$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: wQubiO++AzVHiduIc7R/Q3ndxpnaVndGYzAT6OM6Ep4= Subject key identifier: C2:83:16:BA:1A:8A:13:BB:78:AF:AB:F9:B0:63:F8:89:37:05:B6:69 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 0450 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 043E Signing time: Fri 17 Apr 2026 00:10:02 +0000 Manifest this update: Fri 17 Apr 2026 00:10:02 +0000 Manifest next update: Fri 24 Apr 2026 00:10:02 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: 7xPvreJHBGd8bVQC9RPA0yJYF2yZdcqW8YQPvcnrVIk=) 2: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: 8IoFb/TuJGa8f+hLPDSGTarCT7mkVKZq9W7cRCzmXZc=) 3: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: wPvXbMRDdeZ16YQAsG5yxXC1oVke0Is094fp9Wnssro=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: X5PDT1MbgloBsVHEEErT26cO3WdhXztNkcjjEpdBJNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1104 (0x450) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Apr 17 00:10:02 2026 GMT Not After : Apr 24 00:10:02 2026 GMT Subject: CN=69e17a5a-19a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:f5:1f:9a:e3:05:a2:01:18:08:6c:18:4c: 8b:7f:15:26:ba:65:ca:cf:07:ab:0d:42:59:1f:5b: aa:14:47:c7:a1:1d:b5:c3:2a:c9:5a:2f:76:df:d9: 83:db:a5:06:9a:a7:7d:80:7c:07:5e:fd:2c:af:63: db:36:56:a3:81:27:f0:0b:36:e4:4c:70:f1:93:f9: 13:a3:15:7c:b5:ed:81:58:61:f7:fa:e3:ca:4b:ef: b0:b4:52:49:c3:f3:07:6c:94:7d:74:0a:d6:fd:ea: d7:71:e2:1f:8f:29:09:ed:c8:ec:dd:81:60:bb:64: 0c:a0:d7:0e:f8:83:b1:90:cc:2d:4c:72:1b:e5:0d: 4c:57:3e:fa:99:bb:13:40:54:5c:36:36:82:f1:39: bf:b5:49:6a:9e:12:49:d5:e0:d8:25:f5:11:f5:4c: 3f:4c:b5:00:67:ed:8d:34:2c:05:d9:be:ab:aa:0b: e8:23:90:96:7e:4a:c5:9c:9a:43:76:bd:48:9f:41: bf:6c:90:95:0a:51:ab:15:6c:4b:fd:18:63:26:2b: 36:75:52:8f:d1:19:e0:ee:84:5b:9e:94:8b:c7:76: ab:cd:32:c3:6a:3d:cd:ca:bf:6d:98:39:46:38:77: cb:78:30:a2:4e:e9:5d:66:15:69:b6:a3:c7:ed:71: 4c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:83:16:BA:1A:8A:13:BB:78:AF:AB:F9:B0:63:F8:89:37:05:B6:69 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:50:02:ab:14:33:c6:d8:41:af:d2:eb:23:07:48:5e:f7:2b: 43:70:ff:18:ee:8c:20:02:0e:3e:eb:c1:5b:dd:c9:27:5f:70: fb:20:49:2e:b2:9d:01:ca:8d:d6:7a:04:64:7a:a2:08:07:85: bb:24:15:df:ad:63:a2:34:5a:2f:b4:b5:c1:aa:de:77:30:0f: 8e:68:62:cd:43:e5:6c:81:b5:ba:74:18:78:7f:3b:c3:cb:28: f9:a4:99:7d:87:05:9c:ab:ba:b0:9a:60:84:00:31:e8:df:f2: c0:36:9d:a2:88:be:d4:16:35:09:3d:db:fe:7f:7e:28:ce:8c: fb:57:e2:65:01:29:e4:f2:32:24:9f:b7:8e:61:62:c1:d6:c8: 93:d6:a2:b5:e1:b6:21:5e:2e:85:5b:2d:23:f0:35:65:14:05: 8e:06:20:29:f5:a0:af:c4:04:20:69:53:87:89:05:6b:7d:6c: c3:9c:5b:33:74:a3:85:10:fc:ac:ff:50:7a:af:90:c3:69:bc: 16:66:d4:6d:20:6a:c6:5c:14:a8:5b:a0:9f:8f:40:79:22:cf: 2e:60:f5:e8:a3:04:91:e6:c2:42:fc:86:4e:e2:22:5a:50:15: fe:65:d2:ea:b7:33:ed:ff:be:9d:e3:d4:c8:b1:0c:ec:1b:8c: b3:2b:7c:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjYwNDE3MDAxMDAyWhcNMjYwNDI0MDAxMDAyWjAYMRYwFAYD VQQDEw02OWUxN2E1YS0xOWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqb1H5rjBaIBGAhsGEyLfxUmumXKzwerDUJZH1uqFEfHoR21wyrJWi9239mD 26UGmqd9gHwHXv0sr2PbNlajgSfwCzbkTHDxk/kToxV8te2BWGH3+uPKS++wtFJJ w/MHbJR9dArW/erXceIfjykJ7cjs3YFgu2QMoNcO+IOxkMwtTHIb5Q1MVz76mbsT QFRcNjaC8Tm/tUlqnhJJ1eDYJfUR9Uw/TLUAZ+2NNCwF2b6rqgvoI5CWfkrFnJpD dr1In0G/bJCVClGrFWxL/RhjJis2dVKP0Rng7oRbnpSLx3arzTLDaj3Nyr9tmDlG OHfLeDCiTuldZhVptqPH7XFMbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMKDFroa ihO7eK+r+bBj+Ik3BbZpMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOlACqxQzxthBr9LrIwdIXvcrQ3D/GO6MIAIOPuvBW93JJ19w+yBJLrKdAcqN 1noEZHqiCAeFuyQV361jojRaL7S1waredzAPjmhizUPlbIG1unQYeH87w8so+aSZ fYcFnKu6sJpghAAx6N/ywDadooi+1BY1CT3b/n9+KM6M+1fiZQEp5PIyJJ+3jmFi wdbIk9aiteG2IV4uhVstI/A1ZRQFjgYgKfWgr8QEIGlTh4kFa31sw5xbM3SjhRD8 rP9Qeq+Qw2m8FmbUbSBqxlwUqFugn49AeSLPLmD16KMEkebCQvyGTuIiWlAV/mXS 6rcz7f++nePUyLEM7BuMsyt8NA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:33:25 2026 by rpki-client