$ rpki-client -vvf rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft File: h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft (raw, json) Hash identifier: XdgsQiWvdrC3hThCUTvqOaDc+kk7e0zZ8bi11WPAbkU= Subject key identifier: 28:A7:AD:F1:C8:56:27:E8:55:EE:8A:C1:75:7D:E0:BF:6A:D1:A7:2E Authority key identifier: 87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 Certificate issuer: /CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft Manifest number: 020D Signing time: Fri 17 Apr 2026 03:02:46 +0000 Manifest this update: Fri 17 Apr 2026 03:02:46 +0000 Manifest next update: Fri 24 Apr 2026 03:02:46 +0000 Files and hashes: 1: h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl (hash: 0N+0MY2Duz+TjH3u4u18j5IMMbW35F0bgPVkUG7Jc5I=) 2: 24661146FA7311EFB58C366CC4F9AE02.roa (hash: GDl5mVu/aHI+hBuO6VNjgfJXS25xVSRkSRDDKqvvcrI=) 3: 64B5B49A052C11F0AFEC0478C4F9AE02.roa (hash: o3DLj0A49CBn+DQBy0PkQcbscmEcGxRHaVNwUFP538g=) 4: 60C72042052911F0A2361C50C4F9AE02.roa (hash: Mi+iRYH8oLuQ7nVmsO2NAf7yTqeWaOmHLkb8IkLkMI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A294, serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Validity Not Before: Apr 17 03:02:46 2026 GMT Not After : Apr 24 03:02:46 2026 GMT Subject: CN=69e1a2d6-0dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:70:4f:b1:5a:01:ec:0c:e2:12:9e:03:40:12: e9:90:05:94:54:37:ff:a2:3f:07:24:96:ac:92:16: 2a:ff:74:4e:bd:50:22:40:d8:4a:32:2f:9b:0d:84: b6:f1:cb:22:5e:31:19:b7:75:95:78:03:e2:63:0d: 6e:11:0a:a2:6d:16:25:20:fc:5d:a8:81:e6:6f:f6: 36:d1:00:86:8f:12:97:c5:5b:61:8d:28:88:d3:b2: ee:d9:c0:36:dd:8f:6a:61:54:35:06:4a:c8:8e:8c: 96:2a:5f:c1:e9:f4:74:b9:61:c1:58:d0:c4:bd:a2: 35:9d:3a:3b:e5:7c:44:40:17:9a:16:88:60:d6:18: 8a:da:74:88:59:7d:14:1d:0b:40:06:66:38:8e:d6: c0:fa:b5:75:5b:dc:f8:cf:dc:e7:43:6c:ba:53:7e: ae:a1:9e:b2:bd:b3:2c:89:90:1a:1d:b0:ed:31:46: 92:45:56:fa:00:35:c2:4d:9f:7d:22:e0:f4:15:1d: 20:81:09:f4:9e:4a:a7:59:64:ec:b2:34:91:c4:0d: 0e:db:39:16:d7:ac:5d:0c:d9:3d:17:8b:c1:94:6e: 04:dc:d3:5b:c8:86:d8:80:ae:65:9a:ee:94:81:ca: ab:2f:f8:88:12:6f:6a:d5:d2:ba:85:b1:bc:fb:5e: ab:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A7:AD:F1:C8:56:27:E8:55:EE:8A:C1:75:7D:E0:BF:6A:D1:A7:2E X509v3 Authority Key Identifier: keyid:87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:76:c3:59:11:00:ed:e2:ba:9a:0c:a7:01:ae:ac:45:39:09: 76:0b:4d:1c:52:48:78:97:b2:e4:34:63:93:b0:95:86:d2:1a: 3f:05:3c:9f:21:ed:9c:ab:d4:40:53:77:b5:ca:da:09:34:4b: d6:a4:2b:fe:48:86:c0:44:e2:da:7f:9c:22:76:99:94:22:8c: 3e:e8:27:d1:1f:d4:55:ef:cd:dd:e1:08:44:5a:bc:08:d7:c3: 23:00:33:67:9e:be:79:56:c5:7e:7d:22:0f:f6:5a:8f:56:51: 67:e6:29:67:0e:e0:05:b0:f9:e5:07:ae:c1:b9:8c:0e:01:67: 8b:ed:6f:18:1c:c6:c2:59:8e:b4:80:38:d6:26:27:96:b9:22: 8f:1f:3a:c1:b4:8b:7c:46:a7:b0:45:b3:39:81:4d:3b:1f:a5: 35:18:1a:bc:bc:34:4a:16:7f:bc:75:f6:43:49:ad:43:3b:38: f5:9f:ab:20:af:e0:b3:35:dc:3c:4f:0a:80:db:9c:4f:76:96: c3:a7:f6:02:49:51:57:5d:d6:62:31:77:83:6e:85:40:59:0a: c3:eb:c8:39:68:f3:21:5a:12:1c:5e:a6:5f:c6:91:4e:7d:01: 52:b1:4f:48:57:a3:ec:45:c3:89:59:63:95:3d:07:5e:e1:fb: 98:a5:ba:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEyOTQxMTAvBgNVBAUTKDg3QjVEODUzRjY0MjUyMTVBREE3ODIyRjAyQTU3NDgz RUUyNjdDMDQwHhcNMjYwNDE3MDMwMjQ2WhcNMjYwNDI0MDMwMjQ2WjAYMRYwFAYD VQQDEw02OWUxYTJkNi0wZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj3BPsVoB7AziEp4DQBLpkAWUVDf/oj8HJJaskhYq/3ROvVAiQNhKMi+bDYS2 8csiXjEZt3WVeAPiYw1uEQqibRYlIPxdqIHmb/Y20QCGjxKXxVthjSiI07Lu2cA2 3Y9qYVQ1BkrIjoyWKl/B6fR0uWHBWNDEvaI1nTo75XxEQBeaFohg1hiK2nSIWX0U HQtABmY4jtbA+rV1W9z4z9znQ2y6U36uoZ6yvbMsiZAaHbDtMUaSRVb6ADXCTZ99 IuD0FR0ggQn0nkqnWWTssjSRxA0O2zkW16xdDNk9F4vBlG4E3NNbyIbYgK5lmu6U gcqrL/iIEm9q1dK6hbG8+16r/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCinrfHI VifoVe6KwXV94L9q0acuMB8GA1UdIwQYMBaAFIe12FP2QlIVraeCLwKldIPuJnwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTI5NC85OTJGMUQwRTRB RDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1VoV3RwNEl2QXFWMGctNG1m QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3WFlVX1pDVWhXdHA0SXZBcVYwZy00bWZBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTI5NC85OTJGMUQwRTRBRDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1Vo V3RwNEl2QXFWMGctNG1mQVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASXbDWREA7eK6mgynAa6sRTkJdgtNHFJIeJey5DRjk7CVhtIaPwU8nyHtnKvU QFN3tcraCTRL1qQr/kiGwETi2n+cInaZlCKMPugn0R/UVe/N3eEIRFq8CNfDIwAz Z56+eVbFfn0iD/Zaj1ZRZ+YpZw7gBbD55QeuwbmMDgFni+1vGBzGwlmOtIA41iYn lrkijx86wbSLfEansEWzOYFNOx+lNRgavLw0ShZ/vHX2Q0mtQzs49Z+rIK/gszXc PE8KgNucT3aWw6f2AklRV13WYjF3g26FQFkKw+vIOWjzIVoSHF6mX8aRTn0BUrFP SFej7EXDiVljlT0HXuH7mKW6zg== -----END CERTIFICATE-----Generated at Sat Apr 18 01:06:12 2026 by rpki-client