$ rpki-client -vvf rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.mft File: rHwA15xPocI9OeJl5UPWJa-xcZE.mft (raw, json) Hash identifier: wd3o4aqKriYY5tCNK6ZN2Mol9Nz9Fa3/YdVAMkhfn9g= Subject key identifier: 6A:26:1B:EB:B0:DB:52:AC:E9:5C:BE:6D:63:49:72:8A:69:4F:66:C8 Authority key identifier: AC:7C:00:D7:9C:4F:A1:C2:3D:39:E2:65:E5:43:D6:25:AF:B1:71:91 Certificate issuer: /CN=A917C876/serialNumber=AC7C00D79C4FA1C23D39E265E543D625AFB17191 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHwA15xPocI9OeJl5UPWJa-xcZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.mft Manifest number: 20 Signing time: Fri 17 Apr 2026 08:35:42 +0000 Manifest this update: Fri 17 Apr 2026 08:35:42 +0000 Manifest next update: Fri 24 Apr 2026 08:35:42 +0000 Files and hashes: 1: rHwA15xPocI9OeJl5UPWJa-xcZE.crl (hash: 2Mq4cfMiWPo+6JYR2f70pMnBVNNyLmoW7r/Tv0fXi7U=) 2: AA5A77DE109211F1ADAE0457353D8C67.roa (hash: jc5OClYgMksYJNVDPr4GTz5NxRC+DAHLWpkP7eRJs/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.crl rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHwA15xPocI9OeJl5UPWJa-xcZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C876, serialNumber=AC7C00D79C4FA1C23D39E265E543D625AFB17191 Validity Not Before: Apr 17 08:35:42 2026 GMT Not After : Apr 24 08:35:42 2026 GMT Subject: CN=69e1f0de-f50d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:38:db:83:e1:8b:6d:ae:4d:c1:73:9d:09:c0: ed:ed:13:3a:74:fc:0e:f8:31:41:8b:3e:0f:fd:7c: 9a:90:ca:3e:32:4b:bd:e1:8d:93:f7:f1:8f:c3:9b: 87:af:8b:1e:f0:04:5a:40:29:5a:00:e9:13:c0:38: 8c:ca:f6:2e:34:77:72:43:0f:be:a6:06:95:2a:36: 8a:dd:1c:24:20:06:ba:58:e7:bd:1d:db:0e:80:48: 46:ad:80:c2:c9:32:e3:7c:3e:8d:87:01:63:5d:3f: c0:c1:6f:89:61:9f:64:94:95:73:d7:0a:5a:59:38: a9:7d:d0:e0:d8:5e:5e:93:74:16:56:f2:44:6f:c4: f5:44:f0:16:cc:a7:c5:c6:25:cf:ac:2b:0b:be:26: bb:21:50:df:07:58:a6:b6:1c:96:8b:e9:14:7c:cc: d9:ae:84:90:16:fb:29:85:d2:e0:a5:7f:27:f3:65: 50:f6:b5:47:b9:3e:a4:24:e4:16:93:92:46:6e:1c: ea:0a:fa:81:b2:fb:a4:4e:ee:9e:58:64:f5:02:c9: 5d:0d:4e:27:60:57:b4:af:be:24:3b:84:04:87:12: e0:6e:d1:20:10:fa:cf:12:61:1a:14:4c:98:33:2f: ba:41:2c:be:a5:42:08:fd:b1:0f:a0:59:e5:3c:f9: 44:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:26:1B:EB:B0:DB:52:AC:E9:5C:BE:6D:63:49:72:8A:69:4F:66:C8 X509v3 Authority Key Identifier: keyid:AC:7C:00:D7:9C:4F:A1:C2:3D:39:E2:65:E5:43:D6:25:AF:B1:71:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHwA15xPocI9OeJl5UPWJa-xcZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C876/E4C0C416109011F180BBBFFF333D8C67/rHwA15xPocI9OeJl5UPWJa-xcZE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:bf:8a:c0:33:75:8e:10:0c:4e:9a:ac:1b:3d:08:d2:99:d9: 