$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft File: cLDwRtLzp0OW6Cx56OPazyYLOe4.mft (raw, json) Hash identifier: 5K5MdAnuCJWly5MoEwpeHGOshW2yNGlqmqi2F3ysZRU= Subject key identifier: F5:0F:62:83:05:A0:FA:9C:F0:17:1F:CA:EC:62:93:B5:15:AD:4A:CA Authority key identifier: 70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE Certificate issuer: /CN=A916B6AA/serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Certificate serial: 254D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft Manifest number: 2503 Signing time: Thu 16 Apr 2026 15:44:06 +0000 Manifest this update: Thu 16 Apr 2026 15:44:05 +0000 Manifest next update: Thu 23 Apr 2026 15:44:05 +0000 Files and hashes: 1: cLDwRtLzp0OW6Cx56OPazyYLOe4.crl (hash: 2QuNa0ncSZH9LI0TSK8/+NvIXoArLG4yR+Kq5/l4fUg=) 2: 19C92BC88DF311E7B616ED66C4F9AE02.roa (hash: +IkwJLutymOe9v3tylysd9fl5AOsxnKrdRtvPHuXuAw=) 3: B2ED9AEE913311E79B98C45BC4F9AE02.roa (hash: N9yj3pAAVs5m7SimFwaSce/DJ3a2aOwWL6WwhlLDDfs=) 4: 027532E6385F11EAA879692AC4F9AE02.roa (hash: zmQ9A/lcBUnjJnBlCqaFgeAg9dsA076fd2DTYjhD0KY=) 5: 5C9B073691CD11E7AD932563C4F9AE02.roa (hash: ywt3dHYNiuHbaJVB62YniE7qoiCCSqHfA23fnnqywh8=) 6: 83684F548DF411E7A230506DC4F9AE02.roa (hash: MUxckfSz9Vm7iQtZJ6qwGlxpqt//E4KlehICs43rvhI=) 7: 1A8324E28DF311E7B616ED66C4F9AE02.roa (hash: xPiIQYGhCGnM669LTO7uPzCNucP7Qj7zT3MtzGxRzjA=) 8: E080F3508DFC11E7A7F08785C4F9AE02.roa (hash: N/cJUWhUEKkKWK0CKRJr7DF4dmuct4+FW2hs6wmCMag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:44:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9549 (0x254d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Validity Not Before: Apr 16 15:44:05 2026 GMT Not After : Apr 23 15:44:05 2026 GMT Subject: CN=69e103c5-ac51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:47:19:1e:3f:e2:c2:03:70:3b:23:59:f7:fc: 47:84:91:47:49:f0:6b:04:29:3c:8f:84:41:af:1a: 2a:9f:d2:ea:46:13:1e:55:08:8c:3b:3f:88:a9:51: 40:96:df:f3:ad:db:15:55:25:3f:bc:bf:d9:95:2c: d3:6b:f4:9c:eb:e4:84:28:0b:e3:0b:23:b2:e8:8a: 34:87:07:2c:f4:b7:2c:e5:e5:5e:2c:54:ee:76:97: a3:fb:5a:da:ee:1a:57:03:a9:ea:0e:de:8a:47:fd: 96:e4:6f:ba:71:8d:38:b8:09:f0:7c:56:54:4e:98: c1:fa:7e:a7:eb:51:d3:b0:80:0e:28:23:6a:c9:89: 24:cd:22:2c:29:39:6d:ae:d2:25:1a:64:43:a2:58: 04:c9:4d:55:bb:7b:6b:ea:82:37:6a:1f:e2:b8:26: 6e:00:66:48:91:ad:fd:cf:29:39:45:96:29:d3:1d: df:5c:b5:64:52:bf:1d:d0:ac:c8:89:49:86:00:05: ac:41:12:7f:05:f0:0c:e9:1c:69:e4:37:81:39:84: 39:d7:78:6e:50:84:62:c0:5b:99:0a:8d:4e:51:0d: e5:37:9d:34:da:61:88:42:7e:cd:21:96:bc:5e:93: 6a:bd:b3:56:67:00:9a:3a:57:1d:09:01:6c:48:ce: 