$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: vTYE/0EXcv3CTeCYBVJTyzEKx9t8wIFsXmCIQfXh43c= Subject key identifier: CE:91:48:46:11:FB:D2:57:91:06:0F:87:4C:41:9E:31:D0:81:A3:07 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 2475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 2443 Signing time: Thu 16 Apr 2026 15:45:40 +0000 Manifest this update: Thu 16 Apr 2026 15:45:40 +0000 Manifest next update: Thu 23 Apr 2026 15:45:40 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: sTGfeyy8lW845QnduxZMtLijf4snKn+6RblS/QAs2A8=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: NVMButox852Cn69pCAO8rFw/WuD1j68THVioCka2Ig8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:45:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9333 (0x2475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Apr 16 15:45:40 2026 GMT Not After : Apr 23 15:45:40 2026 GMT Subject: CN=69e10424-97e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ea:13:f6:9a:b6:33:01:a9:c1:b5:93:8b:51: 53:48:bd:85:7c:af:ce:53:05:d0:72:25:ca:18:36: e3:f8:1a:56:1a:b2:00:46:83:82:90:c0:54:5d:b0: b0:65:1a:9d:d4:dd:c5:13:01:7e:d9:cb:b3:11:a0: bb:5a:ee:fb:22:24:69:75:16:7e:3f:ba:8a:28:49: 1b:ce:9a:fd:30:cb:c6:fa:48:dc:a9:b1:ca:7e:5f: 2a:b7:d6:48:5f:2e:f7:0d:b2:4f:29:c2:0a:db:c5: f0:33:3c:04:f2:0d:ee:a0:ee:16:72:22:9d:b2:f6: 4d:b0:e5:c2:f4:7a:5c:02:a9:4e:6b:91:cf:68:97: c6:0e:0d:9e:c2:a2:f6:70:62:87:98:34:6c:88:e7: 65:55:7c:51:87:6e:4e:aa:8c:d9:f1:d5:ed:46:4f: 8c:11:2c:f5:2b:29:0a:a7:9a:7a:84:93:e1:66:43: 67:4c:af:31:43:c3:9f:bf:46:e3:8b:32:82:e4:de: 00:76:cc:42:67:ee:0d:63:ee:d8:5b:06:c0:d7:c2: 4c:01:9e:ef:71:73:df:32:f6:0a:f7:aa:2a:e3:7e: 50:ee:99:a3:80:d0:78:73:0b:9f:d1:ee:f2:0d:0f: b1:a8:d8:d0:6e:f2:50:f2:e1:8d:04:92:e7:67:6f: bd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:91:48:46:11:FB:D2:57:91:06:0F:87:4C:41:9E:31:D0:81:A3:07 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:ea:27:70:06:1f:5a:7b:c2:7f:e3:e4:cb:2b:2c:be:8b:5c: a8:0e:86:a2:97:bb:75:0b:09:c0:02:db:b8:0f:fe:bc:ca:f1: 52:d5:0b:08:56:51:e3:ce:7d:a2:8e:d8:9d:71:7e:cb:45:17: 2b:3b:9a:5e:a0:91:d0:69:f3:ab:33:1e:ad:fd:22:53:bd:22: bd:b8:8a:ef:f5:9e:8d:bd:44:94:4a:76:26:a6:8c:8b:0d:74: aa:f3:34:63:16:16:a0:7a:df:c4:d7:b7:6d:ee:8d:32:c9:6a: 4d:a0:b7:5b:e7:69:15:ce:86:4b:c6:be:64:3e:90:78:7d:c2: 3a:50:bd:d3:bf:b3:ef:87:13:f6:cf:56:ba:b0:69:90:7d:46: 91:33:e8:db:53:2b:7a:23:5c:66:71:00:e7:ea:db:84:15:fc: 17:26:5e:ab:42:63:0c:c8:bf:6e:eb:81:d1:47:a0:b0:16:f1: 16:df:cd:bf:89:ed:7b:e2:03:f9:37:45:40:a4:82:aa:7e:c1: 73:9e:5e:5c:63:a0:5c:be:ff:84:d3:38:41:0a:59:40:03:d8: e1:51:c8:47:48:c6:57:fe:57:56:d1:52:75:7a:d7:77:1b:fa: 01:f3:2d:80:83:87:04:cf:0a:ac:2f:5e:10:bc:c7:e3:d0:8b: a3:db:7c:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjYwNDE2MTU0NTQwWhcNMjYwNDIzMTU0NTQwWjAYMRYwFAYD VQQDEw02OWUxMDQyNC05N2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOoT9pq2MwGpwbWTi1FTSL2FfK/OUwXQciXKGDbj+BpWGrIARoOCkMBUXbCw ZRqd1N3FEwF+2cuzEaC7Wu77IiRpdRZ+P7qKKEkbzpr9MMvG+kjcqbHKfl8qt9ZI Xy73DbJPKcIK28XwMzwE8g3uoO4WciKdsvZNsOXC9HpcAqlOa5HPaJfGDg2ewqL2 cGKHmDRsiOdlVXxRh25OqozZ8dXtRk+MESz1KykKp5p6hJPhZkNnTK8xQ8Ofv0bj izKC5N4AdsxCZ+4NY+7YWwbA18JMAZ7vcXPfMvYK96oq435Q7pmjgNB4cwuf0e7y DQ+xqNjQbvJQ8uGNBJLnZ2+95QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM6RSEYR +9JXkQYPh0xBnjHQgaMHMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApeoncAYfWnvCf+PkyyssvotcqA6Gope7dQsJwALbuA/+vMrxUtULCFZR4859 oo7YnXF+y0UXKzuaXqCR0GnzqzMerf0iU70ivbiK7/Wejb1ElEp2JqaMiw10qvM0 YxYWoHrfxNe3be6NMslqTaC3W+dpFc6GS8a+ZD6QeH3COlC907+z74cT9s9WurBp kH1GkTPo21MreiNcZnEA5+rbhBX8FyZeq0JjDMi/buuB0UegsBbxFt/Nv4nte+ID +TdFQKSCqn7Bc55eXGOgXL7/hNM4QQpZQAPY4VHIR0jGV/5XVtFSdXrXdxv6AfMt gIOHBM8KrC9eELzH49CLo9t8GQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:18:08 2026 by rpki-client