$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft File: H5ogKJzpMW5ls9tyToxzYGyPhks.mft (raw, json) Hash identifier: 84KJSwjM/2CmND4RWBQjCnlHz2kVuCygSaLnsVYKx8M= Subject key identifier: F2:A5:73:6B:61:F1:DB:7C:FC:6A:2C:B6:E0:99:A7:83:57:9C:D9:1D Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0CE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft Manifest number: 0CD1 Signing time: Thu 16 Apr 2026 18:19:57 +0000 Manifest this update: Thu 16 Apr 2026 18:19:56 +0000 Manifest next update: Thu 23 Apr 2026 18:19:56 +0000 Files and hashes: 1: H5ogKJzpMW5ls9tyToxzYGyPhks.crl (hash: wjQUVjbZCIWfgAO4lj6aPmqBzXa6G0J4Fe7VKGk37ds=) 2: 172E487A416911ECB6B11742C4F9AE02.roa (hash: Ipc6oIv3wAFztOTtoYsux+k4MR+JL3rDy/edFa4+Y34=) 3: 67827BDC0B8511EA97C80D52C4F9AE02.roa (hash: VY4FjeE4CY0mN3qvHnhMrNePWv9lXTQoF5HkCTfHV+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3305 (0xce9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33, serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: Apr 16 18:19:56 2026 GMT Not After : Apr 23 18:19:56 2026 GMT Subject: CN=69e1284d-6f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:f8:07:14:22:32:ad:6c:3b:eb:d7:dd:f6:1e: 48:a0:df:39:79:b2:f6:03:45:25:a3:0b:97:2b:5b: b5:06:a9:1e:4d:8e:67:7e:ed:a4:31:95:01:31:24: 88:73:a5:31:09:ea:6e:7a:d4:aa:89:75:62:eb:74: ec:ff:21:98:ed:8b:cb:37:8d:7e:bb:3a:a8:b0:2a: 39:0c:1b:bb:26:54:1f:b0:db:ad:36:90:74:43:64: 55:8e:b6:5f:46:e8:62:1b:cc:e7:b6:96:dc:0c:24: 2e:95:7a:fc:93:2f:09:44:79:7b:c7:ab:d0:b2:a3: e4:06:18:1d:70:9d:33:11:99:84:09:c3:04:cf:28: 38:be:f0:69:0c:22:d5:fd:e3:ce:4a:ec:9d:34:48: fa:b6:f7:5d:52:9d:fa:1d:c3:a3:78:67:ac:4d:d7: de:c0:c2:71:3c:37:75:28:38:92:f3:ad:54:e4:49: de:a9:28:75:68:4e:7d:9f:9f:d5:36:92:56:c5:6f: c1:75:9d:72:73:be:67:11:9a:3d:7e:7e:9d:2d:5f: 53:3b:14:04:b1:35:e5:ca:36:62:73:35:3a:b6:70: 4a:55:f1:c7:e2:c8:84:70:37:ff:6d:12:e9:ae:de: ea:83:14:5e:f0:5d:3e:19:d1:cf:d3:04:34:80:0f: ce:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A5:73:6B:61:F1:DB:7C:FC:6A:2C:B6:E0:99:A7:83:57:9C:D9:1D X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:c6:d7:cb:1e:57:94:1e:32:21:31:bb:f5:9f:32:49:3e:4a: ca:7d:aa:29:1f:81:77:b2:dd:15:93:27:be:4a:d0:ed:c5:b4: 4b:68:2e:b8:4e:9e:e8:9e:0e:27:00:96:a4:bb:34:f1:5b:94: 93:fa:28:a0:56:4c:a0:a8:da:93:6c:c9:5a:4b:75:83:18:0f: dd:f7:d0:b4:2e:c6:70:51:2b:8a:04:52:eb:0f:47:56:ce:c3: d7:af:93:a1:43:de:de:b0:58:75:a2:ee:c6:00:88:af:18:41: bd:f2:b1:67:e4:04:dc:e1:df:ce:b9:3c:cb:d8:b6:a0:86:d1: 49:a0:55:db:89:0d:6b:9d:d4:c8:6f:56:d9:6d:eb:e9:d4:0f: 9f:fc:37:8d:04:3c:48:a1:b0:20:25:9f:58:08:4c:e1:cb:38: 98:5c:4e:b6:a1:53:96:b9:67:59:af:a5:1b:67:0f:6f:c8:6b: 85:49:60:a5:b3:51:76:57:12:5b:47:0a:06:08:6e:04:87:e2: cc:bd:7b:0b:c4:11:1e:1e:07:4b:e1:64:68:18:2d:68:88:e9: c9:1c:d1:7a:6a:95:46:4f:bd:35:03:5e:77:d8:ad:03:fb:48: 2c:5d:ba:f3:0e:11:7e:61:16:b8:21:f7:09:7b:d7:b7:e3:5a: 85:41:64:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjYwNDE2MTgxOTU2WhcNMjYwNDIzMTgxOTU2WjAYMRYwFAYD VQQDEw02OWUxMjg0ZC02ZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkPgHFCIyrWw769fd9h5IoN85ebL2A0UlowuXK1u1BqkeTY5nfu2kMZUBMSSI c6UxCepuetSqiXVi63Ts/yGY7YvLN41+uzqosCo5DBu7JlQfsNutNpB0Q2RVjrZf RuhiG8zntpbcDCQulXr8ky8JRHl7x6vQsqPkBhgdcJ0zEZmECcMEzyg4vvBpDCLV /ePOSuydNEj6tvddUp36HcOjeGesTdfewMJxPDd1KDiS861U5EneqSh1aE59n5/V NpJWxW/BdZ1yc75nEZo9fn6dLV9TOxQEsTXlyjZiczU6tnBKVfHH4siEcDf/bRLp rt7qgxRe8F0+GdHP0wQ0gA/OFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPKlc2th 8dt8/GostuCZp4NXnNkdMB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkYzMy80NjA2NjFEQzBCODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1X NWxzOXR5VG94ellHeVBoa3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtcbXyx5XlB4yITG79Z8yST5Kyn2qKR+Bd7LdFZMnvkrQ7cW0S2guuE6e6J4O JwCWpLs08VuUk/oooFZMoKjak2zJWkt1gxgP3ffQtC7GcFErigRS6w9HVs7D16+T oUPe3rBYdaLuxgCIrxhBvfKxZ+QE3OHfzrk8y9i2oIbRSaBV24kNa53UyG9W2W3r 6dQPn/w3jQQ8SKGwICWfWAhM4cs4mFxOtqFTlrlnWa+lG2cPb8hrhUlgpbNRdlcS W0cKBghuBIfizL17C8QRHh4HS+FkaBgtaIjpyRzRemqVRk+9NQNed9itA/tILF26 8w4RfmEWuCH3CXvXt+NahUFkQw== -----END CERTIFICATE-----Generated at Fri Apr 17 13:20:44 2026 by rpki-client