$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: KIq4flsMgqdBvj+CI5sn+RWEGxXO7+hySz2TZXAe3io= Subject key identifier: 0C:94:D2:6E:6D:5B:D2:D4:75:1F:6D:F7:22:6F:2E:85:AE:C2:30:A5 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 0223 Signing time: Thu 16 Apr 2026 18:46:31 +0000 Manifest this update: Thu 16 Apr 2026 18:46:30 +0000 Manifest next update: Thu 23 Apr 2026 18:46:30 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: 2K3URV2MNfvGVQjXOYUx9bIRO6R0Kbp7bQ84RLHTViw=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: UxgWHSWCQslOtEVN8vxHfkeQxG5zKwXTOsnpS8saGYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:46:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Apr 16 18:46:30 2026 GMT Not After : Apr 23 18:46:30 2026 GMT Subject: CN=69e12e87-f790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fb:29:4b:00:24:c0:b2:db:44:d6:e7:60:44: 08:14:8f:c1:ab:10:4f:cb:3b:17:5a:7a:ba:81:34: 37:39:d3:96:a2:a1:9c:97:4d:7e:7c:5f:b3:47:b5: cc:31:cf:6e:81:8f:f3:4d:36:ab:f7:ab:d7:90:98: f7:73:03:b4:68:0e:b4:30:28:fa:d8:ee:13:1f:23: ea:58:48:9f:ec:cd:80:40:cc:f4:f0:65:77:8f:24: 84:ec:5b:35:f9:3a:45:9e:f8:95:33:14:6f:ab:ee: f1:c6:45:3e:c8:b3:ff:6d:17:63:23:14:54:a4:fd: 0a:65:70:02:07:7b:c8:cf:7e:ef:87:47:be:92:09: 4a:e8:7d:21:af:91:cb:b3:51:59:ea:f9:4a:87:f8: 2c:bd:2e:00:8e:e1:c1:ec:9d:be:ac:61:6c:fc:a7: 57:b3:75:39:64:bc:aa:a5:e1:80:b3:fa:7c:06:7f: f3:bc:4f:92:6b:c1:f6:43:eb:6e:a8:90:9f:10:c0: 46:a4:3b:c8:e5:98:b7:0d:1a:a0:37:b3:9e:3f:19: fd:8b:21:a1:4c:43:df:ca:fe:73:a5:52:47:28:83: c4:9e:b4:bc:7d:86:51:8a:14:65:4e:69:c8:74:88: 14:b3:8c:8c:09:11:a2:48:40:32:e8:fe:02:25:0a: 43:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:94:D2:6E:6D:5B:D2:D4:75:1F:6D:F7:22:6F:2E:85:AE:C2:30:A5 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:44:e8:87:2b:10:92:97:b9:b6:fe:fe:03:72:43:63:6b:3c: 5a:c4:66:4b:ff:d1:49:e3:60:d2:5a:6a:39:4f:4e:88:e0:0e: aa:49:a5:b6:09:9d:0a:99:21:35:89:86:cf:85:16:8a:e5:5d: 2f:a8:37:cc:1b:e1:23:2b:7f:1e:5c:fd:0d:89:db:34:a0:85: 5e:f7:4c:ad:9b:9a:93:57:8a:a2:ac:cc:01:03:54:29:cc:b9: ca:94:30:2e:2f:6a:21:24:48:34:a2:d4:b2:d0:78:e9:6b:7d: 1b:53:1c:b6:d8:b1:d9:15:c4:f4:90:75:2e:1c:96:5f:2d:46: aa:f1:1d:f6:36:f7:28:f9:aa:29:5c:ce:a4:2b:07:f3:cf:26: d5:f7:e6:84:de:74:74:5c:ca:06:6f:12:f5:1a:8b:a3:ce:a9: 0f:f2:f8:b4:af:c3:5a:2f:43:66:69:69:6a:34:3c:96:f7:4b: 30:9a:ad:34:96:e7:9f:28:eb:57:87:05:6d:ad:bb:ab:8f:38: 68:59:67:f9:ae:0c:40:e6:4b:54:ba:53:de:cb:fb:9a:bf:a7: c6:0d:15:44:3a:d3:64:27:26:98:09:b2:02:8f:7c:00:d8:8c: 50:4a:fe:51:dc:10:05:75:ba:a0:9f:44:3b:98:b9:fb:79:ae: 75:48:e9:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjYwNDE2MTg0NjMwWhcNMjYwNDIzMTg0NjMwWjAYMRYwFAYD VQQDEw02OWUxMmU4Ny1mNzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfspSwAkwLLbRNbnYEQIFI/BqxBPyzsXWnq6gTQ3OdOWoqGcl01+fF+zR7XM Mc9ugY/zTTar96vXkJj3cwO0aA60MCj62O4THyPqWEif7M2AQMz08GV3jySE7Fs1 +TpFnviVMxRvq+7xxkU+yLP/bRdjIxRUpP0KZXACB3vIz37vh0e+kglK6H0hr5HL s1FZ6vlKh/gsvS4AjuHB7J2+rGFs/KdXs3U5ZLyqpeGAs/p8Bn/zvE+Sa8H2Q+tu qJCfEMBGpDvI5Zi3DRqgN7OePxn9iyGhTEPfyv5zpVJHKIPEnrS8fYZRihRlTmnI dIgUs4yMCRGiSEAy6P4CJQpDewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAyU0m5t W9LUdR9t9yJvLoWuwjClMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP0TohysQkpe5tv7+A3JDY2s8WsRmS//RSeNg0lpqOU9OiOAOqkmltgmdCpkh NYmGz4UWiuVdL6g3zBvhIyt/Hlz9DYnbNKCFXvdMrZuak1eKoqzMAQNUKcy5ypQw Li9qISRINKLUstB46Wt9G1Mcttix2RXE9JB1LhyWXy1GqvEd9jb3KPmqKVzOpCsH 888m1ffmhN50dFzKBm8S9RqLo86pD/L4tK/DWi9DZmlpajQ8lvdLMJqtNJbnnyjr V4cFba27q484aFln+a4MQOZLVLpT3sv7mr+nxg0VRDrTZCcmmAmyAo98ANiMUEr+ UdwQBXW6oJ9EO5i5+3mudUjpyQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:58:32 2026 by rpki-client