$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft File: h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft (raw, json) Hash identifier: Y+sU+6fFcKToN7WgwLzsEpqO+xDVunmghvV83z8P0Dw= Subject key identifier: 90:AD:67:ED:E6:24:03:7A:10:8D:54:88:49:7E:19:73:A3:7D:AC:B8 Authority key identifier: 87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36 Certificate issuer: /CN=A9174880/serialNumber=879062503FD208466F74EA9AF87670A87D86A736 Certificate serial: 3538 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft Manifest number: 3538 Signing time: Thu 16 Apr 2026 14:16:48 +0000 Manifest this update: Thu 16 Apr 2026 14:16:48 +0000 Manifest next update: Thu 23 Apr 2026 14:16:48 +0000 Files and hashes: 1: h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl (hash: Y388pAtA/SBfCWPaCo3Cuk3APQFyNzm/HhjQeb558V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13624 (0x3538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=879062503FD208466F74EA9AF87670A87D86A736 Validity Not Before: Apr 16 14:16:48 2026 GMT Not After : Apr 23 14:16:48 2026 GMT Subject: CN=69e0ef50-2162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:31:b9:25:cd:00:ce:ed:45:dc:63:c0:3f: e9:ff:79:d8:00:f6:5f:44:de:71:1e:bc:70:13:fa: 99:34:20:2d:98:5e:36:f9:de:2c:c3:3c:78:ba:93: ad:3a:6d:fa:6c:dc:49:cf:e9:40:a5:7e:a8:40:00: 72:a8:f6:bd:0e:37:df:d7:5c:12:3b:14:75:b7:59: 24:56:d9:47:a4:5c:16:00:52:63:7e:69:fb:4f:1b: 61:4e:ae:95:e8:bb:21:29:34:bf:d3:7b:50:c5:44: 65:53:a1:1a:7a:3f:72:8f:73:75:ab:fb:4a:db:7f: 5d:70:e8:78:de:8b:15:a9:fc:67:54:ae:f9:7d:16: 2c:09:c6:93:07:76:43:6c:ec:fc:5f:aa:f5:48:28: 75:4b:5a:a0:75:61:65:b7:64:af:c4:de:37:54:6c: bc:68:7a:aa:de:f9:75:07:dd:35:9b:49:d2:d0:45: 89:40:e4:98:d3:8e:b9:73:a8:ed:fe:cd:35:7f:2f: 12:cf:0d:97:9a:f4:ef:4d:23:76:65:e1:8f:1d:67: e3:30:35:6b:ad:93:4b:06:01:e3:b7:d7:45:5c:dd: 79:99:e4:f7:16:c5:cf:98:84:59:1d:6e:73:ee:e4: 54:48:78:26:33:e9:15:69:3f:8a:15:42:e6:30:99: de:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:AD:67:ED:E6:24:03:7A:10:8D:54:88:49:7E:19:73:A3:7D:AC:B8 X509v3 Authority Key Identifier: keyid:87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:46:36:88:b8:75:80:59:c3:5e:d3:a3:68:14:1c:dd:1a:6e: ae:ab:57:57:6e:29:8e:60:b0:13:37:a7:e4:dc:a1:7d:1d:0d: 91:46:dd:27:1a:91:81:df:f9:b6:fe:98:e7:d2:b0:de:bc:1c: 15:e1:8c:80:c0:3b:82:28:ed:c3:0c:db:8d:8b:20:21:de:67: b7:8a:bc:d0:22:b7:9f:25:c2:75:33:69:14:8d:35:37:57:7b: 81:59:26:01:6a:52:a9:fe:1a:b7:ec:8c:5f:9b:fc:26:0b:b6: 83:95:51:c8:5b:7c:8a:45:ad:14:10:ce:92:e3:71:86:e1:a9: 0d:5a:7e:41:b8:a5:06:58:fd:6c:c4:bb:a8:b0:1e:e7:85:dd: f1:5c:12:3a:23:53:e7:73:94:9b:72:b9:5d:42:23:3c:a4:87: a1:fd:dc:4a:b7:b0:6e:b1:3e:c3:79:f8:3c:83:83:a5:78:df: a6:7a:97:e9:64:47:8f:81:de:3f:da:51:2c:bd:28:2b:30:be: 89:9c:dd:d5:50:74:1a:b4:d1:05:a2:3c:c8:e7:ca:00:cb:a2: ec:74:eb:76:6d:ad:8d:61:ec:2d:78:0f:e2:41:91:3b:a5:0d: ed:45:c8:01:79:04:ce:2c:f9:db:6c:0d:e7:59:55:82:7f:4e: 1e:9a:4e:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKDg3OTA2MjUwM0ZEMjA4NDY2Rjc0RUE5QUY4NzY3MEE4 N0Q4NkE3MzYwHhcNMjYwNDE2MTQxNjQ4WhcNMjYwNDIzMTQxNjQ4WjAYMRYwFAYD VQQDEw02OWUwZWY1MC0yMTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupAxuSXNAM7tRdxjwD/p/3nYAPZfRN5xHrxwE/qZNCAtmF42+d4swzx4upOt Om36bNxJz+lApX6oQAByqPa9Djff11wSOxR1t1kkVtlHpFwWAFJjfmn7TxthTq6V 6LshKTS/03tQxURlU6Eaej9yj3N1q/tK239dcOh43osVqfxnVK75fRYsCcaTB3ZD bOz8X6r1SCh1S1qgdWFlt2SvxN43VGy8aHqq3vl1B901m0nS0EWJQOSY0465c6jt /s01fy8Szw2XmvTvTSN2ZeGPHWfjMDVrrZNLBgHjt9dFXN15meT3FsXPmIRZHW5z 7uRUSHgmM+kVaT+KFULmMJne6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJCtZ+3m JAN6EI1UiEl+GXOjfay4MB8GA1UdIwQYMBaAFIeQYlA/0ghGb3Tqmvh2cKh9hqc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC84NDZFQzA0MDFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi9oNUJpVURfU0NFWnZkT3FhLUhad3FIMkdw elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2g1QmlVRF9TQ0VadmRPcWEtSFp3cUgyR3B6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC84NDZFQzA0MDFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi9oNUJpVURfU0NF WnZkT3FhLUhad3FIMkdwelkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADUY2iLh1gFnDXtOjaBQc3RpurqtXV24pjmCwEzen5NyhfR0NkUbdJxqRgd/5 tv6Y59Kw3rwcFeGMgMA7gijtwwzbjYsgId5nt4q80CK3nyXCdTNpFI01N1d7gVkm AWpSqf4at+yMX5v8Jgu2g5VRyFt8ikWtFBDOkuNxhuGpDVp+QbilBlj9bMS7qLAe 54Xd8VwSOiNT53OUm3K5XUIjPKSHof3cSrewbrE+w3n4PIODpXjfpnqX6WRHj4He P9pRLL0oKzC+iZzd1VB0GrTRBaI8yOfKAMui7HTrdm2tjWHsLXgP4kGRO6UN7UXI AXkEziz522wN51lVgn9OHppOCg== -----END CERTIFICATE-----Generated at Fri Apr 17 09:55:04 2026 by rpki-client