$ rpki-client -vvf rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft File: H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft (raw, json) Hash identifier: Qy1+atgoWa9KUC4ZELz9S3BcFR22DP4DGb6vGOVjWK4= Subject key identifier: BF:68:3A:09:F6:B2:99:D4:E5:C0:3F:FD:58:3F:3C:1D:46:80:A2:A3 Authority key identifier: 1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF Certificate issuer: /CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Certificate serial: 297B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft Manifest number: 28FE Signing time: Thu 16 Apr 2026 15:34:25 +0000 Manifest this update: Thu 16 Apr 2026 15:34:24 +0000 Manifest next update: Thu 23 Apr 2026 15:34:24 +0000 Files and hashes: 1: H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl (hash: PJg5CtaLND1xZQDLBIRzDImuIGh8IFdTR4UaaW/gglY=) 2: 57D5BBF870F211F086293675C4F9AE02.roa (hash: DeKhzeI6csoLVB/N7GeSeQ/TlM+YbpCUPGuUuLwXV4E=) 3: 4B65B208288F11EFB3C88742C4F9AE02.roa (hash: e8QtZE9yszuYCxHhJN7AlKtSnjkZn1yLygAtwcSvRbk=) 4: 7F3D1128DC7811EFA7D7DB49C4F9AE02.roa (hash: 9cZ6L/GPvQKK4pJ4l7g4uN4OgEx5HSReU5gKVwtDiRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10619 (0x297b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A447, serialNumber=1F68258C526C5DBC715434357D380020146440EF Validity Not Before: Apr 16 15:34:24 2026 GMT Not After : Apr 23 15:34:24 2026 GMT Subject: CN=69e10181-53b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:1b:97:fb:df:14:bf:f8:38:16:6a:e8:b4: 35:56:83:aa:f9:dd:1d:f1:14:53:b9:a7:b1:0a:ef: c9:99:32:a9:9c:af:ef:6a:57:31:e8:68:c7:81:57: 9b:e1:eb:a9:00:36:c3:d2:bd:55:4f:4b:da:50:c7: 3d:3a:36:d3:a1:a3:48:fa:b9:89:fe:4f:d4:6d:90: 0f:88:35:d5:fe:25:99:be:56:48:be:ec:b9:68:db: 32:7a:cf:82:d8:b2:f9:aa:ac:a0:da:65:44:eb:ff: 56:30:84:f8:c5:eb:db:08:95:81:8d:2b:b5:6b:72: ea:ae:50:b8:e7:2e:29:f0:69:9c:d8:58:22:53:ef: a1:ae:4e:2c:3f:88:6f:22:8e:f5:a3:f7:6b:ac:ac: 2f:aa:f6:35:7d:b3:5e:57:fc:38:b6:5c:20:79:44: 39:4f:08:70:5c:0b:07:9c:46:2b:7f:15:6b:71:bd: fb:55:0d:83:f3:63:cd:c0:0c:4b:b7:41:48:76:c2: 50:3d:45:1f:1c:d9:30:b3:28:33:06:1b:23:63:de: c9:ac:90:9b:c3:e5:fd:a2:3b:ad:53:fb:f6:ac:c2: 56:49:8b:f2:4f:31:09:77:7e:9f:65:65:b5:06:28: 9f:c6:de:0e:25:db:43:7f:a5:a7:30:36:f5:2e:b9: f3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:68:3A:09:F6:B2:99:D4:E5:C0:3F:FD:58:3F:3C:1D:46:80:A2:A3 X509v3 Authority Key Identifier: