$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: ChXJtChzklsF8QDKtlDAzmfHXZmAVr/RydLTnOui320= Subject key identifier: 46:47:4B:FC:2E:95:A4:4C:84:B4:17:77:D0:28:CA:FD:8D:EC:2C:1F Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: D0 Signing time: Wed 15 Apr 2026 06:23:41 +0000 Manifest this update: Wed 15 Apr 2026 06:23:41 +0000 Manifest next update: Wed 22 Apr 2026 06:23:41 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: JY0O6bWM0XyCdVmuKs8VyS3MkfAjVdh962b/MpTbShg=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: JXFvADq4YTaqaen/tnBh56vOg+t9TdkXrX7ZuGzAnPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Apr 15 06:23:41 2026 GMT Not After : Apr 22 06:23:41 2026 GMT Subject: CN=69df2eed-23d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:19:2d:0e:60:5b:2e:05:ec:8a:3b:51:76:84: d2:80:33:04:6d:7c:1e:b1:4a:ea:1d:2b:c9:0b:6a: f5:3c:5f:15:a9:00:8d:28:23:9d:75:16:14:fb:5e: fa:a6:25:55:93:a1:50:fd:cc:96:2b:9b:e7:ce:9f: e7:1a:51:47:1c:ba:55:ee:98:b2:b8:b7:00:b1:89: 23:6a:2c:37:01:31:09:6d:da:0d:aa:a2:39:78:60: 9c:c1:87:c1:38:20:36:48:b0:df:60:56:90:51:e8: 69:4e:ff:81:3c:f7:aa:21:1b:11:7b:86:8f:c3:8e: 10:b1:57:7b:d4:4f:80:08:c2:6e:10:38:b5:75:64: a3:39:53:de:f8:ec:f1:cb:ab:4b:b6:e0:12:e2:d9: 89:07:86:60:74:c2:05:a3:e1:0a:11:59:73:4d:e3: fe:86:23:af:53:21:41:ac:2a:e9:48:7d:fb:89:df: 0f:cc:92:2f:01:be:12:52:e8:f4:cb:15:c2:eb:96: 66:7c:99:a1:4c:e0:07:37:47:73:68:c6:49:06:be: ac:08:1c:76:09:25:b6:09:44:aa:13:09:40:eb:d0: 69:f0:a6:74:31:ef:b4:e6:d4:10:35:ec:36:4f:6b: 77:f6:52:11:26:ea:8b:86:af:62:81:a0:90:78:79: ba:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:47:4B:FC:2E:95:A4:4C:84:B4:17:77:D0:28:CA:FD:8D:EC:2C:1F X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:63:03:fe:3c:0c:51:3e:85:77:6e:da:4e:e2:8b:b4:e0:e7: eb:f0:11:e0:90:e0:16:f7:62:03:9b:41:74:90:26:80:83:db: f8:d0:8e:5d:88:7c:98:dc:27:93:7f:af:de:29:33:b1:55:5d: 2f:20:0e:26:00:5b:5a:91:2f:fa:d2:fd:da:ba:72:a1:7d:3a: f8:b4:46:7a:f9:58:ac:86:9d:93:88:0e:a1:6b:60:bc:11:38: af:4b:32:22:dd:45:4a:e3:68:93:56:75:50:cb:37:59:95:bf: bd:8f:d3:da:8c:6d:1d:ad:29:a9:35:02:ed:1e:a9:24:ae:73: f3:8e:33:ff:be:6c:f7:44:34:b6:1c:d1:8e:b5:ac:bf:0a:29: ff:08:3b:b3:ba:bc:4a:bc:e2:ca:92:dc:35:4d:2f:3a:e9:9a: c7:db:5e:24:0d:c9:be:8d:1a:45:bc:54:c0:45:b6:2b:42:79: 90:3b:95:88:54:95:d9:b9:9e:5c:00:bc:bf:2a:c9:54:25:b4: 4f:04:28:48:3d:be:f5:39:b1:36:12:49:91:34:f2:ea:0c:97: 74:59:9d:1e:a4:a7:3a:f2:84:fa:a3:85:0f:34:a7:bc:4d:76: 0e:32:37:48:10:5f:7e:ba:6e:89:a7:af:59:4d:67:2f:f9:d1: d4:d3:bd:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3RkMxMTAvBgNVBAUTKDg1NzUwN0YxRDhCMzkxNUM5NTEwRDUwNDcwMEVDRTg5 MEIwNjY4NUYwHhcNMjYwNDE1MDYyMzQxWhcNMjYwNDIyMDYyMzQxWjAYMRYwFAYD VQQDEw02OWRmMmVlZC0yM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBktDmBbLgXsijtRdoTSgDMEbXwesUrqHSvJC2r1PF8VqQCNKCOddRYU+176 piVVk6FQ/cyWK5vnzp/nGlFHHLpV7piyuLcAsYkjaiw3ATEJbdoNqqI5eGCcwYfB OCA2SLDfYFaQUehpTv+BPPeqIRsRe4aPw44QsVd71E+ACMJuEDi1dWSjOVPe+Ozx y6tLtuAS4tmJB4ZgdMIFo+EKEVlzTeP+hiOvUyFBrCrpSH37id8PzJIvAb4SUuj0 yxXC65ZmfJmhTOAHN0dzaMZJBr6sCBx2CSW2CUSqEwlA69Bp8KZ0Me+05tQQNew2 T2t39lIRJuqLhq9igaCQeHm6GwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEZHS/wu laRMhLQXd9Aoyv2N7CwfMB8GA1UdIwQYMBaAFIV1B/HYs5FclRDVBHAOzokLBmhf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdGQy9DNzNCQTE2NDAz QTcxMUYwQTdGRjlDODdDNEY5QUUwMi9oWFVIOGRpemtWeVZFTlVFY0E3T2lRc0dh RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdGQy9DNzNCQTE2NDAzQTcxMUYwQTdGRjlDODdDNEY5QUUwMi9oWFVIOGRpemtW eVZFTlVFY0E3T2lRc0dhRjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlGMD/jwMUT6Fd27aTuKLtODn6/AR4JDgFvdiA5tBdJAmgIPb+NCOXYh8mNwn k3+v3ikzsVVdLyAOJgBbWpEv+tL92rpyoX06+LRGevlYrIadk4gOoWtgvBE4r0sy It1FSuNok1Z1UMs3WZW/vY/T2oxtHa0pqTUC7R6pJK5z844z/75s90Q0thzRjrWs vwop/wg7s7q8SrziypLcNU0vOumax9teJA3Jvo0aRbxUwEW2K0J5kDuViFSV2bme XAC8vyrJVCW0TwQoSD2+9TmxNhJJkTTy6gyXdFmdHqSnOvKE+qOFDzSnvE12DjI3 SBBffrpuiaevWU1nL/nR1NO98w== -----END CERTIFICATE-----Generated at Fri Apr 17 07:05:34 2026 by rpki-client