$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: +usUiyrS3YBI94cNMDygTrVUaLQd4htKK6IN62PSgx0= Subject key identifier: 81:80:70:1C:8E:1F:62:3F:C4:B9:4A:A1:7D:E2:E7:DA:9B:32:C0:F4 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0883 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 086F Signing time: Thu 16 Apr 2026 20:36:46 +0000 Manifest this update: Thu 16 Apr 2026 20:36:46 +0000 Manifest next update: Thu 23 Apr 2026 20:36:46 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: lBBDTWBjB3no51ABRLqVNO3I66T+QNYLzqDaRPmt214=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: IxYVxX1BoFCHdIOrjAwAEmnCO+dNiZSE2wEYWsIxYD4=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: /xCNBqLNz0L8cDqpYEQMnHLgfzVahak+S8dk9Uan5oM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2179 (0x883) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Apr 16 20:36:46 2026 GMT Not After : Apr 23 20:36:46 2026 GMT Subject: CN=69e1485e-460f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:8f:81:5a:52:de:3e:12:77:b8:f6:de:3a: 0e:a3:56:79:17:7c:fb:78:28:05:71:1f:f0:db:15: 0e:42:b0:b8:c3:58:13:c6:cc:69:7c:9e:37:b1:d7: 5f:f9:70:cc:62:59:15:86:a6:7d:51:de:2e:8d:e2: 01:d9:5e:7b:e9:8c:8f:78:e2:cd:1b:99:f2:30:73: 1b:3c:e4:98:cf:3d:12:6c:7b:fe:f0:b9:79:2f:6f: 68:eb:e9:ac:ef:28:0f:52:10:96:71:51:fb:bc:16: e1:1f:df:25:df:35:51:9d:ac:58:9f:5b:a1:12:7b: 93:0b:48:42:7f:e0:c3:d5:f0:2b:fa:19:48:9d:e0: ec:21:9c:b9:5b:c3:60:f0:28:a6:9e:13:2b:a3:f2: 37:51:ee:9c:99:b1:d6:eb:9f:b1:8e:5b:61:cb:4f: d8:1d:39:5a:fe:72:41:f9:cf:5e:f2:b0:c8:5b:bd: 61:34:51:95:d5:83:42:cc:f2:fd:77:d4:66:b7:44: d2:d0:4f:5d:96:bc:4f:18:ac:22:10:50:dd:39:d2: de:af:22:74:db:cf:3a:8c:00:a4:48:af:de:4e:dc: 73:a9:0e:b5:eb:1e:51:52:d6:d4:d9:16:af:c7:ad: 6e:94:ca:e0:7f:65:a4:c8:2f:d1:af:07:f4:ec:e0: 52:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:80:70:1C:8E:1F:62:3F:C4:B9:4A:A1:7D:E2:E7:DA:9B:32:C0:F4 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c2:cd:db:38:32:70:23:02:92:b6:70:cd:97:0c:04:9c:4e: 6e:67:cb:59:2d:77:d8:09:df:0b:39:1f:8a:de:c4:9b:5d:70: 65:04:74:57:5a:0c:5b:a4:bd:f6:5a:41:bd:d8:a7:47:8a:37: ec:36:dd:66:06:24:2a:c3:c0:34:2d:5e:c1:52:42:e3:bd:2b: ef:b5:8e:d0:dc:6a:7d:da:e1:dc:5b:43:7d:b4:3f:6c:72:67: f8:99:a8:d6:ca:9d:79:2a:59:fe:fc:a5:38:d7:41:90:d8:9e: 38:b3:a1:e1:1e:dc:7a:6b:f8:24:e7:de:10:27:48:ea:d8:a8: bb:26:80:86:b4:96:95:4c:5c:94:cd:e7:f0:ac:69:f4:d1:37: 28:00:6b:ff:99:df:9d:59:65:9a:b6:4f:d1:ec:09:8e:be:8b: d2:90:a2:db:14:8b:9c:e4:d0:2c:fc:4c:e8:85:fc:20:55:96: 51:9a:f5:3e:ce:91:86:c8:2f:d1:a8:20:ee:87:09:21:8a:e8: 91:74:e4:a7:ca:d6:be:5c:4f:38:8a:1e:3c:e1:a7:33:05:b9: 88:e6:85:5b:49:d4:8d:ba:27:70:7b:38:91:18:ea:55:b5:03: 29:1e:a1:7a:64:a3:10:df:1f:e9:e8:c2:69:19:57:1c:c6:fe: 01:4e:c6:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjYwNDE2MjAzNjQ2WhcNMjYwNDIzMjAzNjQ2WjAYMRYwFAYD VQQDEw02OWUxNDg1ZS00NjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyiPgVpS3j4Sd7j23joOo1Z5F3z7eCgFcR/w2xUOQrC4w1gTxsxpfJ43sddf +XDMYlkVhqZ9Ud4ujeIB2V576YyPeOLNG5nyMHMbPOSYzz0SbHv+8Ll5L29o6+ms 7ygPUhCWcVH7vBbhH98l3zVRnaxYn1uhEnuTC0hCf+DD1fAr+hlIneDsIZy5W8Ng 8CimnhMro/I3Ue6cmbHW65+xjlthy0/YHTla/nJB+c9e8rDIW71hNFGV1YNCzPL9 d9Rmt0TS0E9dlrxPGKwiEFDdOdLeryJ02886jACkSK/eTtxzqQ616x5RUtbU2Rav x61ulMrgf2WkyC/Rrwf07OBSmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIGAcByO H2I/xLlKoX3i59qbMsD0MB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHMLN2zgycCMCkrZwzZcMBJxObmfLWS132AnfCzkfit7Em11wZQR0V1oMW6S9 9lpBvdinR4o37DbdZgYkKsPANC1ewVJC470r77WO0Nxqfdrh3FtDfbQ/bHJn+Jmo 1sqdeSpZ/vylONdBkNieOLOh4R7cemv4JOfeECdI6tiouyaAhrSWlUxclM3n8Kxp 9NE3KABr/5nfnVllmrZP0ewJjr6L0pCi2xSLnOTQLPxM6IX8IFWWUZr1Ps6Rhsgv 0agg7ocJIYrokXTkp8rWvlxPOIoePOGnMwW5iOaFW0nUjboncHs4kRjqVbUDKR6h emSjEN8f6ejCaRlXHMb+AU7Ggg== -----END CERTIFICATE-----Generated at Fri Apr 17 13:19:39 2026 by rpki-client