$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: uuPphc0vR1qWgs7LlZcRQYzWx+du5LO7W9l9FbU9MGc= Subject key identifier: 7F:A3:B8:E1:11:D2:84:9D:79:17:CB:98:D8:B7:4D:29:FA:5F:67:EC Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 0210 Signing time: Fri 17 Apr 2026 02:43:56 +0000 Manifest this update: Fri 17 Apr 2026 02:43:56 +0000 Manifest next update: Fri 24 Apr 2026 02:43:56 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: EH/jEwsEPhJCoaEf4gQu4hzvXCQMsYHWT/qP9PA3954=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: 6YiHQS923AFAHNIQZq0OQFG6vXkTwTlPlKTi8KK2q5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Apr 17 02:43:56 2026 GMT Not After : Apr 24 02:43:56 2026 GMT Subject: CN=69e19e6c-d031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5c:ca:11:b9:17:4f:3f:19:9f:fc:68:d2:86: d6:4a:0a:4a:bb:6a:2a:d9:bb:b3:d8:98:50:ff:39: f2:42:72:a6:89:30:f5:3e:ee:3b:5a:b2:33:d8:15: 6e:8e:e9:b8:57:a5:75:a4:37:0c:f0:a6:a3:21:15: 94:f9:63:fd:e3:da:0b:ca:f7:26:39:16:6c:7d:2c: 12:97:28:ff:0b:54:0e:b9:87:8e:de:24:03:b0:c6: 18:83:77:6e:b0:5f:3f:61:3f:32:b8:80:6d:ca:f7: f4:83:16:06:c5:48:aa:0f:c2:0f:ee:e8:7e:23:da: e1:29:ef:49:8a:11:c1:a8:d2:36:89:83:42:79:0d: 6a:36:67:1b:f3:04:c5:c6:e5:73:2a:94:02:8a:7e: 5f:3f:fc:f7:1a:d9:74:21:f6:92:6d:ad:cc:5a:d5: c7:5f:05:98:bc:2a:60:52:f5:d5:f4:4c:42:4f:3c: 4d:cc:fd:de:d7:83:a3:b1:dc:b7:23:73:0e:7f:56: 8a:50:a9:58:03:26:19:20:61:a5:ee:26:e3:60:c5: 5f:bb:b9:12:73:a4:2d:98:58:65:ca:df:f7:35:d3: b7:f3:c7:83:26:29:47:a5:a9:e2:1e:8f:7b:78:09: 86:5a:04:85:e7:2f:b8:5b:db:72:46:c9:bc:2c:41: ea:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A3:B8:E1:11:D2:84:9D:79:17:CB:98:D8:B7:4D:29:FA:5F:67:EC X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:80:eb:8c:cb:e0:6b:80:19:22:00:51:95:ca:9a:ee:85:18: 0b:2e:df:18:5d:7f:08:28:0f:a4:59:c0:51:db:98:23:9d:5b: 1f:82:16:d0:31:13:11:6c:20:54:c5:29:05:bf:20:16:a2:6e: 47:23:3a:b2:4e:95:c1:22:be:3c:b5:79:37:93:d8:b2:0b:ed: 14:1f:56:17:17:2d:92:c9:48:b9:64:3a:88:94:65:e1:a2:24: a8:c7:c2:7d:28:25:71:65:2a:61:2a:55:f2:33:49:70:aa:3d: a4:99:2b:13:4e:ef:88:bb:2e:28:73:4f:5e:c1:88:41:7f:8c: 3b:99:f2:90:15:d4:6b:db:a4:2e:15:34:2d:c7:e6:a6:11:a5: 26:38:f9:3f:79:19:15:3f:a9:a0:eb:ad:93:68:70:c4:e7:9e: 19:5b:82:82:9a:a9:20:91:f1:88:5c:2b:46:03:66:15:d9:c0: 2a:21:a6:86:f8:05:e9:8e:aa:49:b1:f0:28:73:f3:75:87:09: 9f:88:39:49:96:ad:eb:29:ab:b1:d2:82:a7:f9:45:39:99:d3: e9:5c:0d:f2:ae:92:96:30:5d:ff:24:d1:10:aa:1b:32:8b:86: 3f:89:57:52:08:b5:e3:b3:be:61:26:fe:7c:45:75:6a:b2:76: 47:44:c4:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjYwNDE3MDI0MzU2WhcNMjYwNDI0MDI0MzU2WjAYMRYwFAYD VQQDEw02OWUxOWU2Yy1kMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lzKEbkXTz8Zn/xo0obWSgpKu2oq2buz2JhQ/znyQnKmiTD1Pu47WrIz2BVu jum4V6V1pDcM8KajIRWU+WP949oLyvcmORZsfSwSlyj/C1QOuYeO3iQDsMYYg3du sF8/YT8yuIBtyvf0gxYGxUiqD8IP7uh+I9rhKe9JihHBqNI2iYNCeQ1qNmcb8wTF xuVzKpQCin5fP/z3Gtl0IfaSba3MWtXHXwWYvCpgUvXV9ExCTzxNzP3e14Ojsdy3 I3MOf1aKUKlYAyYZIGGl7ibjYMVfu7kSc6QtmFhlyt/3NdO388eDJilHpaniHo97 eAmGWgSF5y+4W9tyRsm8LEHqjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH+juOER 0oSdeRfLmNi3TSn6X2fsMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgoDrjMvga4AZIgBRlcqa7oUYCy7fGF1/CCgPpFnAUduYI51bH4IW0DETEWwg VMUpBb8gFqJuRyM6sk6VwSK+PLV5N5PYsgvtFB9WFxctkslIuWQ6iJRl4aIkqMfC fSglcWUqYSpV8jNJcKo9pJkrE07viLsuKHNPXsGIQX+MO5nykBXUa9ukLhU0Lcfm phGlJjj5P3kZFT+poOutk2hwxOeeGVuCgpqpIJHxiFwrRgNmFdnAKiGmhvgF6Y6q SbHwKHPzdYcJn4g5SZat6ymrsdKCp/lFOZnT6VwN8q6SljBd/yTREKobMouGP4lX Ugi147O+YSb+fEV1arJ2R0TECQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:08:03 2026 by rpki-client