$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: DRpdvKYWiz1fRAJiWdA4bf0htLha3aRt2LpPoiPy/18= Subject key identifier: DD:09:74:5A:D9:67:E0:2D:A5:A9:66:2E:07:FE:06:4C:F7:72:AB:48 Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 026E Signing time: Wed 25 Mar 2026 01:26:49 +0000 Manifest this update: Wed 25 Mar 2026 01:26:49 +0000 Manifest next update: Wed 01 Apr 2026 01:26:49 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: P6rf4toGpsoc6G6Gyy8QOQNSnzbwFpXMZLDPQYzx6xE=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: LdRxke1Bck5JxIBRCGjM9TpaCqk+l96r/JCtzyDPs+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Mar 25 01:26:49 2026 GMT Not After : Apr 1 01:26:49 2026 GMT Subject: CN=69c339d9-d73e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c7:73:ed:54:34:c7:52:34:e9:9f:e7:f8:56: 6a:a4:fb:aa:e2:11:b2:af:5b:7e:e0:4c:3c:b2:33: 89:79:0a:5b:14:ff:9f:b4:39:31:ab:5e:92:66:5e: fd:6a:e9:45:34:b0:41:0e:27:02:67:50:5e:87:8a: ac:56:db:e3:d1:7d:cb:2e:5f:28:1d:1c:ff:93:29: a6:fe:f8:9e:8f:61:f3:54:8d:39:7d:23:54:8f:52: 41:91:26:fe:ea:20:92:9f:93:9b:5a:8d:bd:fb:2e: ad:0c:3a:0f:b8:b5:65:b2:ec:3b:7d:68:9c:e6:55: 37:f9:19:0d:80:dd:69:75:15:da:5a:a5:d8:14:89: 53:01:56:eb:c4:ad:5e:80:1b:5a:5c:0c:19:67:92: d1:31:54:d3:13:a4:70:85:32:b4:23:9b:75:9f:92: fe:d8:63:27:c6:6d:35:3d:4e:97:a1:10:f1:17:03: 99:31:1e:79:53:d8:f4:57:45:a4:6e:0c:73:8e:94: 25:bc:21:d3:f6:da:10:c7:4d:68:99:38:d7:ae:29: e7:26:4e:e8:52:06:f3:c0:0f:d2:cb:be:c3:94:01: a3:91:6f:be:d0:ca:83:c6:83:f1:cd:e8:5b:18:54: 26:80:70:79:af:b1:75:40:cf:00:c6:43:1f:c7:8c: 14:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:09:74:5A:D9:67:E0:2D:A5:A9:66:2E:07:FE:06:4C:F7:72:AB:48 X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:56:d9:72:aa:e6:df:4d:e4:da:39:c7:8c:66:2e:59:15:e9: 77:61:9c:4d:9e:ce:fc:53:b5:8d:77:77:fc:37:f6:ba:87:33: 89:87:4d:25:2e:8e:ee:42:86:1f:93:65:94:9c:83:5e:77:20: 07:54:83:1a:27:8b:10:9e:db:eb:02:8f:54:db:e2:d6:3f:59: e2:8e:e0:3a:79:55:eb:48:47:69:49:f2:ac:38:92:95:ed:ec: c2:cf:ac:32:4e:ce:52:fa:f1:ed:09:bd:a3:84:31:5f:cc:91: 8b:24:34:18:31:39:25:26:2f:c2:43:82:e6:07:65:96:2b:ed: 9b:82:1f:22:1c:ad:25:aa:4a:6e:c2:8f:00:06:9b:4a:e8:cf: a4:6b:54:6c:3b:fd:d8:72:6b:4d:cd:6c:1a:33:a1:e6:0f:50: 86:70:11:06:57:fb:75:92:b8:06:e0:ff:c2:49:08:d7:87:2e: b5:64:65:63:4b:4b:a3:78:6c:95:45:94:27:68:89:b6:15:45: 08:6f:6d:c6:66:09:fd:b2:1b:8f:ac:09:d6:ef:e3:1d:5a:f1: 9e:0b:6e:81:e3:c2:4c:fd:01:ad:d2:de:a2:e8:3a:20:ed:b6: d4:47:4e:03:aa:9f:65:57:a5:32:e0:9a:9e:aa:e2:c9:cd:d6: a7:ae:b7:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjYwMzI1MDEyNjQ5WhcNMjYwNDAxMDEyNjQ5WjAYMRYwFAYD VQQDEw02OWMzMzlkOS1kNzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sdz7VQ0x1I06Z/n+FZqpPuq4hGyr1t+4Ew8sjOJeQpbFP+ftDkxq16SZl79 aulFNLBBDicCZ1Beh4qsVtvj0X3LLl8oHRz/kymm/viej2HzVI05fSNUj1JBkSb+ 6iCSn5ObWo29+y6tDDoPuLVlsuw7fWic5lU3+RkNgN1pdRXaWqXYFIlTAVbrxK1e gBtaXAwZZ5LRMVTTE6RwhTK0I5t1n5L+2GMnxm01PU6XoRDxFwOZMR55U9j0V0Wk bgxzjpQlvCHT9toQx01omTjXrinnJk7oUgbzwA/Sy77DlAGjkW++0MqDxoPxzehb GFQmgHB5r7F1QM8AxkMfx4wU7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN0JdFrZ Z+AtpalmLgf+Bkz3cqtIMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf1bZcqrm303k2jnHjGYuWRXpd2GcTZ7O/FO1jXd3/Df2uocziYdNJS6O7kKG H5NllJyDXncgB1SDGieLEJ7b6wKPVNvi1j9Z4o7gOnlV60hHaUnyrDiSle3sws+s Mk7OUvrx7Qm9o4QxX8yRiyQ0GDE5JSYvwkOC5gdllivtm4IfIhytJapKbsKPAAab SujPpGtUbDv92HJrTc1sGjOh5g9QhnARBlf7dZK4BuD/wkkI14cutWRlY0tLo3hs lUWUJ2iJthVFCG9txmYJ/bIbj6wJ1u/jHVrxngtugePCTP0BrdLeoug6IO221EdO A6qfZVelMuCanqriyc3Wp6635A== -----END CERTIFICATE-----Generated at Thu Mar 26 18:01:13 2026 by rpki-client