$ rpki-client -vvf rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft File: Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft (raw, json) Hash identifier: Szd4giXmbSBBOAZsC1ABsSM80eN+IhcpQmt1HLKl2xg= Subject key identifier: 01:50:67:91:BF:8C:C7:3F:1D:A1:0A:E8:DC:AA:28:66:AF:D1:E6:28 Authority key identifier: 1E:BF:87:88:24:76:45:F9:AA:F0:16:D0:20:F4:CF:C2:E2:13:C2:96 Certificate issuer: /CN=A912C770/serialNumber=1EBF8788247645F9AAF016D020F4CFC2E213C296 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft Manifest number: 21 Signing time: Fri 17 Apr 2026 08:36:07 +0000 Manifest this update: Fri 17 Apr 2026 08:36:06 +0000 Manifest next update: Fri 24 Apr 2026 08:36:06 +0000 Files and hashes: 1: Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl (hash: gp+l2OCp1H7Ct67QjoNvHUxgSMWOYnJrGykh+SdaVuo=) 2: C7FCC7D210DE11F18FBC6D5B083D8C67.roa (hash: ZJ2mGof4d8TGjIUSjiSJIxX88gLNKzRhctZ8YiDrvqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C770, serialNumber=1EBF8788247645F9AAF016D020F4CFC2E213C296 Validity Not Before: Apr 17 08:36:06 2026 GMT Not After : Apr 24 08:36:06 2026 GMT Subject: CN=69e1f0f7-37d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:43:72:b2:7e:b9:a3:b0:74:2f:74:b8:73:10: 66:02:f9:de:5d:49:94:76:b3:ff:0b:77:10:bd:fd: 4b:30:b9:aa:67:b9:ee:9b:a6:1d:60:6e:34:6f:d3: f3:63:ff:42:7a:f2:35:2f:0a:9a:6b:5c:be:52:e6: 62:61:41:d3:ca:d4:ff:6a:a6:61:fc:cb:fd:83:86: d6:57:5f:1a:c3:aa:41:03:b7:dc:9e:eb:a6:27:1d: 8e:51:49:e7:ce:ba:76:be:b4:30:8c:76:55:ba:cd: ff:1f:6e:35:70:92:ee:47:ac:6f:bd:72:f9:83:a1: 23:05:c8:2e:f3:d5:7f:b6:3c:d6:99:29:6c:bb:15: a0:f0:09:4c:cb:8b:1f:71:68:aa:0a:33:19:79:9f: 83:0e:f7:6b:33:93:83:a9:8f:e0:3f:a4:30:df:f3: b4:99:5d:7f:51:64:48:b9:0b:7b:fc:06:de:28:10: 4a:63:ed:98:51:cf:5b:6b:9a:54:51:70:9c:b7:a6: 35:16:87:d4:31:80:ff:82:d6:91:c5:dc:42:11:53: b8:e9:92:98:5d:65:bb:67:75:b9:cb:52:05:94:b1: 8e:ab:a9:79:7f:bb:4e:ed:f4:b0:f3:c9:43:17:7a: 6a:4c:0a:3e:1e:d3:f2:13:44:d9:95:e0:87:6a:5c: 5c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:50:67:91:BF:8C:C7:3F:1D:A1:0A:E8:DC:AA:28:66:AF:D1:E6:28 X509v3 Authority Key Identifier: keyid:1E:BF:87:88:24:76:45:F9:AA:F0:16:D0:20:F4:CF:C2:E2:13:C2:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:84:07:44:f6:9b:20:bb:1d:70:d3:d9:e1:bb:b0:d1:3d:6e: 