$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: Ep3gjC0pnMWtVOH4dLVJNWTZaQ4fzfJEbLFOzxLOEfY= Subject key identifier: 1D:3B:ED:5C:2A:E4:BA:73:23:42:A8:22:A1:1A:91:79:1C:D5:A7:C2 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 03EC Signing time: Fri 17 Apr 2026 00:24:20 +0000 Manifest this update: Fri 17 Apr 2026 00:24:20 +0000 Manifest next update: Fri 24 Apr 2026 00:24:20 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: rd8Q83kfkCoZ70qglNGemTAV8Z4CHqVO5e2KuQP+p+0=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: 1651DDZqfZG0+Q1CtVyAE69Gh2+OtTkbKUiK/1/L4rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Apr 17 00:24:20 2026 GMT Not After : Apr 24 00:24:20 2026 GMT Subject: CN=69e17db4-053d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:33:68:05:54:48:d4:a3:9a:ad:22:10:b1:a9: f1:22:2d:da:e3:e8:67:fb:2c:39:f8:b7:40:cc:55: b9:f9:f0:89:b3:23:35:7b:85:6c:7d:16:ee:5b:7c: b7:6a:70:27:bc:ac:4e:f4:79:9c:53:9f:42:37:77: fb:20:53:a8:df:57:8a:da:fc:62:97:73:35:b9:4b: c0:ae:86:6d:30:42:90:54:d7:23:91:94:46:5b:38: 09:80:b2:81:e7:d1:72:af:c3:bb:45:79:1a:a7:3b: ad:78:43:eb:4e:a8:cc:59:76:94:db:18:2d:98:82: 01:64:4e:71:6b:e1:30:c6:5a:2e:8b:09:0a:f0:0f: 50:c4:68:23:ac:64:cc:ef:68:50:4a:e7:42:a2:44: e4:61:f7:2e:8a:2e:49:aa:a5:08:9c:49:8b:78:50: 0c:bc:cd:32:59:c0:f0:e5:6a:56:bc:25:a1:da:f2: f0:08:af:b8:8a:3e:e0:3a:af:d3:5f:44:99:27:91: fd:ff:0d:f8:6b:2e:01:90:f2:70:3f:0b:37:d3:93: 24:b1:07:5f:98:ee:6a:55:36:b6:7d:5d:42:10:c2: 33:48:c3:78:68:9c:f8:30:43:c3:9d:b0:92:6a:03: a7:08:1b:7c:7b:02:40:0e:d5:0a:3e:36:9c:b4:0e: 12:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3B:ED:5C:2A:E4:BA:73:23:42:A8:22:A1:1A:91:79:1C:D5:A7:C2 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:5f:b5:9c:b7:d4:77:51:6b:d6:11:71:bd:92:d1:87:ad:7d: e2:fd:b1:a1:91:5e:1e:da:c7:7d:0b:b8:8b:2d:11:81:da:e2: 29:a4:84:75:c9:ab:ec:30:20:62:86:27:47:64:88:72:70:6f: 07:8d:8f:65:b2:2c:e2:dc:5b:f0:ba:87:d4:02:4f:a3:bc:5a: 7e:9f:47:06:21:ca:3e:22:70:d6:38:c9:d7:5d:94:9b:d8:8f: 78:7b:24:b9:c7:a1:0c:8f:85:36:fd:6b:3e:5f:95:d8:3a:8d: d8:71:8f:2c:e2:5c:19:42:fc:9e:40:c4:c1:8f:b9:08:6a:fa: 9d:ff:f6:d4:55:d1:4d:f7:56:a4:bf:30:6c:a5:65:5f:76:fc: f0:01:d0:f6:2f:29:3f:bd:1e:00:fa:a2:1f:49:0b:2f:77:20: 87:72:c3:e4:3c:1c:59:e4:00:e9:7d:26:c2:50:fe:52:00:aa: c6:cb:37:81:ce:7e:4e:20:96:e7:ec:92:5b:ae:0a:94:19:bb: 78:6a:58:72:9b:bd:2f:dd:dd:86:9d:ae:8e:63:f5:f2:94:d2: bd:59:05:1a:0e:a2:70:cb:f9:14:49:d5:85:fb:92:4b:5e:9e: 8d:4f:e3:2c:e1:b2:ec:dc:21:7a:19:52:3d:a4:d3:41:26:e8: 2d:68:aa:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjYwNDE3MDAyNDIwWhcNMjYwNDI0MDAyNDIwWjAYMRYwFAYD VQQDEw02OWUxN2RiNC0wNTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTNoBVRI1KOarSIQsanxIi3a4+hn+yw5+LdAzFW5+fCJsyM1e4VsfRbuW3y3 anAnvKxO9HmcU59CN3f7IFOo31eK2vxil3M1uUvAroZtMEKQVNcjkZRGWzgJgLKB 59Fyr8O7RXkapzuteEPrTqjMWXaU2xgtmIIBZE5xa+EwxlouiwkK8A9QxGgjrGTM 72hQSudCokTkYfcuii5JqqUInEmLeFAMvM0yWcDw5WpWvCWh2vLwCK+4ij7gOq/T X0SZJ5H9/w34ay4BkPJwPws305MksQdfmO5qVTa2fV1CEMIzSMN4aJz4MEPDnbCS agOnCBt8ewJADtUKPjactA4SwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB077Vwq 5LpzI0KoIqEakXkc1afCMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOV+1nLfUd1Fr1hFxvZLRh6194v2xoZFeHtrHfQu4iy0RgdriKaSEdcmr7DAg YoYnR2SIcnBvB42PZbIs4txb8LqH1AJPo7xafp9HBiHKPiJw1jjJ112Um9iPeHsk ucehDI+FNv1rPl+V2DqN2HGPLOJcGUL8nkDEwY+5CGr6nf/21FXRTfdWpL8wbKVl X3b88AHQ9i8pP70eAPqiH0kLL3cgh3LD5DwcWeQA6X0mwlD+UgCqxss3gc5+TiCW 5+ySW64KlBm7eGpYcpu9L93dhp2ujmP18pTSvVkFGg6icMv5FEnVhfuSS16ejU/j LOGy7NwhehlSPaTTQSboLWiqXQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:18:08 2026 by rpki-client