$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: RhTPxt0B9mCs7zZp53ZRHS7QYAq+0Fqoa4dBl2ooS8k= Subject key identifier: FA:1B:B3:66:FC:09:B7:2E:3A:E1:8A:7A:6B:21:B0:17:7F:6C:ED:43 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0B73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0B67 Signing time: Thu 16 Apr 2026 19:05:37 +0000 Manifest this update: Thu 16 Apr 2026 19:05:36 +0000 Manifest next update: Thu 23 Apr 2026 19:05:36 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: XN/q4G4/jYSHYpyFxq0r/jtT5JNlwpwSqTl+VLiqyZI=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: ShVKBDsZHucxua11jITqEB/zC8bAit+Mc5m8VG1vvj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2931 (0xb73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Apr 16 19:05:36 2026 GMT Not After : Apr 23 19:05:36 2026 GMT Subject: CN=69e13301-61e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:3e:a2:c4:42:28:67:59:ef:09:f0:29:41: 00:04:a1:dd:e0:bf:0a:55:ea:c0:d4:28:a4:f3:9c: 27:d7:64:e2:95:78:76:a6:70:ee:33:5c:3d:3d:86: b3:8d:08:ba:9b:c1:a9:27:60:d3:f2:8c:e3:d5:c2: 7b:77:6c:93:61:2b:3c:50:8a:6c:2f:c0:e9:7d:19: 5d:0b:b8:96:52:6a:78:cb:92:e5:b4:b4:d7:ce:8d: 8b:a4:d2:c3:46:e7:9c:5c:7e:fd:d5:0c:78:a4:c4: 10:0d:83:94:92:1d:6a:40:d7:70:2f:d3:e3:4c:87: e2:e3:19:28:39:ab:6e:a8:2d:d5:58:dc:da:a7:5d: b3:70:80:18:c0:55:49:25:f5:e9:0f:16:4f:c5:e7: bd:b7:fa:c7:17:d6:7f:0f:8b:09:81:d7:13:31:7e: de:6a:4d:67:0a:d2:bb:3d:c2:ce:18:7c:ce:a2:3b: f4:93:3e:b9:3e:ec:e6:77:2d:47:32:41:4a:f0:3e: 2c:fd:5d:5d:c6:a0:ed:8d:11:bf:c0:fe:ec:57:9d: bb:ee:ac:9a:b3:ca:5b:d6:ac:9b:37:fd:af:8c:23: 3b:3e:75:32:86:88:d5:15:00:cf:e3:63:31:c3:c2: bb:4c:5f:c9:b6:d8:c8:9f:0a:9f:23:b2:5a:3d:1b: f1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1B:B3:66:FC:09:B7:2E:3A:E1:8A:7A:6B:21:B0:17:7F:6C:ED:43 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:25:d4:83:75:60:6e:0f:3c:67:39:b6:d1:e1:7a:1b:4d:d5: c7:f9:ee:c9:9c:f9:07:e1:29:be:dc:50:db:e2:b3:4f:60:44: ed:c1:c3:9b:05:c8:ad:40:92:c6:52:6b:14:d0:42:e0:f4:f3: cf:be:bd:a5:a2:0f:f5:ac:b9:5e:25:c9:87:38:d0:64:9f:1e: 4a:8c:9a:82:45:7a:b4:17:26:f5:54:d4:ea:40:65:e8:d4:f8: ed:79:25:6f:a8:f1:64:6c:21:50:1b:90:d4:d9:e1:93:d9:fa: 40:6b:9f:09:8e:2e:12:22:e0:f8:bb:cc:a1:32:11:dd:57:cb: df:7f:c7:dc:0c:d8:5e:07:54:87:1b:8f:83:f9:3b:c8:92:69: 94:4e:d4:a2:63:b8:e5:35:ee:95:f1:71:45:d3:bb:db:b8:09: 27:e3:3c:31:05:bd:04:c9:2f:47:52:e7:f6:b3:4e:88:e0:f7: 74:92:47:7d:d7:90:0d:b1:12:80:49:2b:b1:a3:1b:ee:81:a3: b3:8c:ad:d9:a9:7a:7c:de:a2:74:6f:54:a1:47:39:46:b3:b5: 0f:df:63:33:25:34:ba:1a:58:c2:bd:55:0e:d0:ec:b7:7f:5a: e4:e4:58:21:c8:44:f5:50:26:d7:b3:76:57:94:5c:c3:fe:68: a0:70:23:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjYwNDE2MTkwNTM2WhcNMjYwNDIzMTkwNTM2WjAYMRYwFAYD VQQDEw02OWUxMzMwMS02MWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9w+osRCKGdZ7wnwKUEABKHd4L8KVerA1Cik85wn12TilXh2pnDuM1w9PYaz jQi6m8GpJ2DT8ozj1cJ7d2yTYSs8UIpsL8DpfRldC7iWUmp4y5LltLTXzo2LpNLD RuecXH791Qx4pMQQDYOUkh1qQNdwL9PjTIfi4xkoOatuqC3VWNzap12zcIAYwFVJ JfXpDxZPxee9t/rHF9Z/D4sJgdcTMX7eak1nCtK7PcLOGHzOojv0kz65Puzmdy1H MkFK8D4s/V1dxqDtjRG/wP7sV5277qyas8pb1qybN/2vjCM7PnUyhojVFQDP42Mx w8K7TF/JttjInwqfI7JaPRvxpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPobs2b8 CbcuOuGKemshsBd/bO1DMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcCXUg3Vgbg88Zzm20eF6G03Vx/nuyZz5B+EpvtxQ2+KzT2BE7cHDmwXIrUCS xlJrFNBC4PTzz769paIP9ay5XiXJhzjQZJ8eSoyagkV6tBcm9VTU6kBl6NT47Xkl b6jxZGwhUBuQ1Nnhk9n6QGufCY4uEiLg+LvMoTIR3VfL33/H3AzYXgdUhxuPg/k7 yJJplE7UomO45TXulfFxRdO727gJJ+M8MQW9BMkvR1Ln9rNOiOD3dJJHfdeQDbES gEkrsaMb7oGjs4yt2al6fN6idG9UoUc5RrO1D99jMyU0uhpYwr1VDtDst39a5ORY IchE9VAm17N2V5Rcw/5ooHAjWA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:33:43 2026 by rpki-client