5f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0F:62:83:05:A0:FA:9C:F0:17:1F:CA:EC:62:93:B5:15:AD:4A:CA X509v3 Authority Key Identifier: keyid:70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:1d:3e:26:da:79:dd:cf:4e:08:ce:7a:6c:69:49:84:b0:cb: 6d:cd:aa:74:d7:df:43:f7:37:55:8b:ca:64:f4:3c:ac:28:fd: f1:30:33:bd:95:c8:52:f3:9a:ea:b9:26:c7:dd:56:b2:be:5a: 38:23:77:a5:3b:79:88:99:c7:09:65:38:a8:11:0a:a8:d8:66: c9:e7:c8:2d:56:19:3c:6a:9a:cd:cc:85:a4:0d:7a:e7:f3:39: 51:45:66:83:83:fc:27:43:5e:21:8e:40:68:3b:99:0f:f3:0a: ad:c9:33:c0:50:94:6b:fa:3e:3d:33:88:8c:b7:3b:e9:72:f5: c4:3c:03:7a:38:ba:01:df:8c:44:1d:36:de:6b:73:fb:84:72: 90:5f:23:cd:42:ee:3b:7a:f7:6c:4c:72:28:39:6b:10:a6:86: 3c:9c:2f:99:d2:71:52:7d:07:74:c5:ac:55:09:4a:db:d2:2f: 95:d2:02:78:48:09:ea:c7:c3:ce:58:cc:1f:8f:3e:66:d4:aa: d4:57:47:ab:f6:9b:55:08:3f:33:a3:51:31:5b:a1:b7:48:71: 16:90:3d:28:8a:a0:2e:ea:61:a5:f9:33:28:4f:e8:de:27:2e: f3:29:57:89:94:2e:29:8b:b7:d7:0e:d9:93:f8:86:17:0b:4e: 02:35:c5:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKDcwQjBGMDQ2RDJGM0E3NDM5NkU4MkM3OUU4RTNEQUNG MjYwQjM5RUUwHhcNMjYwNDE2MTU0NDA1WhcNMjYwNDIzMTU0NDA1WjAYMRYwFAYD VQQDEw02OWUxMDNjNS1hYzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EcZHj/iwgNwOyNZ9/xHhJFHSfBrBCk8j4RBrxoqn9LqRhMeVQiMOz+IqVFA lt/zrdsVVSU/vL/ZlSzTa/Sc6+SEKAvjCyOy6Io0hwcs9Lcs5eVeLFTudpej+1ra 7hpXA6nqDt6KR/2W5G+6cY04uAnwfFZUTpjB+n6n61HTsIAOKCNqyYkkzSIsKTlt rtIlGmRDolgEyU1Vu3tr6oI3ah/iuCZuAGZIka39zyk5RZYp0x3fXLVkUr8d0KzI iUmGAAWsQRJ/BfAM6Rxp5DeBOYQ513huUIRiwFuZCo1OUQ3lN5002mGIQn7NIZa8 XpNqvbNWZwCaOlcdCQFsSM5fZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPUPYoMF oPqc8Bcfyuxik7UVrUrKMB8GA1UdIwQYMBaAFHCw8EbS86dDlugseejj2s8mCznu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS80NkM3RjE3MjRG MTYxMUU1OEQyQTMzMjdDNEY5QUUwMi9jTER3UnRMenAwT1c2Q3g1Nk9QYXp5WUxP ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMRHdSdEx6cDBPVzZDeDU2T1BhenlZTE9lNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS80NkM3RjE3MjRGMTYxMUU1OEQyQTMzMjdDNEY5QUUwMi9jTER3UnRMenAw T1c2Q3g1Nk9QYXp5WUxPZTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZB0+Jtp53c9OCM56bGlJhLDLbc2qdNffQ/c3VYvKZPQ8rCj98TAzvZXIUvOa 6rkmx91Wsr5aOCN3pTt5iJnHCWU4qBEKqNhmyefILVYZPGqazcyFpA165/M5UUVm g4P8J0NeIY5AaDuZD/MKrckzwFCUa/o+PTOIjLc76XL1xDwDeji6Ad+MRB023mtz +4RykF8jzULuO3r3bExyKDlrEKaGPJwvmdJxUn0HdMWsVQlK29IvldICeEgJ6sfD zljMH48+ZtSq1FdHq/abVQg/M6NRMVuht0hxFpA9KIqgLuphpfkzKE/o3icu8ylX iZQuKYu31w7Zk/iGFwtOAjXFdg== -----END CERTIFICATE-----Generated at Fri Apr 17 10:12:14 2026 by rpki-client