$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: V54Tm/NFWs/RMa7KOIUbpBlx690NeQpQCYGkkgD/T88= Subject key identifier: D8:65:6A:7C:75:0A:8E:15:0E:25:CC:E6:35:FC:78:17:87:A1:E5:CB Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 0287 Signing time: Wed 13 May 2026 01:52:20 +0000 Manifest this update: Wed 13 May 2026 01:52:20 +0000 Manifest next update: Wed 20 May 2026 01:52:20 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: hZl7UvoDBjcOcDB/p9JcQDHQKqPc7PCGbgSQiRGM9Gg=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: LdRxke1Bck5JxIBRCGjM9TpaCqk+l96r/JCtzyDPs+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: May 13 01:52:20 2026 GMT Not After : May 20 01:52:20 2026 GMT Subject: CN=6a03d954-66dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c8:60:1f:c3:bc:c5:03:71:f6:2f:ad:6e:19: b4:6b:0a:cb:a6:9d:95:84:9c:a8:e3:9b:02:1a:9a: 1d:01:12:cf:66:c9:93:14:ed:3e:c1:6f:28:56:36: 59:c6:33:c8:f0:46:19:d5:af:27:40:38:4b:42:b3: f7:a0:3a:c7:a3:1e:0e:f8:57:de:cf:bd:32:9b:65: cb:87:dc:64:45:09:31:85:45:38:c8:ae:9a:ff:33: 3c:0e:9e:31:1c:ed:c5:2f:51:84:63:c1:a1:63:62: 34:40:c8:e1:2d:7b:9b:c7:94:ef:9c:38:70:77:0b: 81:38:59:6c:68:80:b7:c8:62:69:bd:7f:8a:18:90: 41:e7:2f:cd:80:fd:76:f7:4b:fc:d8:c2:82:f8:b0: 4e:91:d7:ee:8d:17:47:1f:33:c8:69:df:05:cd:74: 0e:b7:71:50:50:2f:7c:a6:44:2f:8c:72:67:f4:0a: ee:d1:68:91:2a:a6:64:d4:da:db:7f:02:75:98:93: 3f:21:fd:76:e5:ed:61:98:d4:68:3e:70:1a:16:2c: 1c:a1:15:6a:7a:b7:85:52:cf:42:e8:71:0f:22:7b: 37:4a:7d:ff:a1:c4:f6:13:c6:81:12:9b:68:36:0c: 56:bd:ba:3d:f8:f6:d4:fc:8e:84:86:ce:07:bd:6a: 7f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:65:6A:7C:75:0A:8E:15:0E:25:CC:E6:35:FC:78:17:87:A1:E5:CB X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:95:a3:82:9a:54:22:f5:e4:a5:67:d7:8d:2f:14:92:21:ad: e1:41:af:bd:ad:b9:e2:0b:1c:af:70:57:5d:23:9a:fd:65:e7: 00:f2:4e:e8:77:9b:71:ff:a9:04:64:94:ce:06:cc:49:4d:11: 7b:40:09:2b:6c:be:d1:b2:f9:d7:24:d4:d1:77:cf:6d:73:89: 9e:b4:f2:f8:d3:e0:ed:a3:d1:50:70:1d:01:4f:30:64:be:c5: a9:10:4d:5b:17:49:17:52:93:fb:93:d4:07:e0:e4:e7:2d:f9: e5:5f:af:8d:8d:21:dc:3e:e7:23:ad:87:bb:35:69:88:f1:96: 1e:4f:d3:76:19:71:c8:61:13:f0:dc:2e:d2:40:df:1f:8f:4e: 8a:a1:6e:17:3e:16:6b:d2:9c:56:38:77:96:4b:88:f1:b2:93: c8:2b:08:66:ee:24:1e:9b:2d:c5:53:9a:9c:fc:54:8a:9f:3d: 49:79:d8:8e:c9:d1:10:11:53:54:d8:47:15:40:44:c7:08:d6: a2:98:01:cc:05:ed:7f:a4:ff:c3:82:bb:2d:0f:c3:5f:70:97: a4:14:e7:5d:91:fe:ec:04:64:03:db:1a:27:f3:0f:73:8d:cd: d6:49:fe:df:d3:ee:a3:19:17:02:93:e1:e0:ac:c8:76:8b:1a: d6:a1:49:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjYwNTEzMDE1MjIwWhcNMjYwNTIwMDE1MjIwWjAYMRYwFAYD VQQDEw02YTAzZDk1NC02NmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3shgH8O8xQNx9i+tbhm0awrLpp2VhJyo45sCGpodARLPZsmTFO0+wW8oVjZZ xjPI8EYZ1a8nQDhLQrP3oDrHox4O+Ffez70ym2XLh9xkRQkxhUU4yK6a/zM8Dp4x HO3FL1GEY8GhY2I0QMjhLXubx5TvnDhwdwuBOFlsaIC3yGJpvX+KGJBB5y/NgP12 90v82MKC+LBOkdfujRdHHzPIad8FzXQOt3FQUC98pkQvjHJn9Aru0WiRKqZk1Nrb fwJ1mJM/If125e1hmNRoPnAaFiwcoRVqereFUs9C6HEPIns3Sn3/ocT2E8aBEpto NgxWvbo9+PbU/I6Ehs4HvWp/1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNhlanx1 Co4VDiXM5jX8eBeHoeXLMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh5WjgppUIvXkpWfXjS8UkiGt4UGvva254gscr3BXXSOa/WXnAPJO6Hebcf+p BGSUzgbMSU0Re0AJK2y+0bL51yTU0XfPbXOJnrTy+NPg7aPRUHAdAU8wZL7FqRBN WxdJF1KT+5PUB+Dk5y355V+vjY0h3D7nI62HuzVpiPGWHk/TdhlxyGET8Nwu0kDf H49OiqFuFz4Wa9KcVjh3lkuI8bKTyCsIZu4kHpstxVOanPxUip89SXnYjsnREBFT VNhHFUBExwjWopgBzAXtf6T/w4K7LQ/DX3CXpBTnXZH+7ARkA9saJ/MPc43N1kn+ 39PuoxkXApPh4KzIdosa1qFJ7w== -----END CERTIFICATE-----Generated at Wed May 13 08:52:38 2026 by rpki-client