$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: A1+pSbt79+i5ryk2/7NaqbtjtGWxSPkIogbpVzDRsjU= Subject key identifier: A0:E9:98:1C:96:00:6A:41:0A:DA:92:4E:F7:60:10:14:DB:26:9A:5D Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 0838 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 0830 Signing time: Thu 16 Apr 2026 20:51:47 +0000 Manifest this update: Thu 16 Apr 2026 20:51:47 +0000 Manifest next update: Thu 23 Apr 2026 20:51:47 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: V8D1ehUiiCX1jCw7wLWmi3Et8k9Zt2vaRveIFCQByNY=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: Ca1sU4x07vR9ic014MfkvHriHHtFXo0Z6p1sbkhlP4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2104 (0x838) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Apr 16 20:51:47 2026 GMT Not After : Apr 23 20:51:47 2026 GMT Subject: CN=69e14be3-152d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ff:85:ed:e4:b6:65:57:0f:4d:bf:15:9f:79: 8c:85:18:22:d1:7d:30:19:d2:c4:8c:e0:6a:3a:66: 04:6f:c9:bb:10:34:40:eb:b8:78:a2:82:c6:ea:7d: 71:14:85:a3:44:50:e5:35:66:a6:18:cf:51:a8:f1: 82:b9:77:f9:a6:f4:5a:72:cd:fc:7e:8d:29:92:ae: c9:27:34:0d:d3:f7:f5:73:36:cf:a4:62:6f:f8:66: 0c:03:f9:c0:d8:de:52:88:70:c4:22:41:31:43:e2: 79:e8:f7:38:44:3b:04:e5:0f:31:77:43:09:c9:6b: 93:01:ba:e6:ce:08:42:b9:4d:58:b7:b3:cb:15:39: ef:a1:f1:c0:31:cd:3a:f1:ac:f5:30:fc:ef:35:33: b4:df:49:80:67:76:a8:fb:2f:ab:53:7d:df:f8:3e: 1c:d5:3f:05:e9:1f:0a:d6:8e:e7:28:b0:1a:51:72: 18:f4:85:dc:35:99:dd:10:45:dc:8a:79:cc:84:cb: 49:57:a3:de:6f:2c:76:58:bb:6c:e5:64:9a:b8:63: e8:b4:b2:00:b3:28:7a:ce:26:ea:48:da:93:c6:56: 2f:f3:d5:c6:f2:e1:6a:e3:04:7c:49:81:79:3c:e9: 2f:74:d6:a6:58:66:a2:fc:5f:01:04:93:49:55:52: 7b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E9:98:1C:96:00:6A:41:0A:DA:92:4E:F7:60:10:14:DB:26:9A:5D X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:17:3c:2a:9f:58:ef:71:00:2e:2f:2b:1e:c3:97:29:f1:84: f8:e7:fe:6b:13:ce:3b:72:ab:f4:c9:1f:63:93:d0:6b:85:df: 37:39:e3:ec:fd:2c:04:1d:0c:2d:a8:5f:5f:9a:8d:5b:93:47: 85:48:34:86:3e:bc:9e:e1:46:b9:2a:39:83:59:31:cf:1c:c6: 8b:01:0d:c4:bc:0c:5d:84:05:9c:5e:9c:db:b4:76:8d:c0:00: 1c:e6:7b:ec:90:06:8b:d6:4c:3a:ec:54:b5:31:00:04:a0:2d: 4b:12:65:fd:95:82:2a:38:10:24:61:5e:bf:84:9d:2e:2a:c1: f6:35:ed:b4:46:76:1f:a7:ff:41:a0:23:1f:5a:9d:41:0b:fd: a7:ad:22:39:6d:20:91:32:ad:47:33:80:e0:33:97:6c:46:46: ec:a4:0b:8f:bb:88:c6:ae:aa:92:9f:f1:98:85:ea:ad:ee:d1: f7:0f:94:e8:a5:86:5b:0e:50:a6:ed:b0:f2:90:a4:0d:fc:47: 4d:f6:4e:b2:60:d3:ab:27:e1:ef:2f:c0:06:b7:5d:e8:40:b8: aa:64:79:8c:bb:7c:eb:6b:cc:66:95:b1:a3:74:71:2b:75:d8: d0:f6:85:8c:ff:40:74:12:e9:2b:e7:bc:a6:11:5f:26:cc:d9: de:0c:c4:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjYwNDE2MjA1MTQ3WhcNMjYwNDIzMjA1MTQ3WjAYMRYwFAYD VQQDEw02OWUxNGJlMy0xNTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkP+F7eS2ZVcPTb8Vn3mMhRgi0X0wGdLEjOBqOmYEb8m7EDRA67h4ooLG6n1x FIWjRFDlNWamGM9RqPGCuXf5pvRacs38fo0pkq7JJzQN0/f1czbPpGJv+GYMA/nA 2N5SiHDEIkExQ+J56Pc4RDsE5Q8xd0MJyWuTAbrmzghCuU1Yt7PLFTnvofHAMc06 8az1MPzvNTO030mAZ3ao+y+rU33f+D4c1T8F6R8K1o7nKLAaUXIY9IXcNZndEEXc innMhMtJV6Pebyx2WLts5WSauGPotLIAsyh6zibqSNqTxlYv89XG8uFq4wR8SYF5 POkvdNamWGai/F8BBJNJVVJ7gwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKDpmByW AGpBCtqSTvdgEBTbJppdMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhhc8Kp9Y73EALi8rHsOXKfGE+Of+axPOO3Kr9MkfY5PQa4XfNznj7P0sBB0M LahfX5qNW5NHhUg0hj68nuFGuSo5g1kxzxzGiwENxLwMXYQFnF6c27R2jcAAHOZ7 7JAGi9ZMOuxUtTEABKAtSxJl/ZWCKjgQJGFev4SdLirB9jXttEZ2H6f/QaAjH1qd QQv9p60iOW0gkTKtRzOA4DOXbEZG7KQLj7uIxq6qkp/xmIXqre7R9w+U6KWGWw5Q pu2w8pCkDfxHTfZOsmDTqyfh7y/ABrdd6EC4qmR5jLt862vMZpWxo3RxK3XY0PaF jP9AdBLpK+e8phFfJszZ3gzEEQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:51:00 2026 by rpki-client