$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: TYqUnvTBWKBPkUjcN1iGWfJSHx1hq1gsr0l8wf6sjlA= Subject key identifier: 5A:ED:AB:E4:FA:99:7C:68:23:37:A4:D8:FF:67:E2:2A:2F:7F:41:67 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 04EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 04E3 Signing time: Thu 16 Apr 2026 23:43:58 +0000 Manifest this update: Thu 16 Apr 2026 23:43:58 +0000 Manifest next update: Thu 23 Apr 2026 23:43:58 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: PtwBwkwGMqRPYyvAV2QPAH899IBM69XblAc+E7Vp7Wk=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: 8RK3wMUcaIlDFax8CoO7B3J+G4IwltOjR9G0Tg+XrZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Apr 16 23:43:58 2026 GMT Not After : Apr 23 23:43:58 2026 GMT Subject: CN=69e1743e-e48f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:95:fd:03:11:74:1b:11:98:40:af:76:eb:96: b8:af:70:48:67:90:fb:3b:59:5a:c6:f5:5f:4a:a3: c3:e0:0b:f3:f4:24:91:2d:cf:e2:f0:fd:61:44:23: 71:b2:a7:f2:b7:d3:63:46:d2:2e:db:32:09:c0:44: 91:42:0b:d4:b7:d0:3d:0b:b8:40:84:a8:92:e5:e5: 1e:06:e0:90:1f:d5:0a:ca:7e:0e:19:cf:9e:bc:fb: 1c:07:e1:7e:36:17:85:0c:d0:91:7f:74:f3:ed:02: 30:72:5b:5b:ab:db:83:49:1a:50:aa:6c:00:e0:93: 9d:1b:41:43:6f:80:d5:15:68:eb:a4:6c:5c:8f:d3: 0c:58:45:a2:ff:c8:c1:40:db:32:d7:fb:61:97:02: 79:e1:ec:9e:56:cb:7c:11:d5:cd:5a:6a:fd:28:4e: 32:ca:4f:9d:91:a5:8c:f6:63:13:30:fb:bf:a2:1e: f4:8d:d1:b6:10:33:18:e0:7e:f5:ec:c4:77:75:3b: 75:fd:c1:c3:63:e3:0a:63:e2:9d:b9:ed:ff:3f:27: 22:e5:83:03:5d:42:c5:49:c3:51:5d:43:b6:2e:18: 34:86:c0:e1:76:34:ca:55:8c:5f:e4:87:47:01:0f: f5:46:16:7f:8f:a1:5a:53:32:01:0a:b8:ad:a2:63: 2c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:ED:AB:E4:FA:99:7C:68:23:37:A4:D8:FF:67:E2:2A:2F:7F:41:67 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:5f:06:02:d1:40:47:f2:72:d5:35:41:82:de:3f:cc:bf:88: 28:d4:1a:2d:c5:3a:0d:c5:c6:2f:1a:87:a7:5b:2e:be:85:fe: f3:75:6c:9a:31:34:09:9a:4f:55:b4:d4:82:cb:f4:c5:52:8b: f5:8c:95:b7:cb:9d:c3:58:43:16:6c:99:75:8e:fa:ee:d3:de: cb:35:0f:a8:e9:0b:7b:1b:c1:59:18:5a:54:50:f4:ac:cc:27: 7e:2a:2a:52:09:c8:8d:8d:0b:e4:bc:23:9b:e1:ca:f9:45:70: ef:df:9a:a1:01:f2:6b:f1:09:e2:62:67:39:aa:83:7d:e7:49: 1d:52:c3:28:e0:0b:59:42:03:04:47:7a:a9:54:c1:7d:24:24: a8:38:77:38:6d:93:42:2c:9c:0c:34:2d:1f:0e:f6:47:d5:07: 81:c3:f1:1f:27:4c:67:a5:44:9c:b6:ce:46:69:1c:4f:f1:ba: 8c:d8:b3:0a:db:20:fe:ab:c3:1c:17:7c:a0:90:01:83:83:bd: 68:8d:33:d7:90:da:88:4a:67:53:33:40:37:40:82:25:66:f2: 52:56:bb:31:24:52:37:75:bf:66:d0:96:b3:04:95:b0:3e:e0: af:70:1b:08:b3:2d:9a:06:a6:61:5b:30:18:02:86:85:03:28: fa:5b:7e:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjYwNDE2MjM0MzU4WhcNMjYwNDIzMjM0MzU4WjAYMRYwFAYD VQQDEw02OWUxNzQzZS1lNDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZX9AxF0GxGYQK9265a4r3BIZ5D7O1laxvVfSqPD4Avz9CSRLc/i8P1hRCNx sqfyt9NjRtIu2zIJwESRQgvUt9A9C7hAhKiS5eUeBuCQH9UKyn4OGc+evPscB+F+ NheFDNCRf3Tz7QIwcltbq9uDSRpQqmwA4JOdG0FDb4DVFWjrpGxcj9MMWEWi/8jB QNsy1/thlwJ54eyeVst8EdXNWmr9KE4yyk+dkaWM9mMTMPu/oh70jdG2EDMY4H71 7MR3dTt1/cHDY+MKY+Kdue3/Pyci5YMDXULFScNRXUO2Lhg0hsDhdjTKVYxf5IdH AQ/1RhZ/j6FaUzIBCritomMsowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFrtq+T6 mXxoIzek2P9n4iovf0FnMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASF8GAtFAR/Jy1TVBgt4/zL+IKNQaLcU6DcXGLxqHp1suvoX+83VsmjE0CZpP VbTUgsv0xVKL9YyVt8udw1hDFmyZdY767tPeyzUPqOkLexvBWRhaVFD0rMwnfioq UgnIjY0L5Lwjm+HK+UVw79+aoQHya/EJ4mJnOaqDfedJHVLDKOALWUIDBEd6qVTB fSQkqDh3OG2TQiycDDQtHw72R9UHgcPxHydMZ6VEnLbORmkcT/G6jNizCtsg/qvD HBd8oJABg4O9aI0z15DaiEpnUzNAN0CCJWbyUla7MSRSN3W/ZtCWswSVsD7gr3Ab CLMtmgamYVswGAKGhQMo+lt+Og== -----END CERTIFICATE-----Generated at Fri Apr 17 06:55:55 2026 by rpki-client