$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: GdyBqsqFP+CAoowPqV4w4U3jErxdcILVoig4WOy0WOM= Subject key identifier: D7:D8:93:7A:50:DD:EE:1A:F2:DF:35:B6:EC:93:61:B6:3E:DE:52:BC Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0AC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0AAC Signing time: Sat 18 Apr 2026 19:23:09 +0000 Manifest this update: Sat 18 Apr 2026 19:23:09 +0000 Manifest next update: Sat 25 Apr 2026 19:23:09 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: fb39BDESa0VsfX2LhAOHzXIzgsYAtovpsoyZZs9GkcY=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Q9E2SohQHAyGeXQSdbGe7wwkbtB6hL54JNkPQsa0EIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 19:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2754 (0xac2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Apr 18 19:23:09 2026 GMT Not After : Apr 25 19:23:09 2026 GMT Subject: CN=69e3da1d-ebc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a6:7f:dc:b6:0a:4e:d2:6d:28:65:c2:13:fa: b7:c3:00:fa:3a:07:79:78:1a:ba:01:99:1b:04:9c: 0c:d3:6a:c0:a4:0f:a6:fb:a1:ac:1e:fd:bd:d4:4c: 6f:42:1a:39:a0:ec:75:01:4f:9b:e8:6c:29:cf:4d: 0f:87:a7:76:8e:73:48:7d:61:74:93:07:32:22:73: e6:29:6e:a9:24:0c:45:3a:92:61:6d:c9:4a:79:79: c5:b0:29:24:16:4b:5c:41:5b:c0:af:0b:05:d5:4d: 31:e5:a7:50:22:70:ac:35:34:84:27:71:a2:4c:a7: 74:89:87:01:37:a2:e4:8a:cc:d8:a4:9e:50:55:a5: 97:07:65:5a:48:ad:68:9a:f7:7d:02:37:a5:19:4f: e4:0d:a3:67:af:84:9e:45:21:ba:cc:1c:01:47:3d: 1a:e5:e6:4b:18:fa:c3:84:99:f5:dc:9a:39:92:f0: 4b:2e:0c:15:61:f4:62:a2:b1:e8:41:5d:59:57:8d: 82:ca:0d:4e:99:4e:ee:de:ac:44:40:60:1f:8f:46: 3e:c5:d5:b7:9f:53:28:43:38:20:54:f7:11:48:b1: ab:aa:33:77:08:a4:9c:9b:52:a0:d1:c5:55:75:14: a7:3d:7b:b3:82:66:68:ff:a4:58:6c:19:21:70:3c: f3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D8:93:7A:50:DD:EE:1A:F2:DF:35:B6:EC:93:61:B6:3E:DE:52:BC X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:a0:e4:bd:bb:48:f1:10:2e:5e:dd:f9:5e:7f:11:5d:0a:db: 38:5d:a6:bf:a3:fb:88:b7:66:b9:a4:47:15:fc:a4:0e:f3:cd: 35:13:32:5a:ca:d9:fd:c4:87:81:f9:9e:f2:62:98:3d:52:8a: 19:dd:b9:cc:0c:c7:3b:ca:8e:35:5a:2b:77:3c:b0:63:05:4c: b8:fd:59:a5:37:67:d2:dc:c2:90:d0:a7:5d:8f:27:88:d6:06: 4e:6c:2e:c8:4b:d9:8e:ff:76:df:85:fa:db:70:df:a7:16:b5: e8:4c:82:4f:41:6e:19:2d:e1:12:ec:9f:31:2f:34:fc:ac:f2: c8:8e:80:bb:3d:a1:cd:32:60:f8:1d:d5:9d:30:07:dd:98:1c: 66:17:b8:10:21:f8:ea:1c:79:1d:66:62:85:2e:55:56:83:c4: c9:06:56:fa:73:29:a5:ca:d6:6a:d1:a9:73:fc:d0:47:21:9e: 97:de:f6:77:b6:7c:21:0b:f6:9c:67:8e:ad:67:3f:c8:a5:cd: 8f:4e:05:21:a4:62:c2:67:2a:35:6e:78:92:e2:8e:0f:57:6a: 94:ee:88:94:6f:8b:54:2a:33:3b:e2:10:5e:a9:28:dd:c5:8c: 15:a3:9e:d2:5b:df:0d:96:dc:27:ea:5f:38:db:1a:22:7b:12: b2:37:b9:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjYwNDE4MTkyMzA5WhcNMjYwNDI1MTkyMzA5WjAYMRYwFAYD VQQDEw02OWUzZGExZC1lYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6Z/3LYKTtJtKGXCE/q3wwD6Ogd5eBq6AZkbBJwM02rApA+m+6GsHv291Exv Qho5oOx1AU+b6Gwpz00Ph6d2jnNIfWF0kwcyInPmKW6pJAxFOpJhbclKeXnFsCkk FktcQVvArwsF1U0x5adQInCsNTSEJ3GiTKd0iYcBN6LkiszYpJ5QVaWXB2VaSK1o mvd9AjelGU/kDaNnr4SeRSG6zBwBRz0a5eZLGPrDhJn13Jo5kvBLLgwVYfRiorHo QV1ZV42Cyg1OmU7u3qxEQGAfj0Y+xdW3n1MoQzggVPcRSLGrqjN3CKScm1Kg0cVV dRSnPXuzgmZo/6RYbBkhcDzzrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNfYk3pQ 3e4a8t81tuyTYbY+3lK8MB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmqDkvbtI8RAuXt35Xn8RXQrbOF2mv6P7iLdmuaRHFfykDvPNNRMyWsrZ/cSH gfme8mKYPVKKGd25zAzHO8qONVordzywYwVMuP1ZpTdn0tzCkNCnXY8niNYGTmwu yEvZjv9234X623Dfpxa16EyCT0FuGS3hEuyfMS80/KzyyI6Auz2hzTJg+B3VnTAH 3ZgcZhe4ECH46hx5HWZihS5VVoPEyQZW+nMppcrWatGpc/zQRyGel972d7Z8IQv2 nGeOrWc/yKXNj04FIaRiwmcqNW54kuKOD1dqlO6IlG+LVCozO+IQXqko3cWMFaOe 0lvfDZbcJ+pfONsaInsSsje5wQ== -----END CERTIFICATE-----Generated at Sun Apr 19 09:31:27 2026 by rpki-client