$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft File: 8kxEMhD3QcvlnQFOum7pcrXN2uc.mft (raw, json) Hash identifier: lizxGm3kRhnTnL+oyMT7L+1QIDwvxfSrn6nIlrSvE38= Subject key identifier: 84:41:28:F4:42:BC:20:C0:9C:07:DB:DC:4A:BA:6E:3A:4E:A6:A5:95 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft Manifest number: 0154 Signing time: Tue 21 Apr 2026 04:50:17 +0000 Manifest this update: Tue 21 Apr 2026 04:50:16 +0000 Manifest next update: Tue 28 Apr 2026 04:50:16 +0000 Files and hashes: 1: 8kxEMhD3QcvlnQFOum7pcrXN2uc.crl (hash: HjS+slWZxWpEKdbPzfYQzSUef1LHzMm3Gt1IswAO8Mc=) 2: 2117AE6E37AF11EF844EC638C4F9AE02.roa (hash: fXNyTYwGL5hwQV4+C/rGk2vU+rMPw5B8cRLeFXzc6ZM=) 3: 20A6C35C37AF11EF844EC638C4F9AE02.roa (hash: EdoKG/rO2TUcNqvrT3rmtowwCMBDjmlbd0wrAkkItCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Apr 21 04:50:16 2026 GMT Not After : Apr 28 04:50:16 2026 GMT Subject: CN=69e70209-1098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3d:68:8a:14:a6:9b:82:b6:66:b7:05:68:b7: 5c:a4:7f:ce:b9:c5:a3:fa:d8:f8:e7:fb:eb:fe:ee: b0:d8:76:16:a0:a5:2b:1d:52:52:16:1a:8a:69:ad: f4:99:cb:e8:a0:f6:60:f2:64:df:e9:90:98:8a:b8: 34:ce:d3:2e:22:90:34:16:f9:aa:04:6d:87:bc:45: a6:99:2c:d7:b7:5c:63:7d:5d:1c:3a:72:08:af:59: 90:42:d8:41:27:23:8e:5a:13:a1:18:16:3f:a8:8d: 3d:b0:c5:15:6d:c0:8b:e4:4c:91:5c:88:12:a0:9d: 07:8f:46:e3:03:8f:eb:34:4c:6f:02:9a:e5:35:4a: 86:3a:aa:3e:24:3d:7f:91:a1:00:18:0d:cd:cb:26: df:e8:fa:0b:2e:d4:1e:f5:24:62:0e:41:63:43:34: 59:54:e0:b3:db:73:19:2d:3a:70:ee:6d:71:b1:c2: 5a:ef:2c:ef:c4:16:05:17:52:fd:d3:58:c5:a0:40: 44:92:23:5a:41:a8:03:55:62:86:48:4b:68:7c:f5: 95:06:a6:23:a0:30:51:fb:1f:58:f8:ba:08:1c:11: d6:93:2d:32:02:bb:49:ee:4f:64:2d:59:b8:50:e8: ad:e7:64:19:3e:07:f3:23:f0:37:4c:9e:69:bd:dd: b3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:41:28:F4:42:BC:20:C0:9C:07:DB:DC:4A:BA:6E:3A:4E:A6:A5:95 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:e8:18:6d:ae:29:5c:42:6f:d8:d1:98:ae:c3:ec:89:e4:26: 83:20:97:27:38:3e:a7:e7:a3:d4:bc:7b:d6:2e:88:79:7c:1e: 82:c6:af:ab:bf:cf:cd:15:ee:5e:bb:d3:44:3a:f4:8d:cd:50: 91:6b:5a:ce:fc:f4:76:56:09:57:45:f9:22:1a:32:a6:53:5c: 62:93:71:08:a1:55:15:fc:6c:b9:02:67:9b:e6:4c:a6:3a:ef: aa:85:cf:08:01:9b:3e:c3:3a:eb:27:34:d7:1f:a3:72:3c:85: ce:df:17:56:37:de:ee:f1:05:db:e0:fa:01:e5:ff:d5:fb:18: 01:90:07:aa:2d:9f:8c:f2:6a:15:8a:69:43:c3:69:45:b8:ae: 78:b9:06:08:cf:d3:9d:3a:9b:a4:27:85:e8:cd:0d:6b:8f:0b: de:54:46:cd:a9:6f:93:b6:4b:1c:12:51:ad:bf:c6:95:da:bc: 81:ea:8c:37:f5:16:cd:49:f5:80:4d:28:61:8f:e9:ab:30:e0: bd:88:b8:29:fc:55:b3:23:44:fa:ba:b8:f2:22:ef:40:ba:d5: 11:6b:d2:55:57:ec:eb:53:14:60:a4:7d:7e:68:ee:f6:e0:ad: 1a:6b:c0:34:25:76:85:8f:aa:aa:52:7a:6e:12:96:bc:30:e8: 9e:46:0e:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjYwNDIxMDQ1MDE2WhcNMjYwNDI4MDQ1MDE2WjAYMRYwFAYD VQQDEw02OWU3MDIwOS0xMDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0T1oihSmm4K2ZrcFaLdcpH/OucWj+tj45/vr/u6w2HYWoKUrHVJSFhqKaa30 mcvooPZg8mTf6ZCYirg0ztMuIpA0FvmqBG2HvEWmmSzXt1xjfV0cOnIIr1mQQthB JyOOWhOhGBY/qI09sMUVbcCL5EyRXIgSoJ0Hj0bjA4/rNExvAprlNUqGOqo+JD1/ kaEAGA3Nyybf6PoLLtQe9SRiDkFjQzRZVOCz23MZLTpw7m1xscJa7yzvxBYFF1L9 01jFoEBEkiNaQagDVWKGSEtofPWVBqYjoDBR+x9Y+LoIHBHWky0yArtJ7k9kLVm4 UOit52QZPgfzI/A3TJ5pvd2z9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIRBKPRC vCDAnAfb3Eq6bjpOpqWVMB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81MTJDNzA1RTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1Fj dmxuUUZPdW03cGNyWE4ydWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoegYba4pXEJv2NGYrsPsieQmgyCXJzg+p+ej1Lx71i6IeXwegsavq7/PzRXu XrvTRDr0jc1QkWtazvz0dlYJV0X5IhoyplNcYpNxCKFVFfxsuQJnm+ZMpjrvqoXP CAGbPsM66yc01x+jcjyFzt8XVjfe7vEF2+D6AeX/1fsYAZAHqi2fjPJqFYppQ8Np RbiueLkGCM/TnTqbpCeF6M0Na48L3lRGzalvk7ZLHBJRrb/Gldq8geqMN/UWzUn1 gE0oYY/pqzDgvYi4KfxVsyNE+rq48iLvQLrVEWvSVVfs61MUYKR9fmju9uCtGmvA NCV2hY+qqlJ6bhKWvDDonkYOlw== -----END CERTIFICATE-----Generated at Tue Apr 21 10:02:23 2026 by rpki-client