$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: Km9gLnp+QasgeEYRFuGWPH29obNzYUdGQbAw3tR9pi4= Subject key identifier: B5:A3:29:5F:B9:B9:8D:FD:3E:59:3E:C3:AD:9D:C2:22:E1:B1:57:7B Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 063F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 0635 Signing time: Sun 26 Apr 2026 22:43:04 +0000 Manifest this update: Sun 26 Apr 2026 22:43:03 +0000 Manifest next update: Sun 03 May 2026 22:43:03 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: s3e93eeVUGG66Hl4lQgRcwA3K1Gax+p5rapa0PPP6kA=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: cLEGJuuOutpOBPsuC1eSdRC04oAPN6e0TRfgYBt8aGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 22:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1599 (0x63f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Apr 26 22:43:03 2026 GMT Not After : May 3 22:43:03 2026 GMT Subject: CN=69ee94f7-c2df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:61:e1:77:3e:4f:98:f8:f1:37:8b:3d:4d:ec: da:a9:c0:bb:7d:8b:94:bf:52:61:14:22:86:b3:8c: 51:52:d1:14:b7:35:50:8b:b3:01:b3:af:17:d4:2f: 5e:e6:15:5d:f0:4f:35:2a:c6:49:48:76:3e:83:af: cc:ae:61:83:b1:6c:f3:94:09:9f:52:fe:48:d1:cd: 6d:3c:af:ce:00:18:6a:ea:0a:5d:c7:ec:2d:87:1e: e8:f0:67:ed:8e:06:75:c0:a9:71:5f:f5:e9:79:d1: 38:83:be:2b:0e:a0:63:11:e3:cd:7a:c5:be:86:5b: 2d:4c:59:ec:e3:1a:ee:2d:11:c9:aa:be:ea:0b:51: de:b1:0e:ec:f8:63:84:92:8d:99:5d:b2:76:6c:51: d8:a0:3e:fc:6f:63:d3:c2:85:cc:41:20:ed:59:b9: a3:43:d4:ac:98:4e:31:4b:15:48:a2:4c:18:66:2e: 4e:85:ba:db:72:90:c6:78:57:85:0b:78:ad:f7:5b: 97:ca:57:6c:bc:69:f0:74:0b:e0:c6:74:88:f0:19: fe:3b:a3:18:23:81:a0:55:d1:0d:d8:fc:ce:94:cf: 57:2b:4f:e0:fb:bf:37:05:b4:78:02:fc:17:f7:17: 99:11:ca:b2:c9:c2:34:77:c7:87:ce:46:eb:56:8c: 18:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:A3:29:5F:B9:B9:8D:FD:3E:59:3E:C3:AD:9D:C2:22:E1:B1:57:7B X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:35:b9:5e:9a:39:30:55:87:7e:5f:54:87:76:77:7a:84:10: 52:d9:83:60:a0:d1:d8:46:3d:80:89:bf:07:e6:46:69:ef:ab: 29:fe:02:70:86:30:3c:87:c2:e0:8a:89:88:c2:06:7f:2e:2b: ac:e0:3e:65:b6:75:eb:b6:ff:e4:6e:0a:65:94:1d:d7:c1:ca: a2:13:b1:95:ae:61:7e:57:99:3f:45:27:de:16:13:71:31:b3: c5:f8:3d:49:55:a2:57:84:94:e5:07:cd:c6:0a:99:27:43:b4: 07:ac:93:b9:3a:f6:50:24:0c:34:c5:db:cd:2d:c5:2f:59:a3: 5f:e2:35:ab:d9:06:bd:ac:f1:54:12:c9:48:79:02:b5:a4:07: 5e:15:ac:ee:59:83:45:bd:52:2a:f6:38:04:8f:ea:7c:42:cd: 50:06:fd:bf:56:f6:68:17:41:c2:6b:48:f4:71:e8:fe:28:80: 72:8e:7a:34:61:58:b4:75:ef:57:e7:a2:da:2b:48:89:f3:39: 4f:13:52:9b:9e:52:ac:3e:c6:ed:8e:ea:e5:84:87:d5:b3:cd: 40:62:f4:11:4f:de:fb:5d:c0:96:9d:3c:37:33:28:e9:4f:b5: 9b:7e:cb:ff:4e:d2:7e:fd:2e:50:dd:28:48:ea:92:82:55:09: 68:d5:a3:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjYwNDI2MjI0MzAzWhcNMjYwNTAzMjI0MzAzWjAYMRYwFAYD VQQDEw02OWVlOTRmNy1jMmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GHhdz5PmPjxN4s9TezaqcC7fYuUv1JhFCKGs4xRUtEUtzVQi7MBs68X1C9e 5hVd8E81KsZJSHY+g6/MrmGDsWzzlAmfUv5I0c1tPK/OABhq6gpdx+wthx7o8Gft jgZ1wKlxX/XpedE4g74rDqBjEePNesW+hlstTFns4xruLRHJqr7qC1HesQ7s+GOE ko2ZXbJ2bFHYoD78b2PTwoXMQSDtWbmjQ9SsmE4xSxVIokwYZi5OhbrbcpDGeFeF C3it91uXyldsvGnwdAvgxnSI8Bn+O6MYI4GgVdEN2PzOlM9XK0/g+783BbR4AvwX 9xeZEcqyycI0d8eHzkbrVowY6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLWjKV+5 uY39Plk+w62dwiLhsVd7MB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtjW5Xpo5MFWHfl9Uh3Z3eoQQUtmDYKDR2EY9gIm/B+ZGae+rKf4CcIYwPIfC 4IqJiMIGfy4rrOA+ZbZ167b/5G4KZZQd18HKohOxla5hfleZP0Un3hYTcTGzxfg9 SVWiV4SU5QfNxgqZJ0O0B6yTuTr2UCQMNMXbzS3FL1mjX+I1q9kGvazxVBLJSHkC taQHXhWs7lmDRb1SKvY4BI/qfELNUAb9v1b2aBdBwmtI9HHo/iiAco56NGFYtHXv V+ei2itIifM5TxNSm55SrD7G7Y7q5YSH1bPNQGL0EU/e+13Alp08NzMo6U+1m37L /07Sfv0uUN0oSOqSglUJaNWjbA== -----END CERTIFICATE-----Generated at Mon Apr 27 18:24:55 2026 by rpki-client