keyid:1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:45:86:16:d2:01:1a:00:b0:dd:86:6e:01:4e:f1:35:09:31: 38:e9:58:9b:91:f9:53:46:e3:7e:f9:f1:d7:bc:06:16:c9:af: 19:49:e1:56:34:03:13:e3:5c:8e:2e:76:71:d3:d4:f3:34:df: d2:71:40:cf:81:19:e6:6c:e8:e1:2d:31:42:3a:b0:e3:a8:33: cd:3d:93:a5:90:0e:21:c0:66:82:ee:69:a7:08:3f:63:ac:1d: a1:da:eb:76:91:e3:73:9e:64:21:23:ef:30:e9:5b:ab:cc:ea: 18:48:d2:c8:ac:a1:34:d7:28:8a:e3:11:42:b2:88:10:dd:e0: 6b:3e:f3:d5:13:27:91:35:4b:20:84:7d:93:bc:da:59:f2:1c: cd:11:1c:5c:20:d2:13:fa:42:e7:59:be:6e:67:57:64:f9:af: 29:a3:19:eb:99:3d:26:15:55:cb:5c:c9:dd:73:5e:69:f9:23: e1:79:58:e0:7d:4a:7c:c3:35:fc:c6:22:58:bc:71:46:80:83: 61:d4:2f:2a:8c:c8:34:ea:ea:0c:e2:b3:06:7b:d0:d7:9e:f5: 5d:bb:97:1d:03:b8:1b:be:7f:68:d0:57:b3:41:b2:e7:36:f2: f9:19:45:64:2c:a4:9a:be:20:5e:ba:96:94:33:c3:b9:cb:a6: cb:6f:1e:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE0NDcxMTAvBgNVBAUTKDFGNjgyNThDNTI2QzVEQkM3MTU0MzQzNTdEMzgwMDIw MTQ2NDQwRUYwHhcNMjYwNDE2MTUzNDI0WhcNMjYwNDIzMTUzNDI0WjAYMRYwFAYD VQQDEw02OWUxMDE4MS01M2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqEbl/vfFL/4OBZq6LQ1VoOq+d0d8RRTuaexCu/JmTKpnK/valcx6GjHgVeb 4eupADbD0r1VT0vaUMc9OjbToaNI+rmJ/k/UbZAPiDXV/iWZvlZIvuy5aNsyes+C 2LL5qqyg2mVE6/9WMIT4xevbCJWBjSu1a3LqrlC45y4p8Gmc2FgiU++hrk4sP4hv Io71o/drrKwvqvY1fbNeV/w4tlwgeUQ5TwhwXAsHnEYrfxVrcb37VQ2D82PNwAxL t0FIdsJQPUUfHNkwsygzBhsjY97JrJCbw+X9ojutU/v2rMJWSYvyTzEJd36fZWW1 Biifxt4OJdtDf6WnMDb1LrnzfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL9oOgn2 spnU5cA//Vg/PB1GgKKjMB8GA1UdIwQYMBaAFB9oJYxSbF28cVQ0NX04ACAUZEDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTQ0Ny9EMjA3NTgxNEEw OUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hieHhWRFExZlRnQUlCUmtR TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyZ2xqRkpzWGJ4eFZEUTFmVGdBSUJSa1FPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTQ0Ny9EMjA3NTgxNEEwOUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hi eHhWRFExZlRnQUlCUmtRTzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN0WGFtIBGgCw3YZuAU7xNQkxOOlYm5H5U0bjfvnx17wGFsmvGUnhVjQDE+Nc ji52cdPU8zTf0nFAz4EZ5mzo4S0xQjqw46gzzT2TpZAOIcBmgu5ppwg/Y6wdodrr dpHjc55kISPvMOlbq8zqGEjSyKyhNNcoiuMRQrKIEN3gaz7z1RMnkTVLIIR9k7za WfIczREcXCDSE/pC51m+bmdXZPmvKaMZ65k9JhVVy1zJ3XNeafkj4XlY4H1KfMM1 /MYiWLxxRoCDYdQvKozINOrqDOKzBnvQ1571XbuXHQO4G75/aNBXs0Gy5zby+RlF ZCykmr4gXrqWlDPDucumy28eYw== -----END CERTIFICATE-----Generated at Fri Apr 17 13:42:16 2026 by rpki-client