$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: oULbrwy8GrWja8Sw3b43kLuyNd7IQyZOvof2fZETLUA= Subject key identifier: D5:26:85:5C:C6:D3:B5:B4:98:FA:D6:0D:90:63:86:CC:20:D6:FE:68 Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 065E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 0657 Signing time: Thu 16 Apr 2026 22:34:25 +0000 Manifest this update: Thu 16 Apr 2026 22:34:24 +0000 Manifest next update: Thu 23 Apr 2026 22:34:24 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: jQiCT71eq/PteQhXcNBgH2M+sFYbK430yQ3ooyszZJ0=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: XRS9X+c5H6+PF5E3AA5+5JCGv1T1c0IZvsE7D/UMy8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Apr 16 22:34:24 2026 GMT Not After : Apr 23 22:34:24 2026 GMT Subject: CN=69e163f1-f6e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:19:fc:72:57:13:87:b1:76:f7:a8:62:07:ba: 9e:c4:7f:f3:be:f1:7a:22:c6:a7:06:0c:6c:17:38: 26:62:67:0a:2f:06:5f:44:1c:f8:cb:d1:68:95:8d: 5e:5f:5e:48:5d:d4:9d:bc:8c:da:de:49:73:3a:7e: 54:6d:87:94:b7:7f:52:77:4a:07:f0:7c:a8:49:f1: 61:d7:d5:f4:e9:bd:d5:b5:82:2b:65:69:30:93:ae: 19:db:ce:8f:fd:97:47:7d:b7:b5:9b:82:7e:61:4a: 91:91:e6:c4:3d:95:90:ec:d0:e1:64:b9:51:bf:29: b2:c0:3e:cd:7b:50:a0:82:51:af:d6:3a:97:9c:37: bb:80:b4:f3:c1:98:64:17:4a:b9:a1:8a:16:81:9a: d6:4c:c5:a8:e6:14:c5:5b:81:5c:ee:91:42:24:2e: 47:58:a3:7b:28:e7:42:e1:39:d9:54:a4:93:9c:86: 4f:c8:4e:a5:6e:27:6f:50:d9:35:f0:7f:b4:a5:7c: d4:ee:46:cf:03:91:ec:d0:db:1e:9d:11:d6:55:7c: 27:26:5b:21:67:f6:7b:db:b6:ad:e4:83:13:3a:c7: 52:8a:38:07:9d:05:3f:5a:0c:4a:6a:ed:bc:30:0c: f4:58:77:85:52:e7:c2:14:8a:4c:e0:7a:9c:7e:fe: 29:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:26:85:5C:C6:D3:B5:B4:98:FA:D6:0D:90:63:86:CC:20:D6:FE:68 X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e1:b9:a5:d8:57:8d:6b:ce:b6:b9:b0:ff:4e:b0:c8:9a:73: 4f:29:1e:81:ea:d2:a8:66:c9:1c:56:4e:55:b7:1e:11:cc:de: be:95:60:f9:f5:81:bb:99:63:42:58:29:cc:6c:51:fc:6e:ac: f0:47:2a:71:1c:cd:a8:c1:23:92:36:38:24:c6:91:9e:13:88: f7:fd:67:97:88:e3:56:5b:33:5e:59:01:fe:0b:19:a3:13:c4: 91:c2:6a:1c:e9:2c:15:e4:a0:4c:7b:5a:33:3a:da:63:5e:e0: d5:d5:5f:b2:46:e6:78:70:7a:dd:49:4c:77:e2:17:ed:e0:93: fd:36:3e:23:84:e9:02:fe:be:73:5e:c5:2a:b3:9f:c5:f2:84: 29:7a:9a:d0:4c:0f:77:a4:fe:a6:a8:42:ab:16:63:ce:6e:a3: f8:12:61:f6:dd:df:c8:7c:52:8d:90:72:43:df:cc:35:2b:88: 55:d4:58:03:c0:9c:ee:65:f4:df:c6:ec:c9:bd:28:a0:01:bc: cb:52:0e:75:7a:22:76:0d:f7:a1:1e:a4:d3:6d:1c:4e:d0:49: e9:43:5d:22:75:2a:d4:aa:a9:a6:7d:07:12:ad:33:7e:64:0a: ea:f3:15:4d:27:4d:5c:9d:c1:04:d8:d5:45:50:b7:a3:ab:eb: f6:ac:57:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjYwNDE2MjIzNDI0WhcNMjYwNDIzMjIzNDI0WjAYMRYwFAYD VQQDEw02OWUxNjNmMS1mNmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhn8clcTh7F296hiB7qexH/zvvF6IsanBgxsFzgmYmcKLwZfRBz4y9FolY1e X15IXdSdvIza3klzOn5UbYeUt39Sd0oH8HyoSfFh19X06b3VtYIrZWkwk64Z286P /ZdHfbe1m4J+YUqRkebEPZWQ7NDhZLlRvymywD7Ne1CgglGv1jqXnDe7gLTzwZhk F0q5oYoWgZrWTMWo5hTFW4Fc7pFCJC5HWKN7KOdC4TnZVKSTnIZPyE6lbidvUNk1 8H+0pXzU7kbPA5Hs0NsenRHWVXwnJlshZ/Z727at5IMTOsdSijgHnQU/WgxKau28 MAz0WHeFUufCFIpM4Hqcfv4phQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNUmhVzG 07W0mPrWDZBjhswg1v5oMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiOG5pdhXjWvOtrmw/06wyJpzTykegerSqGbJHFZOVbceEczevpVg+fWBu5lj QlgpzGxR/G6s8EcqcRzNqMEjkjY4JMaRnhOI9/1nl4jjVlszXlkB/gsZoxPEkcJq HOksFeSgTHtaMzraY17g1dVfskbmeHB63UlMd+IX7eCT/TY+I4TpAv6+c17FKrOf xfKEKXqa0EwPd6T+pqhCqxZjzm6j+BJh9t3fyHxSjZByQ9/MNSuIVdRYA8Cc7mX0 38bsyb0ooAG8y1IOdXoidg33oR6k020cTtBJ6UNdInUq1Kqppn0HEq0zfmQK6vMV TSdNXJ3BBNjVRVC3o6vr9qxX+A== -----END CERTIFICATE-----Generated at Fri Apr 17 06:33:17 2026 by rpki-client