$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: jL/aRXxP5ogMljst+P49hpJKR9lf3Jpz3FD2RRrSvC0= Subject key identifier: 8D:91:9B:BB:6F:08:51:A1:1B:05:15:9D:0F:7D:E7:76:37:42:A1:AE Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 0110 Signing time: Thu 16 Apr 2026 19:12:55 +0000 Manifest this update: Thu 16 Apr 2026 19:12:55 +0000 Manifest next update: Thu 23 Apr 2026 19:12:55 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: BoHcoTLUQjZLtvEW1A/BMs+wT9jFXM080mS9h+VhX+s=) 2: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: eX1W6sEO6qSGiwMhq2AqfocdX9JRjmM9eN6Q3NFHq5U=) 3: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: dPEhTQP3qeAR4yGjatb5GQPGEIi2y0rBsSN9VqRiVX4=) 4: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: CmfJtzvbUDIWlxCuJc7fM+dnWaJ+FXCzjzg3v0W8Rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Apr 16 19:12:55 2026 GMT Not After : Apr 23 19:12:55 2026 GMT Subject: CN=69e134b7-d24a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c9:64:52:ca:28:86:ba:ef:14:c1:1f:76:58: 59:65:ab:23:d9:40:05:49:ef:7b:cb:e2:ac:36:6d: 63:22:48:f2:d2:d4:76:d4:69:d0:d5:c4:60:eb:ed: 40:63:86:b4:5d:3b:54:d3:79:8e:ca:95:7c:6f:7c: 3a:71:36:ea:e4:7d:61:87:87:50:3e:33:16:82:ec: ce:15:f4:2e:b5:c9:ef:ef:34:bc:6c:eb:ee:38:1a: fd:78:c3:f3:cc:d9:c1:68:98:fd:6f:c4:db:bc:80: d6:05:22:2d:89:1b:6b:32:93:d9:cb:fe:de:0d:be: f3:af:10:b9:c2:1b:62:15:12:17:c6:03:01:91:16: 07:5a:b8:47:ce:a4:b5:7b:a9:7f:d8:09:c9:52:b6: 6f:dd:58:34:30:30:e5:7c:e6:14:33:61:2a:96:de: ca:48:c6:d4:e6:ec:5b:d1:f9:32:6b:4a:7a:f8:a8: f5:84:88:26:28:0a:13:3e:74:ec:19:c6:e4:d0:8f: 1b:a0:e0:84:5c:9f:e6:d1:55:73:95:c6:15:e5:db: 39:dd:ee:96:2a:c7:f9:0b:4d:f6:a1:0b:cb:d4:d9: 06:a4:10:ec:c6:75:11:01:62:97:27:c8:1d:78:64: 89:02:ad:96:24:28:1f:a5:c8:65:cb:25:f9:4f:d3: 93:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:91:9B:BB:6F:08:51:A1:1B:05:15:9D:0F:7D:E7:76:37:42:A1:AE X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:63:96:d1:ce:49:90:c4:82:55:26:51:9c:d2:d0:dd:ca:8e: 21:33:8a:78:56:78:0c:57:d9:69:b1:0e:d9:60:5a:3a:0f:2f: 32:1f:c8:f0:65:3d:c9:05:81:e5:50:51:6d:ad:37:a4:94:d4: 0f:a4:c6:dd:82:87:99:56:51:09:18:aa:c6:10:1d:80:2e:b8: 0f:be:00:db:79:40:ce:af:e7:31:08:03:bf:59:70:bb:75:f3: 44:dc:fd:de:4f:ca:03:73:57:51:a2:64:25:2d:90:78:69:51: 0f:dd:93:ff:06:04:77:bb:30:ba:81:78:8a:fe:88:22:0a:52: 1a:b5:c3:70:59:b3:96:c6:39:3d:bd:b3:77:9c:16:82:ff:84: 67:5b:6f:78:4d:f0:c9:fe:a5:cd:8d:4f:60:65:d1:41:86:01: 90:3c:ae:ae:39:27:e9:b1:6c:22:59:b6:0d:87:0d:cc:c8:4f: ac:c8:ac:9d:0c:70:8d:42:77:1b:84:7e:09:dc:d3:50:bd:b1: 40:71:c8:ca:f5:65:62:35:cf:8d:0c:2a:7c:20:66:fd:2e:1b: 6a:0f:a1:fc:42:1e:e1:b1:f3:49:b7:b3:cd:06:52:08:09:6e: 75:ff:77:f6:21:b2:da:7e:57:73:95:b2:e6:6a:74:1e:61:84: c2:cc:f8:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjYwNDE2MTkxMjU1WhcNMjYwNDIzMTkxMjU1WjAYMRYwFAYD VQQDEw02OWUxMzRiNy1kMjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjMlkUsoohrrvFMEfdlhZZasj2UAFSe97y+KsNm1jIkjy0tR21GnQ1cRg6+1A Y4a0XTtU03mOypV8b3w6cTbq5H1hh4dQPjMWguzOFfQutcnv7zS8bOvuOBr9eMPz zNnBaJj9b8TbvIDWBSItiRtrMpPZy/7eDb7zrxC5whtiFRIXxgMBkRYHWrhHzqS1 e6l/2AnJUrZv3Vg0MDDlfOYUM2Eqlt7KSMbU5uxb0fkya0p6+Kj1hIgmKAoTPnTs Gcbk0I8boOCEXJ/m0VVzlcYV5ds53e6WKsf5C032oQvL1NkGpBDsxnURAWKXJ8gd eGSJAq2WJCgfpchlyyX5T9OTTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI2Rm7tv CFGhGwUVnQ9953Y3QqGuMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMWOW0c5JkMSCVSZRnNLQ3cqOITOKeFZ4DFfZabEO2WBaOg8vMh/I8GU9yQWB 5VBRba03pJTUD6TG3YKHmVZRCRiqxhAdgC64D74A23lAzq/nMQgDv1lwu3XzRNz9 3k/KA3NXUaJkJS2QeGlRD92T/wYEd7swuoF4iv6IIgpSGrXDcFmzlsY5Pb2zd5wW gv+EZ1tveE3wyf6lzY1PYGXRQYYBkDyurjkn6bFsIlm2DYcNzMhPrMisnQxwjUJ3 G4R+CdzTUL2xQHHIyvVlYjXPjQwqfCBm/S4bag+h/EIe4bHzSbezzQZSCAludf93 9iGy2n5Xc5Wy5mp0HmGEwsz4cA== -----END CERTIFICATE-----Generated at Fri Apr 17 13:58:42 2026 by rpki-client