1iRB/FOwKiFHGYFkNWro5KSB4 OkNnTEyoYv8ir9pyKu7pIGAq+DRUuDjjVR/JpXqtinD1SJnh76O+koXya8U7s9L/ OR8C/Tg1lkW6A8oDmIJGGf2sBg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:39:57 2026 by rpki-client