$ rpki-client -vvf rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft File: 433E2CR2A-hIwAZsRFuc2NpzUNY.mft (raw, json) Hash identifier: fLwUKUAqDuBYWSl9xjosCwkgTK8ZGdc4ei4LUKTof74= Subject key identifier: 58:56:4F:D0:12:A7:90:76:29:7A:5A:B6:9E:5D:EC:28:2B:A5:7D:87 Authority key identifier: E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6 Certificate issuer: /CN=A916C8F2/serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft Manifest number: 99 Signing time: Wed 15 Apr 2026 06:59:29 +0000 Manifest this update: Wed 15 Apr 2026 06:59:29 +0000 Manifest next update: Wed 22 Apr 2026 06:59:29 +0000 Files and hashes: 1: 433E2CR2A-hIwAZsRFuc2NpzUNY.crl (hash: JtWDAxMFrKRjQGzDOhRt7SAUsYSlNYQ5FNBpAtcgV2s=) 2: 730C503A56C611F096620043C4F9AE02.roa (hash: 0O+T5p2u9RjCzYCInOpadN0gyJxBbnecFtZNvwYOPBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C8F2, serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6 Validity Not Before: Apr 15 06:59:29 2026 GMT Not After : Apr 22 06:59:29 2026 GMT Subject: CN=69df3751-c3e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:36:6c:cc:12:8e:c2:cf:ae:fb:3e:9e:ff: 20:80:22:b4:ba:b1:08:20:0d:04:91:09:a6:0f:93: 90:b5:85:d7:b7:61:6f:c2:22:8e:85:07:c5:ac:70: c8:8a:df:75:68:b5:00:45:10:a4:67:60:cf:25:a0: c5:ec:55:6a:f3:f8:f2:87:07:41:2a:b1:6f:05:5a: c2:7b:6e:47:ef:f7:d6:27:cd:57:48:da:5a:96:47: cd:a2:d9:85:7f:7f:34:31:79:5a:0d:83:ec:80:0b: 98:b2:e5:74:90:93:da:04:66:24:9e:e6:c1:36:84: 00:62:28:06:a8:69:f2:a4:13:cf:02:15:1a:2b:09: 0a:92:8e:1f:e4:a4:ba:23:90:13:dd:95:aa:4c:72: 58:58:88:74:df:a3:e2:f9:dc:17:d7:46:e4:57:89: 07:57:fb:b5:8b:9d:83:4d:34:54:04:84:80:75:af: fd:87:b5:b8:20:a5:7e:34:59:8c:d7:77:b3:79:e1: a9:d0:47:21:80:f5:17:54:6e:83:7b:4b:d3:c9:89: 50:1d:04:97:89:57:ad:70:8e:e5:f4:36:08:21:4f: a9:6e:eb:5f:b0:85:75:da:2f:34:c0:ef:82:63:09: 1d:63:c6:db:41:7e:d2:da:9b:04:eb:2f:ca:16:84: 85:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:56:4F:D0:12:A7:90:76:29:7A:5A:B6:9E:5D:EC:28:2B:A5:7D:87 X509v3 Authority Key Identifier: keyid:E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f1:50:61:62:16:b7:84:17:a1:c1:99:47:8a:1f:9f:9e:1e: a8:18:d3:43:f8:68:1c:c5:6d:cd:a1:5b:b7:9a:be:40:48:2a: 10:cb:77:f7:0f:58:66:64:3c:2d:56:cb:fd:a5:ec:7a:46:6f: a4:fd:6f:99:bb:04:35:41:18:7c:c1:65:3b:90:df:30:2e:51: 0b:f3:4b:f2:70:33:f6:35:d6:a1:00:eb:ea:9d:38:c5:90:d4: 1e:e5:48:a1:e9:d9:90:38:75:c1:e1:59:75:00:c2:a8:a2:15: 9b:af:d8:15:44:19:d5:99:2c:8c:44:e0:c6:32:67:05:97:2d: ba:15:68:fc:fa:ca:3a:c3:a6:33:d0:75:18:18:d7:0b:34:6d: 38:f2:0d:fc:d0:91:8a:da:be:8b:70:2e:23:11:2c:56:38:6f: 3f:28:64:73:89:31:52:a1:ca:f4:43:3a:b1:e9:97:ba:a0:90: d5:ef:ab:e9:d9:13:e8:12:85:0b:9f:36:4c:85:62:f5:ce:e5: e9:62:74:a0:4c:5d:9b:18:24:47:52:1d:8c:1d:73:0d:ba:1c: d5:79:ef:ca:3d:de:17:2d:e1:71:be:0c:8f:93:c3:43:a7:b4: b3:bf:18:ec:00:c9:36:fa:55:95:d1:b5:0e:4c:b0:b1:c3:39: dc:5f:2d:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4RjIxMTAvBgNVBAUTKEUzN0RDNEQ4MjQ3NjAzRTg0OEMwMDY2QzQ0NUI5Q0Q4 REE3MzUwRDYwHhcNMjYwNDE1MDY1OTI5WhcNMjYwNDIyMDY1OTI5WjAYMRYwFAYD VQQDEw02OWRmMzc1MS1jM2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvc2bMwSjsLPrvs+nv8ggCK0urEIIA0EkQmmD5OQtYXXt2FvwiKOhQfFrHDI it91aLUARRCkZ2DPJaDF7FVq8/jyhwdBKrFvBVrCe25H7/fWJ81XSNpalkfNotmF f380MXlaDYPsgAuYsuV0kJPaBGYknubBNoQAYigGqGnypBPPAhUaKwkKko4f5KS6 I5AT3ZWqTHJYWIh036Pi+dwX10bkV4kHV/u1i52DTTRUBISAda/9h7W4IKV+NFmM 13ezeeGp0EchgPUXVG6De0vTyYlQHQSXiVetcI7l9DYIIU+pbutfsIV12i80wO+C YwkdY8bbQX7S2psE6y/KFoSFHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFhWT9AS p5B2KXpatp5d7CgrpX2HMB8GA1UdIwQYMBaAFON9xNgkdgPoSMAGbERbnNjac1DW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzhGMi8yODdERTczNjU2 QzYxMUYwOTJCREEwNDJDNEY5QUUwMi80MzNFMkNSMkEtaEl3QVpzUkZ1YzJOcHpV TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQzM0UyQ1IyQS1oSXdBWnNSRnVjMk5welVOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzhGMi8yODdERTczNjU2QzYxMUYwOTJCREEwNDJDNEY5QUUwMi80MzNFMkNSMkEt aEl3QVpzUkZ1YzJOcHpVTlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATvFQYWIWt4QXocGZR4ofn54eqBjTQ/hoHMVtzaFbt5q+QEgqEMt39w9YZmQ8 LVbL/aXsekZvpP1vmbsENUEYfMFlO5DfMC5RC/NL8nAz9jXWoQDr6p04xZDUHuVI oenZkDh1weFZdQDCqKIVm6/YFUQZ1ZksjETgxjJnBZctuhVo/PrKOsOmM9B1GBjX CzRtOPIN/NCRitq+i3AuIxEsVjhvPyhkc4kxUqHK9EM6semXuqCQ1e+r6dkT6BKF C582TIVi9c7l6WJ0oExdmxgkR1IdjB1zDboc1Xnvyj3eFy3hcb4Mj5PDQ6e0s78Y 7ADJNvpVldG1DkywscM53F8tcw== -----END CERTIFICATE-----Generated at Fri Apr 17 08:05:45 2026 by rpki-client