$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: zi28RUK5/NTmRxVch352XLKdSiqs70xHRY8Q6A7dk8o= Subject key identifier: 64:38:C7:F9:D4:3E:41:8C:07:7A:3D:1E:11:75:64:CB:12:41:5A:05 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0C31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0C27 Signing time: Thu 16 Apr 2026 18:42:17 +0000 Manifest this update: Thu 16 Apr 2026 18:42:16 +0000 Manifest next update: Thu 23 Apr 2026 18:42:16 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: HoMrrZsBQgFAjPEI3dhlXWWLsCThTc5CNR3+qZ9aBoM=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: bcFMpQtRC/rqeGP9esVeD25xYCU2sXQbGEoW2r6Fpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3121 (0xc31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Apr 16 18:42:16 2026 GMT Not After : Apr 23 18:42:16 2026 GMT Subject: CN=69e12d89-f47e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:25:ba:05:ff:31:7f:92:00:30:77:58:ae:92: 84:e1:60:db:9d:2e:c1:6f:c4:3e:4b:63:60:74:37: d7:e3:18:0e:88:bc:04:78:0a:f0:40:24:a7:57:63: 83:45:2c:8f:68:7b:2d:25:53:40:61:aa:9f:d4:8f: 59:18:48:e1:99:8b:52:e6:0d:8c:ac:32:be:a4:1a: 85:17:85:ae:5b:15:d2:b7:e8:32:c9:1d:e5:cd:5f: 73:d0:45:58:dc:ae:3d:b2:44:9d:bd:80:6f:4f:b7: 5c:9b:6c:c5:64:aa:d2:f3:5a:b2:5f:33:e0:ba:9e: 52:b7:67:3f:8f:95:a3:d4:85:b2:4f:7f:15:68:77: 91:d5:7d:72:d6:3a:04:1f:ac:c9:37:fd:5a:59:0c: f4:30:a7:f2:50:f8:85:7b:2b:e3:52:e1:75:6d:94: 17:fd:29:12:95:f1:d2:a8:da:18:f4:1f:40:3b:cb: 0f:d2:a2:2d:a9:ae:7d:61:19:8c:ef:74:ea:a3:01: e9:a7:05:3a:b4:16:79:fc:58:99:25:9e:ac:25:12: 04:a6:d0:c4:a3:12:69:85:55:7a:d5:1d:81:7a:3d: a6:00:b2:56:60:3f:ab:3d:1d:c0:17:d7:36:e0:43: 99:8a:b4:6e:c1:4f:3d:79:85:05:40:8e:26:4e:38: e0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:38:C7:F9:D4:3E:41:8C:07:7A:3D:1E:11:75:64:CB:12:41:5A:05 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:9d:06:92:1c:ef:38:30:a8:59:3b:f0:ec:b5:b6:61:9b:b8: 31:7a:38:40:c8:ad:c4:08:ad:14:18:a5:eb:5c:55:a2:a0:7d: 22:75:00:92:48:cb:16:5d:a3:c4:24:6c:42:e0:5e:70:cf:56: c3:8c:48:87:27:75:25:37:5e:5e:9d:0e:96:1d:a2:dc:d9:5a: b6:bd:e3:38:4c:77:27:6d:7f:00:39:2e:1c:af:0e:9f:0d:0f: 78:dc:1a:22:09:83:d5:20:84:23:37:0a:11:23:6b:b4:25:9b: ab:b1:65:8e:b6:12:88:a6:66:d7:bf:cf:8b:7c:8a:b6:26:9e: 5a:d3:e7:a1:81:53:f4:0f:89:d0:cd:2f:91:96:85:b8:fb:2f: c5:2d:79:e5:f5:ec:4b:38:00:00:aa:d3:e1:96:a6:1d:ba:ea: 06:a9:74:87:36:8f:a7:68:4b:74:bc:0c:64:ad:30:ab:38:d6: fd:b6:db:db:8c:b1:7b:ac:8a:4a:e6:73:c6:e9:9a:eb:4f:38: c5:c9:09:79:18:43:64:fa:50:9b:3b:46:b6:95:30:4b:60:a5: 60:99:c2:22:c1:f6:fe:ff:1e:cd:ee:4d:17:89:55:15:a1:81: cc:49:b0:58:bb:7d:dc:8f:12:f4:91:df:d7:43:ad:b5:c2:e6: fb:12:d5:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjYwNDE2MTg0MjE2WhcNMjYwNDIzMTg0MjE2WjAYMRYwFAYD VQQDEw02OWUxMmQ4OS1mNDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5CW6Bf8xf5IAMHdYrpKE4WDbnS7Bb8Q+S2NgdDfX4xgOiLwEeArwQCSnV2OD RSyPaHstJVNAYaqf1I9ZGEjhmYtS5g2MrDK+pBqFF4WuWxXSt+gyyR3lzV9z0EVY 3K49skSdvYBvT7dcm2zFZKrS81qyXzPgup5St2c/j5Wj1IWyT38VaHeR1X1y1joE H6zJN/1aWQz0MKfyUPiFeyvjUuF1bZQX/SkSlfHSqNoY9B9AO8sP0qItqa59YRmM 73TqowHppwU6tBZ5/FiZJZ6sJRIEptDEoxJphVV61R2Bej2mALJWYD+rPR3AF9c2 4EOZirRuwU89eYUFQI4mTjjgmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGQ4x/nU PkGMB3o9HhF1ZMsSQVoFMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ50GkhzvODCoWTvw7LW2YZu4MXo4QMitxAitFBil61xVoqB9InUAkkjLFl2j xCRsQuBecM9Ww4xIhyd1JTdeXp0Olh2i3Nlatr3jOEx3J21/ADkuHK8Onw0PeNwa IgmD1SCEIzcKESNrtCWbq7FljrYSiKZm17/Pi3yKtiaeWtPnoYFT9A+J0M0vkZaF uPsvxS155fXsSzgAAKrT4ZamHbrqBql0hzaPp2hLdLwMZK0wqzjW/bbb24yxe6yK SuZzxuma6084xckJeRhDZPpQmztGtpUwS2ClYJnCIsH2/v8eze5NF4lVFaGBzEmw WLt93I8S9JHf10OttcLm+xLVNA== -----END CERTIFICATE-----Generated at Fri Apr 17 10:38:23 2026 by rpki-client