$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: P07Jgubl+pKE4zpYG2yTRp/6whA12tR+ZhVpby7YDGQ= Subject key identifier: D3:76:4F:70:09:14:26:19:F9:70:79:A5:4F:76:47:10:D0:39:DD:2D Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 0248 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 0242 Signing time: Fri 17 Apr 2026 02:14:25 +0000 Manifest this update: Fri 17 Apr 2026 02:14:25 +0000 Manifest next update: Fri 24 Apr 2026 02:14:25 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: sGHqLclMRmoptZ0tqbRQzEOI11KeGx0Kg5gNrZhQk5w=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: VUhX4V+uuAXCvJJx8gbFvjg2DTFUtnIh9VNRCqvzwQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 584 (0x248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E, serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Apr 17 02:14:25 2026 GMT Not After : Apr 24 02:14:25 2026 GMT Subject: CN=69e19781-04e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0a:03:e8:4a:10:3c:fb:f3:c0:f6:1b:07:4a: 74:3c:fa:b1:38:90:91:0f:c2:51:09:87:eb:07:a5: 24:a3:39:97:fc:93:09:6a:a2:66:a1:4f:93:ed:74: 9f:f6:31:0f:f3:a0:f1:a9:d1:30:1c:72:41:31:21: 58:1c:a1:0f:07:e9:b5:6c:b2:87:85:60:03:05:e4: da:4f:cc:b8:06:da:21:36:29:19:35:6b:b8:d4:7e: d9:26:8c:5b:5a:fa:63:7f:9b:07:4e:c4:f6:df:9a: 03:8f:46:ed:63:85:1d:11:16:1c:5a:c3:8d:71:92: 88:37:1e:62:88:2c:d4:92:f5:04:5b:10:cd:1b:ee: 9d:3a:44:11:ac:8c:83:56:45:50:9a:57:12:12:ff: 05:80:11:62:61:2d:88:bd:75:f4:19:e0:f3:cb:7b: 34:68:dc:af:7d:25:b3:32:a0:27:f5:51:c1:de:f1: 95:0b:26:30:1c:f8:44:23:23:14:1e:4a:8e:c4:78: e4:03:d8:69:a6:1d:4f:74:db:80:a4:2d:84:5c:4b: dd:12:2e:ed:d5:be:82:48:4c:b1:0e:1d:46:b3:4d: a5:f4:dc:6a:90:e9:17:be:53:0a:59:8f:d3:27:fd: 99:a3:a9:eb:d6:95:fc:f4:5b:46:4e:69:6b:49:11: 0b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:76:4F:70:09:14:26:19:F9:70:79:A5:4F:76:47:10:D0:39:DD:2D X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:b1:94:c3:bf:7d:6f:96:d4:b7:8b:2a:ca:92:6b:13:d2:24: da:73:7f:1e:06:c6:32:85:b3:b3:4e:78:6d:de:e4:8e:55:ae: 36:41:9b:42:8a:6b:d7:0f:d3:59:5f:a9:a0:ec:88:d1:20:35: 57:3a:b3:f0:42:6e:fd:28:eb:b3:27:91:a6:a4:5f:41:36:18: 4a:65:ce:77:d8:9e:35:33:c3:b9:fa:a7:7b:f0:39:5f:4b:a1: cf:76:99:2b:ef:8b:48:27:60:3d:15:1f:a7:69:d4:ce:9e:50: 82:7c:21:9f:ce:f0:3d:92:5d:1f:f4:83:39:66:b3:5f:ab:4a: 96:4f:4e:f0:3c:99:35:13:e5:a4:f6:43:80:5e:05:d3:ec:48: 0a:39:f0:b1:eb:54:87:59:d9:de:02:9b:31:13:29:7f:ed:fb: 96:20:26:b9:d2:00:f1:a2:d1:12:3f:ca:82:2a:76:19:51:d7: fa:b3:9b:99:70:a9:42:a2:c6:d5:3c:a6:16:51:cf:cf:3e:d4: 3f:5e:55:f5:28:06:14:e9:d4:38:03:b1:59:14:9e:41:e9:30: dc:50:3a:92:1b:b5:6a:9b:d6:38:ae:62:5b:85:7b:b4:fa:95: e2:07:05:28:c8:bc:c4:06:6b:cb:29:56:bf:33:d1:c3:02:68: 34:3d:52:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjYwNDE3MDIxNDI1WhcNMjYwNDI0MDIxNDI1WjAYMRYwFAYD VQQDEw02OWUxOTc4MS0wNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAoD6EoQPPvzwPYbB0p0PPqxOJCRD8JRCYfrB6UkozmX/JMJaqJmoU+T7XSf 9jEP86DxqdEwHHJBMSFYHKEPB+m1bLKHhWADBeTaT8y4BtohNikZNWu41H7ZJoxb Wvpjf5sHTsT235oDj0btY4UdERYcWsONcZKINx5iiCzUkvUEWxDNG+6dOkQRrIyD VkVQmlcSEv8FgBFiYS2IvXX0GeDzy3s0aNyvfSWzMqAn9VHB3vGVCyYwHPhEIyMU HkqOxHjkA9hpph1PdNuApC2EXEvdEi7t1b6CSEyxDh1Gs02l9NxqkOkXvlMKWY/T J/2Zo6nr1pX89FtGTmlrSREL9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNN2T3AJ FCYZ+XB5pU92RxDQOd0tMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU7GUw799b5bUt4sqypJrE9Ik2nN/HgbGMoWzs054bd7kjlWuNkGbQopr1w/T WV+poOyI0SA1Vzqz8EJu/SjrsyeRpqRfQTYYSmXOd9ieNTPDufqne/A5X0uhz3aZ K++LSCdgPRUfp2nUzp5Qgnwhn87wPZJdH/SDOWazX6tKlk9O8DyZNRPlpPZDgF4F 0+xICjnwsetUh1nZ3gKbMRMpf+37liAmudIA8aLREj/Kgip2GVHX+rObmXCpQqLG 1TymFlHPzz7UP15V9SgGFOnUOAOxWRSeQekw3FA6khu1apvWOK5iW4V7tPqV4gcF KMi8xAZryylWvzPRwwJoND1SfA== -----END CERTIFICATE-----Generated at Fri Apr 17 13:25:44 2026 by rpki-client