$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: Vs7VvZDsIQO30NiOr7oTVWSlrVg2Sd14kOuKZDYKki0= Subject key identifier: 7B:6A:0E:0D:61:E2:F3:EE:A7:9C:BF:2E:2C:C0:28:12:BE:18:59:A9 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 02C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 02A4 Signing time: Sun 19 Apr 2026 01:28:17 +0000 Manifest this update: Sun 19 Apr 2026 01:28:17 +0000 Manifest next update: Sun 26 Apr 2026 01:28:17 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: XEGbCtTtPNlMcRDIhW6bKfVNww6b6E1dUEsHM/DLuP8=) 2: C1ECF984D07411F0B0B35C27C4F9AE02.roa (hash: 4b1qRgjlNRcZ+iubckIse8edU98Q81NltkHwnBtFg58=) 3: C163E3D6170C11F1997E579B043D8C67.roa (hash: +bMsiCqkQRPGuAsovwzV+Jwx1b0r6sOT2iZqA0KUI2o=) 4: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: G3atXAKqq6oFKBpr32HyeNbKvnZw8JFgcP/o+eZXrQQ=) 5: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: 2dB8losCkzflgKLeyufFpykKeZbPyeG/91dZ2ar3/fk=) 6: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: WbC9Zi3FkuUimM2LDo18sEOCgwjkb/IqEbL/LDR9mkg=) 7: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 0XIzwd7D2/6iAcpSl1J963JfV4yO/w+9LYIuULpKH7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 01:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Apr 19 01:28:17 2026 GMT Not After : Apr 26 01:28:17 2026 GMT Subject: CN=69e42fb1-586f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:33:40:61:8a:6d:65:53:23:27:fd:7b:45:af: ff:f2:b7:1a:0f:74:5e:52:57:9f:e3:c5:45:1e:e9: 66:46:db:31:45:73:dd:31:37:f9:f4:2b:df:74:8d: f1:b5:b7:be:11:9b:b0:3c:3f:ef:f4:8a:13:3b:05: e8:a5:c4:86:10:37:77:75:ee:e7:79:40:a9:fc:71: 4d:58:ab:53:7c:f0:8d:23:c1:ee:9c:20:e1:a7:a7: 20:b8:da:b1:3c:f0:dc:30:fe:b8:31:df:98:f8:12: 2e:8e:3e:82:e2:a3:6b:6a:32:02:8a:f4:89:0b:af: 57:7d:0c:5e:17:c9:0d:ab:b0:03:e6:5e:6c:44:3e: 9e:3e:f9:19:1b:ce:78:a5:cd:65:f0:f9:de:da:8c: 85:64:e8:e8:d4:85:f7:5f:cd:f2:d8:0a:9a:7c:df: 46:28:31:0d:4f:f1:17:7f:ac:cc:94:eb:f5:cd:47: 27:e9:9c:5b:51:cc:e5:63:e9:fd:14:84:e2:4f:b4: 68:6a:10:1b:6c:dc:da:30:3a:91:de:f4:b2:40:9d: 6a:e5:c3:5a:6c:d3:a1:69:6b:26:21:c7:06:16:ed: e3:86:36:6f:cb:fd:b4:ac:78:e2:88:4e:8e:8a:6d: 54:25:68:58:6e:a1:ec:57:af:39:dc:02:e0:36:10: 4d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:6A:0E:0D:61:E2:F3:EE:A7:9C:BF:2E:2C:C0:28:12:BE:18:59:A9 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:c1:fa:f5:f8:9a:98:6c:1b:72:d6:08:17:3f:15:e0:be:77: 5e:23:2e:17:12:17:b0:43:a2:59:08:50:67:34:32:9d:ff:d9: e0:10:ef:41:53:9a:53:e3:ca:23:c6:e9:df:85:88:70:14:e4: 17:9a:31:39:b7:5e:7d:f9:9f:c1:2e:7e:f2:4c:76:6c:52:4d: 61:d1:49:af:45:64:9b:ad:4a:dc:14:d1:81:b4:94:69:de:e0: 8c:d7:b0:2e:e3:d8:84:92:c5:be:96:20:56:8c:f0:b2:2a:a2: 8f:75:e5:bc:9f:10:90:a7:a7:3f:d3:50:77:ef:c0:77:38:cb: 09:ae:75:c0:a8:37:78:6f:04:30:9d:d4:43:ac:8a:8b:64:31: f9:19:3c:9b:5e:ec:4f:3f:b5:8c:98:d4:2d:5a:e3:d9:d5:02: 1b:bd:90:73:0c:4c:b4:eb:8d:b3:e8:d1:34:f0:90:83:5f:48: a7:3e:d3:f4:2a:f1:8b:6f:fa:73:49:d7:33:37:74:e0:82:99: b4:bb:68:20:7d:0d:4c:f6:01:0a:82:15:eb:83:4c:22:92:0e: 38:0e:88:33:9d:0b:3f:f7:09:8e:b7:de:37:0c:35:cf:94:06: ba:c2:ee:6f:4d:42:dc:46:6a:ea:88:a0:c0:66:af:ea:a3:7a: 3b:9c:4d:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjYwNDE5MDEyODE3WhcNMjYwNDI2MDEyODE3WjAYMRYwFAYD VQQDEw02OWU0MmZiMS01ODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTNAYYptZVMjJ/17Ra//8rcaD3ReUlef48VFHulmRtsxRXPdMTf59CvfdI3x tbe+EZuwPD/v9IoTOwXopcSGEDd3de7neUCp/HFNWKtTfPCNI8HunCDhp6cguNqx PPDcMP64Md+Y+BIujj6C4qNrajICivSJC69XfQxeF8kNq7AD5l5sRD6ePvkZG854 pc1l8Pne2oyFZOjo1IX3X83y2AqafN9GKDENT/EXf6zMlOv1zUcn6ZxbUczlY+n9 FITiT7RoahAbbNzaMDqR3vSyQJ1q5cNabNOhaWsmIccGFu3jhjZvy/20rHjiiE6O im1UJWhYbqHsV6853ALgNhBN6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHtqDg1h 4vPup5y/LizAKBK+GFmpMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArsH69fiamGwbctYIFz8V4L53XiMuFxIXsEOiWQhQZzQynf/Z4BDvQVOaU+PK I8bp34WIcBTkF5oxObdeffmfwS5+8kx2bFJNYdFJr0Vkm61K3BTRgbSUad7gjNew LuPYhJLFvpYgVozwsiqij3XlvJ8QkKenP9NQd+/AdzjLCa51wKg3eG8EMJ3UQ6yK i2Qx+Rk8m17sTz+1jJjULVrj2dUCG72QcwxMtOuNs+jRNPCQg19Ipz7T9Crxi2/6 c0nXMzd04IKZtLtoIH0NTPYBCoIV64NMIpIOOA6IM50LP/cJjrfeNww1z5QGusLu b01C3EZq6oigwGav6qN6O5xNhg== -----END CERTIFICATE-----Generated at Sun Apr 19 10:06:59 2026 by rpki-client