$ rpki-client -vvf rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft File: It8xdbHdMjEX4MGfP21qHncfnB8.mft (raw, json) Hash identifier: A/G0czJ5C+bFnJwlazq+zD+g42yY8m/hwY7HtXKGTC4= Subject key identifier: A8:9D:98:AF:35:5C:DB:1A:5C:31:AA:CA:21:24:15:FB:DD:F9:18:06 Authority key identifier: 22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F Certificate issuer: /CN=A917148B/serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Certificate serial: 0CE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft Manifest number: 0CD7 Signing time: Thu 16 Apr 2026 18:15:55 +0000 Manifest this update: Thu 16 Apr 2026 18:15:54 +0000 Manifest next update: Thu 23 Apr 2026 18:15:54 +0000 Files and hashes: 1: It8xdbHdMjEX4MGfP21qHncfnB8.crl (hash: IRvsPeaiaIdJFAvYajC/3koEWrQnxCJxP96BIayJUpI=) 2: D725AC5C091411EABBFC8739C4F9AE02.roa (hash: zDxsuRndlq0lJuspimIYJwOxaHSsP7u9+ZEkGQ4K8fQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3297 (0xce1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917148B, serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Validity Not Before: Apr 16 18:15:54 2026 GMT Not After : Apr 23 18:15:54 2026 GMT Subject: CN=69e1275b-226f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:97:4e:83:8f:a4:44:0c:45:79:5d:08:39:b8: 41:37:81:64:49:35:a5:34:fd:2a:fe:eb:e5:e6:96: ae:b0:b0:39:1a:10:d0:7c:5f:99:5d:b6:97:7a:fd: fe:90:9a:3e:02:59:36:c7:a3:af:f0:2a:bc:a7:98: ae:97:8f:58:2e:8e:c3:57:6d:31:d2:a9:b4:54:d0: ee:9f:9a:6e:e7:86:f3:e4:36:1b:56:08:63:01:42: a6:31:72:b3:cc:f8:bd:2b:22:79:7f:2d:a4:af:6a: 1b:bc:ae:f4:bb:ed:59:00:d0:bd:f1:69:c9:c6:d5: 6d:db:0b:32:a3:17:83:86:45:57:07:97:ca:91:6a: eb:06:4a:80:32:82:18:40:71:b2:48:07:bd:4c:a5: 8e:ea:1d:4c:01:f7:bd:3a:7c:69:6d:07:f9:f8:1b: 75:56:2a:6b:c1:8b:a4:60:af:e3:33:63:0b:14:d1: 24:1a:73:c5:3a:84:0b:86:5d:43:0f:b6:51:8d:f4: 07:06:e8:c5:d8:4c:01:69:ea:fe:c3:41:a0:76:72: 6f:c4:24:aa:8a:4f:08:30:1f:4c:a4:c2:61:67:49: 00:ba:ad:f1:41:32:88:f7:bb:95:5e:cf:03:fc:e8: dc:2d:79:34:f2:c2:6a:6f:c3:8b:49:e2:aa:61:dd: 11:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:9D:98:AF:35:5C:DB:1A:5C:31:AA:CA:21:24:15:FB:DD:F9:18:06 X509v3 Authority Key Identifier: keyid:22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f8:5e:16:4e:d4:08:d0:b3:d2:a1:e5:cc:04:fa:be:5e:29: 2c:8c:37:a8:a1:47:10:3d:58:ce:bf:e4:4d:a7:73:3e:c9:e9: 08:82:ea:72:d5:e2:0a:d2:74:37:73:6e:f9:50:51:f7:23:5b: 44:cf:9a:23:99:bb:b4:a1:fd:b7:de:47:ba:ae:7d:18:37:9e: cc:58:ea:58:f6:90:58:f8:de:d4:62:3b:dd:9b:3a:64:08:70: 10:ee:6f:b4:e8:08:96:5b:fa:28:6b:58:69:bb:e9:20:c2:f9: 50:d6:e1:04:91:0e:22:2e:1d:64:87:05:4f:12:e3:7e:66:a4: 24:56:d6:d9:39:67:9c:45:1f:22:cd:0c:b1:32:01:a6:b0:ce: 4f:90:e8:76:17:aa:45:3d:75:eb:47:60:52:d9:71:51:2a:63: d5:4c:30:68:33:df:81:24:27:b2:2c:ce:37:60:0d:11:77:20: 41:d8:c0:3f:c4:b5:9f:c9:e0:6f:3c:d8:ac:bd:1e:3b:31:8e: b1:83:83:c3:a7:60:a8:06:93:62:fc:8b:cf:20:66:7d:c8:de: 27:0c:a0:c8:3a:29:c9:ae:54:47:b4:42:9b:2b:b8:e3:41:9a: 45:8b:95:6a:17:43:ac:af:60:a8:39:e2:6a:13:b7:79:70:66: a4:76:73:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE0OEIxMTAvBgNVBAUTKDIyREYzMTc1QjFERDMyMzExN0UwQzE5RjNGNkQ2QTFF NzcxRjlDMUYwHhcNMjYwNDE2MTgxNTU0WhcNMjYwNDIzMTgxNTU0WjAYMRYwFAYD VQQDEw02OWUxMjc1Yi0yMjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZdOg4+kRAxFeV0IObhBN4FkSTWlNP0q/uvl5pausLA5GhDQfF+ZXbaXev3+ kJo+Alk2x6Ov8Cq8p5iul49YLo7DV20x0qm0VNDun5pu54bz5DYbVghjAUKmMXKz zPi9KyJ5fy2kr2obvK70u+1ZANC98WnJxtVt2wsyoxeDhkVXB5fKkWrrBkqAMoIY QHGySAe9TKWO6h1MAfe9OnxpbQf5+Bt1ViprwYukYK/jM2MLFNEkGnPFOoQLhl1D D7ZRjfQHBujF2EwBaer+w0GgdnJvxCSqik8IMB9MpMJhZ0kAuq3xQTKI97uVXs8D /OjcLXk08sJqb8OLSeKqYd0R6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKidmK81 XNsaXDGqyiEkFfvd+RgGMB8GA1UdIwQYMBaAFCLfMXWx3TIxF+DBnz9tah53H5wf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTQ4Qi8wNDk0MTBBRTA5 MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1qRVg0TUdmUDIxcUhuY2Zu QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0OHhkYkhkTWpFWDRNR2ZQMjFxSG5jZm5COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTQ4Qi8wNDk0MTBBRTA5MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1q RVg0TUdmUDIxcUhuY2ZuQjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH/heFk7UCNCz0qHlzAT6vl4pLIw3qKFHED1Yzr/kTadzPsnpCILqctXiCtJ0 N3Nu+VBR9yNbRM+aI5m7tKH9t95Huq59GDeezFjqWPaQWPje1GI73Zs6ZAhwEO5v tOgIllv6KGtYabvpIML5UNbhBJEOIi4dZIcFTxLjfmakJFbW2TlnnEUfIs0MsTIB prDOT5DodheqRT1160dgUtlxUSpj1UwwaDPfgSQnsizON2ANEXcgQdjAP8S1n8ng bzzYrL0eOzGOsYODw6dgqAaTYvyLzyBmfcjeJwygyDopya5UR7RCmyu440GaRYuV ahdDrK9gqDniahO3eXBmpHZzZg== -----END CERTIFICATE-----Generated at Fri Apr 17 07:30:25 2026 by rpki-client