5b:dc:0f:ed:4f:f5:6c:43:6d:71:26:46:3c:56:30:b7:5b:11: 32:bb:df:89:46:10:1a:14:a4:46:d0:6b:cc:2a:f2:05:ab:95: 4a:8a:f9:9a:90:44:43:d0:dc:07:ec:a6:cf:72:15:17:b3:a1: 53:f7:eb:3a:8d:91:b6:2a:84:15:33:0c:a2:8f:27:85:b6:91: 88:8f:fe:54:ed:d6:7f:de:47:a5:45:db:87:53:ac:ab:44:da: d5:11:e6:d4:24:eb:1e:a3:be:91:6a:5f:10:38:43:da:fe:79: 6e:a2:8e:f2:a8:92:b9:f7:18:df:a0:af:dc:7d:03:b2:b6:c2: 0f:a1:25:ae:00:47:53:6b:a9:c2:9f:10:ef:dc:d9:aa:65:00: 78:06:37:b2:5c:75:1b:be:34:5d:8a:fd:ec:20:7e:3c:44:51: c7:71:16:0a:8f:a1:0a:7c:7a:3b:ce:ec:af:26:08:c9:42:a3: 9c:72:4e:aa:0d:43:21:b8:87:4e:15:79:f1:74:71:49:02:ee: 38:ca:c3:30:0a:6c:a9:50:ea:e7:53:9b:7b:35:f1:a2:27:5a: cd:bd:58:81:9f:04:c6:c8:ac:d5:d2:af:5a:5e:ad:d6:b1:b2: a8:41:d6:17 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Qzg3NjExMC8GA1UEBRMoQUM3QzAwRDc5QzRGQTFDMjNEMzlFMjY1RTU0M0Q2MjVB RkIxNzE5MTAeFw0yNjA0MTcwODM1NDJaFw0yNjA0MjQwODM1NDJaMBgxFjAUBgNV BAMTDTY5ZTFmMGRlLWY1MGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIONuD4Yttrk3Bc50JwO3tEzp0/A74MUGLPg/9fJqQyj4yS73hjZP38Y/Dm4ev ix7wBFpAKVoA6RPAOIzK9i40d3JDD76mBpUqNordHCQgBrpY570d2w6ASEatgMLJ MuN8Po2HAWNdP8DBb4lhn2SUlXPXClpZOKl90ODYXl6TdBZW8kRvxPVE8BbMp8XG Jc+sKwu+JrshUN8HWKa2HJaL6RR8zNmuhJAW+ymF0uClfyfzZVD2tUe5PqQk5BaT kkZuHOoK+oGy+6RO7p5YZPUCyV0NTidgV7SvviQ7hASHEuBu0SAQ+s8SYRoUTJgz L7pBLL6lQgj9sQ+gWeU8+UR1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUaiYb67Db UqzpXL5tY0lyimlPZsgwHwYDVR0jBBgwFoAUrHwA15xPocI9OeJl5UPWJa+xcZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDODc2L0U0QzBDNDE2MTA5 MDExRjE4MEJCQkZGRjMzM0Q4QzY3L3JId0ExNXhQb2NJOU9lSmw1VVBXSmEteGNa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckh3QTE1eFBvY0k5T2VKbDVVUFdKYS14Y1pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD ODc2L0U0QzBDNDE2MTA5MDExRjE4MEJCQkZGRjMzM0Q4QzY3L3JId0ExNXhQb2NJ OU9lSmw1VVBXSmEteGNaRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBvv4rAM3WOEAxOmqwbPQjSmdlb3A/tT/VsQ21xJkY8VjC3WxEyu9+JRhAaFKRG 0GvMKvIFq5VKivmakERD0NwH7KbPchUXs6FT9+s6jZG2KoQVMwyijyeFtpGIj/5U 7dZ/3kelRduHU6yrRNrVEebUJOseo76Ral8QOEPa/nluoo7yqJK59xjfoK/cfQOy tsIPoSWuAEdTa6nCnxDv3NmqZQB4BjeyXHUbvjRdiv3sIH48RFHHcRYKj6EKfHo7 zuyvJgjJQqOcck6qDUMhuIdOFXnxdHFJAu44ysMwCmypUOrnU5t7NfGiJ1rNvViB nwTGyKzV0q9aXq3WsbKoQdYX -----END CERTIFICATE-----Generated at Fri Apr 17 21:12:02 2026 by rpki-client