59:86:4e:ff:47:93:c3:35:60:90:94:c5:72:75:f6:3b:86:79: cc:07:ef:bd:74:a3:a9:74:fb:06:fd:94:60:a2:1c:ea:26:2c: 26:86:9f:14:29:87:48:29:32:f3:a4:a5:16:cf:78:a7:03:c7: c5:f4:eb:7d:b2:4a:cf:41:c8:9b:d6:4f:a8:bb:ff:ca:7a:5a: b9:3d:38:1a:2f:e7:7a:6c:8a:99:d9:f8:26:01:05:cb:04:03: 2f:df:6b:c7:14:18:79:57:3c:ae:2a:81:6e:1a:31:37:21:20: 47:3e:e4:98:73:99:07:a8:b5:ba:97:9c:70:30:08:17:d7:e9: 1a:65:17:cd:2c:9f:54:7c:2c:2c:bd:99:c4:83:d8:c5:c4:a7: a4:d0:9b:b0:04:b1:81:5b:00:59:62:48:47:83:d4:48:f0:99: c9:1d:69:79:77:51:ba:d6:1d:c2:ae:47:00:d0:1a:ce:44:c8: 60:4e:12:f4:40:18:92:fa:b8:e5:43:76:58:42:29:a3:60:23: b6:aa:e2:e5:4c:52:c4:d0:de:29:4f:a3:d2:16:f3:a3:5b:3f: f3:5d:4c:f1:e2:01:f8:72:ca:eb:f5:3e:e5:da:3f:ec:f8:d2: 33:6e:a2:00 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Qzc3MDExMC8GA1UEBRMoMUVCRjg3ODgyNDc2NDVGOUFBRjAxNkQwMjBGNENGQzJF MjEzQzI5NjAeFw0yNjA0MTcwODM2MDZaFw0yNjA0MjQwODM2MDZaMBgxFjAUBgNV BAMTDTY5ZTFmMGY3LTM3ZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaQ3KyfrmjsHQvdLhzEGYC+d5dSZR2s/8LdxC9/Uswuapnue6bph1gbjRv0/Nj /0J68jUvCpprXL5S5mJhQdPK1P9qpmH8y/2DhtZXXxrDqkEDt9ye66YnHY5RSefO una+tDCMdlW6zf8fbjVwku5HrG+9cvmDoSMFyC7z1X+2PNaZKWy7FaDwCUzLix9x aKoKMxl5n4MO92szk4Opj+A/pDDf87SZXX9RZEi5C3v8Bt4oEEpj7ZhRz1trmlRR cJy3pjUWh9QxgP+C1pHF3EIRU7jpkphdZbtndbnLUgWUsY6rqXl/u07t9LDzyUMX empMCj4e0/ITRNmV4IdqXFw3AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUAVBnkb+M xz8doQro3KooZq/R5igwHwYDVR0jBBgwFoAUHr+HiCR2Rfmq8BbQIPTPwuITwpYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDNzcwLzRBQ0Y5NkQ2MTBE RTExRjE4MTcxOTI1NzA4M0Q4QzY3L0hyLUhpQ1IyUmZtcThCYlFJUFRQd3VJVHdw WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSHItSGlDUjJSZm1xOEJiUUlQVFB3dUlUd3BZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD NzcwLzRBQ0Y5NkQ2MTBERTExRjE4MTcxOTI1NzA4M0Q4QzY3L0hyLUhpQ1IyUmZt cThCYlFJUFRQd3VJVHdwWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBMhAdE9psgux1w09nhu7DRPW5Zhk7/R5PDNWCQlMVydfY7hnnMB++9dKOpdPsG /ZRgohzqJiwmhp8UKYdIKTLzpKUWz3inA8fF9Ot9skrPQcib1k+ou//Kelq5PTga L+d6bIqZ2fgmAQXLBAMv32vHFBh5VzyuKoFuGjE3ISBHPuSYc5kHqLW6l5xwMAgX 1+kaZRfNLJ9UfCwsvZnEg9jFxKek0JuwBLGBWwBZYkhHg9RI8JnJHWl5d1G61h3C rkcA0BrORMhgThL0QBiS+rjlQ3ZYQimjYCO2quLlTFLE0N4pT6PSFvOjWz/zXUzx 4gH4csrr9T7l2j/s+NIzbqIA -----END CERTIFICATE-----Generated at Sun Apr 19 10:03:46 2026 by rpki-client