$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: dqDPDy156UEpqtk4ijkkVQSQISvXAalgwJl6FK5Iy/g= Subject key identifier: CB:A5:6E:5A:7D:30:D7:FE:EC:D8:2B:3E:2B:F3:1B:BF:F8:0F:45:30 Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 08BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 0872 Signing time: Thu 16 Apr 2026 20:38:23 +0000 Manifest this update: Thu 16 Apr 2026 20:38:23 +0000 Manifest next update: Thu 23 Apr 2026 20:38:23 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: 80SYJmctsOCMI5Og3/O2iLk9N82wYqLH2fJpVKydQPY=) 2: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: MaFJmDPMqlk1C6MUJjdtLiNgPwGqra//weYceabgP/k=) 3: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: N8OrGg15ZoxlIKz8paOj7jgooryKDtsZ+DLKkaeQezQ=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: kfnLo6TLNnxHzHz2hfx3dzeu6fOXlby4NhM/hMtaUog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2237 (0x8bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Apr 16 20:38:23 2026 GMT Not After : Apr 23 20:38:23 2026 GMT Subject: CN=69e148bf-05bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b5:5e:fb:51:0f:d4:cb:07:50:6e:9d:99:f7: 84:37:c2:52:ff:01:bc:3d:9e:ac:03:4a:2c:3d:ac: e8:ec:84:01:26:1f:4d:d2:ff:01:7f:87:08:67:2c: da:cc:2f:b7:0b:1d:84:86:cc:4b:6d:c0:a5:e1:8e: e0:ec:c3:13:49:4c:f2:cd:28:fa:9e:6d:dd:04:6e: 27:cf:15:a7:a3:4c:f8:0d:b1:a7:3a:9f:50:6f:d4: 58:8e:c6:86:72:d8:5f:d4:ba:67:75:5c:5b:f5:a2: 1e:b8:1e:a9:9b:e1:85:1e:8d:54:e3:2d:b9:31:68: 60:4a:e2:97:34:13:fb:35:73:2d:62:d2:86:43:f3: d1:bd:06:b1:58:01:ad:59:2b:d1:9a:aa:c2:37:4a: d1:8b:a3:9f:dc:69:22:6c:4e:2a:22:8a:29:1c:4e: a8:cf:73:a9:5a:2d:54:87:4c:1d:1a:ac:5a:7a:2a: 2e:f7:0d:78:ac:2a:89:dc:5b:ac:35:ae:3d:7f:ac: f9:e5:f0:2c:fb:23:2a:fd:67:9d:f1:50:1d:3f:39: ae:cf:a8:85:63:2a:54:74:2c:d6:38:fc:84:6d:d7: e8:6a:ff:65:3c:56:35:85:8f:0f:ee:dc:22:7f:bb: f2:a5:d9:14:c0:11:bf:52:57:77:1f:c0:7b:95:db: ad:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A5:6E:5A:7D:30:D7:FE:EC:D8:2B:3E:2B:F3:1B:BF:F8:0F:45:30 X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:8a:f0:a7:54:f8:08:71:b3:e7:ed:61:6b:d2:8f:8a:7c:25: 39:e2:1c:1e:7f:52:56:02:89:57:d6:ff:59:32:c7:f7:5e:8a: 11:5c:66:82:04:3e:5c:54:ce:09:e0:dd:a4:1a:4e:12:97:48: 2f:0b:e7:5c:46:ec:37:a4:71:a4:57:c4:c3:85:d8:a0:d5:58: 20:f5:f6:ef:b2:d4:ac:72:5d:7d:af:49:52:eb:e8:9b:33:ce: 32:25:e5:c1:5e:a1:fb:de:c1:34:a0:f5:a3:cb:94:76:70:76: 50:ba:00:60:59:eb:40:b7:db:93:ed:0f:4a:75:75:58:bd:68: bc:a4:8b:2a:eb:aa:93:1a:f9:ad:ee:fe:af:18:4b:4f:f3:08: 67:11:5b:fb:55:1f:89:24:57:1f:07:f9:2e:35:45:a0:6b:9b: b2:9c:f1:dd:c9:d0:13:98:67:1d:0e:40:b0:0e:12:f4:40:73: 3e:7d:24:d4:fe:e1:42:5a:a5:2c:2a:02:15:85:c0:e1:91:e7: 47:cc:6e:2e:e7:bb:4e:69:17:fb:f6:ae:16:15:b6:1d:a9:ba: d8:26:18:96:66:fe:26:95:20:33:ed:f2:8f:30:4e:7b:25:36: d9:c5:58:3a:cb:2f:bc:67:91:19:fd:eb:8e:ec:0f:4f:b5:3a: 03:f3:a3:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjYwNDE2MjAzODIzWhcNMjYwNDIzMjAzODIzWjAYMRYwFAYD VQQDEw02OWUxNDhiZi0wNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbVe+1EP1MsHUG6dmfeEN8JS/wG8PZ6sA0osPazo7IQBJh9N0v8Bf4cIZyza zC+3Cx2EhsxLbcCl4Y7g7MMTSUzyzSj6nm3dBG4nzxWno0z4DbGnOp9Qb9RYjsaG cthf1LpndVxb9aIeuB6pm+GFHo1U4y25MWhgSuKXNBP7NXMtYtKGQ/PRvQaxWAGt WSvRmqrCN0rRi6Of3GkibE4qIoopHE6oz3OpWi1Uh0wdGqxaeiou9w14rCqJ3Fus Na49f6z55fAs+yMq/Wed8VAdPzmuz6iFYypUdCzWOPyEbdfoav9lPFY1hY8P7twi f7vypdkUwBG/Uld3H8B7ldutFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMulblp9 MNf+7NgrPivzG7/4D0UwMB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmIrwp1T4CHGz5+1ha9KPinwlOeIcHn9SVgKJV9b/WTLH916KEVxmggQ+XFTO CeDdpBpOEpdILwvnXEbsN6RxpFfEw4XYoNVYIPX277LUrHJdfa9JUuvomzPOMiXl wV6h+97BNKD1o8uUdnB2ULoAYFnrQLfbk+0PSnV1WL1ovKSLKuuqkxr5re7+rxhL T/MIZxFb+1UfiSRXHwf5LjVFoGubspzx3cnQE5hnHQ5AsA4S9EBzPn0k1P7hQlql LCoCFYXA4ZHnR8xuLue7TmkX+/auFhW2Ham62CYYlmb+JpUgM+3yjzBOeyU22cVY OssvvGeRGf3rjuwPT7U6A/OjhQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:46:01 2026 by rpki-client