$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: FJ+kvODxAWWiNR5Yf9NtjJCJetK3LfPftskejdhs51g= Subject key identifier: BA:74:83:CB:49:CA:AE:2E:43:FD:E5:DF:99:97:C1:ED:53:16:9A:C9 Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: 0248 Signing time: Fri 17 Apr 2026 02:12:42 +0000 Manifest this update: Fri 17 Apr 2026 02:12:41 +0000 Manifest next update: Fri 24 Apr 2026 02:12:41 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: WbE/t8VQlYyOtwliRe6eSqfuIWWkiRQTvw0fwFM/rtk=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: P3ej5XFQlJcMQQxLttfvW/K/Ryt5xBSLQ4egcs4pQwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: Apr 17 02:12:41 2026 GMT Not After : Apr 24 02:12:41 2026 GMT Subject: CN=69e1971a-b6c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cf:40:de:67:91:08:12:7d:ff:0e:84:13:39: a3:a6:f7:a8:a3:15:ad:3e:e0:a7:e6:a5:82:27:6c: 1f:4f:07:45:37:7a:1d:c3:10:64:bb:0a:97:8d:d1: 50:83:55:a8:13:86:f4:82:5a:aa:c8:c1:1a:e9:b7: 89:70:8d:b0:15:d2:8f:18:be:fd:d1:e6:24:da:73: dd:3b:3d:71:04:08:20:a1:93:d1:17:5a:d2:ce:85: 1f:14:93:3a:59:bf:97:ab:11:1c:ea:45:da:b0:95: 59:54:1a:e0:bd:eb:19:e2:bd:43:e0:72:ea:32:1a: 93:a4:2c:26:8b:30:12:42:ef:e6:c2:af:b8:fc:d6: c1:c2:10:84:c3:62:27:22:71:b8:d8:ef:ad:3e:f3: 4f:d0:17:e3:00:cf:81:a5:12:59:2b:d9:8e:c4:8f: 7e:3b:d9:17:4b:be:3c:69:1c:62:ea:5d:6f:68:c2: ba:89:66:08:e8:fd:6f:c8:26:e7:dd:6f:da:64:89: c4:f5:6e:81:58:e5:74:09:cc:0a:b6:21:87:bb:1d: c0:61:4e:0d:1a:98:9b:eb:ca:a4:25:ce:9f:87:c1: f9:66:0f:77:ec:bb:e0:c5:03:93:b2:d5:73:dd:ba: 27:fc:65:6c:d3:eb:37:b9:69:44:00:5f:e3:b6:10: 52:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:74:83:CB:49:CA:AE:2E:43:FD:E5:DF:99:97:C1:ED:53:16:9A:C9 X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:e1:75:2e:19:47:dd:ec:b8:e6:62:b1:03:9c:7f:83:ee:38: 0c:f5:86:a2:48:66:eb:43:ae:d3:21:40:e8:bc:7b:1c:19:ad: 74:e8:2d:9f:df:a3:05:2a:ca:b3:e4:c4:90:7e:d9:1f:db:d1: db:70:fc:b3:f2:a3:f0:95:ee:84:6e:dd:ba:29:5d:39:d4:65: c1:ae:ba:66:49:45:82:9a:f1:80:8f:df:9a:1a:98:b9:7f:62: f3:63:e4:cb:da:16:b6:1e:2a:62:59:8c:cb:4d:15:ae:7b:41: e2:74:78:b7:7d:0c:f4:f1:87:c1:7e:17:33:0d:34:d0:30:dc: 5b:4a:d5:f2:72:1b:7b:78:8e:5b:3e:74:54:3e:3b:97:52:1f: da:87:34:60:08:61:f8:9b:02:55:6d:d1:9a:08:15:5b:6f:65: 6b:25:a6:75:ef:eb:1d:6a:17:33:0e:00:ce:c9:ca:52:0e:91: e1:c8:87:8c:80:ef:b2:49:60:c1:77:0c:4a:68:96:c1:30:c1: 45:ac:e9:cb:fd:20:80:f3:19:46:b7:3d:32:d7:9b:4b:d2:47: 9b:b0:66:e3:2f:43:74:f1:91:a6:3e:a1:09:20:10:74:37:68: 4f:3f:b6:c5:b9:b5:5d:62:48:d1:7f:93:5d:9e:3b:43:20:d8: cb:77:ac:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjYwNDE3MDIxMjQxWhcNMjYwNDI0MDIxMjQxWjAYMRYwFAYD VQQDEw02OWUxOTcxYS1iNmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy89A3meRCBJ9/w6EEzmjpveooxWtPuCn5qWCJ2wfTwdFN3odwxBkuwqXjdFQ g1WoE4b0glqqyMEa6beJcI2wFdKPGL790eYk2nPdOz1xBAggoZPRF1rSzoUfFJM6 Wb+XqxEc6kXasJVZVBrgvesZ4r1D4HLqMhqTpCwmizASQu/mwq+4/NbBwhCEw2In InG42O+tPvNP0BfjAM+BpRJZK9mOxI9+O9kXS748aRxi6l1vaMK6iWYI6P1vyCbn 3W/aZInE9W6BWOV0CcwKtiGHux3AYU4NGpib68qkJc6fh8H5Zg937LvgxQOTstVz 3bon/GVs0+s3uWlEAF/jthBSDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLp0g8tJ yq4uQ/3l35mXwe1TFprJMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl+F1LhlH3ey45mKxA5x/g+44DPWGokhm60Ou0yFA6Lx7HBmtdOgtn9+jBSrK s+TEkH7ZH9vR23D8s/Kj8JXuhG7duildOdRlwa66ZklFgprxgI/fmhqYuX9i82Pk y9oWth4qYlmMy00VrntB4nR4t30M9PGHwX4XMw000DDcW0rV8nIbe3iOWz50VD47 l1If2oc0YAhh+JsCVW3RmggVW29layWmde/rHWoXMw4AzsnKUg6R4ciHjIDvsklg wXcMSmiWwTDBRazpy/0ggPMZRrc9MtebS9JHm7Bm4y9DdPGRpj6hCSAQdDdoTz+2 xbm1XWJI0X+TXZ47QyDYy3es+Q== -----END CERTIFICATE-----Generated at Fri Apr 17 15:05:42 2026 by rpki-client