$ rpki-client -vvf rpki.apnic.net/member_repository/A917E322/C9C2AAD8187611F186284E4E363D8C67/-mtidXvK1FesoHClHEgItLfJM3A.mft File: -mtidXvK1FesoHClHEgItLfJM3A.mft (raw, json) Hash identifier: hlkkCFeC1kChXdN1FnOGaATKS3NbLtMCNM+IdTEuHEw= Subject key identifier: 92:3A:47:D2:1C:34:BC:51:89:AC:89:A4:F3:D8:BF:B1:68:D8:FC:8D Authority key identifier: FA:6B:62:75:7B:CA:D4:57:AC:A0:70:A5:1C:48:08:B4:B7:C9:33:70 Certificate issuer: /CN=A917E322/serialNumber=FA6B62757BCAD457ACA070A51C4808B4B7C93370 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mtidXvK1FesoHClHEgItLfJM3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E322/C9C2AAD8187611F186284E4E363D8C67/-mtidXvK1FesoHClHEgItLfJM3A.mft Manifest number: 19 Signing time: Fri 17 Apr 2026 08:40:25 +0000 Manifest this update: Fri 17 Apr 2026 08:40:24 +0000 Manifest next update: Fri 24 Apr 2026 08:40:24 +0000 Files and hashes: 1: -mtidXvK1FesoHClHEgItLfJM3A.crl (hash: bSuP1JOKpRJ30pD4bJlQJf6Gx85WAUyndATvC6rcOmo=) 2: 824F8AD0187711F1AF6111A7363D8C67.roa (hash: /rBFDP4ucRayd+6pogF2vcfXHdX6dh/y/lIPddm4CdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E322/C9C2AAD8187611F186284E4E363D8C67/-mtidXvK1FesoHClHEgItLfJM3A.crl rsync://rpki.apnic.net/member_repository/A917E322/C9C2AAD8187611F186284E4E363D8C67/-mtidXvK1FesoHClHEgItLfJM3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mtidXvK1FesoHClHEgItLfJM3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E322, serialNumber=FA6B62757BCAD457ACA070A51C4808B4B7C93370 Validity Not Before: Apr 17 08:40:24 2026 GMT Not After : Apr 24 08:40:24 2026 GMT Subject: CN=69e1f1f9-1b32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ab:72:66:57:fc:9c:d2:96:ad:71:fd:93:9d: 15:3d:6a:11:15:90:00:5a:91:f5:c1:c1:3d:a2:91: bf:7f:c5:c5:0b:9f:f9:c7:a2:7a:cc:9f:60:e0:ba: 70:6b:61:2b:6a:4b:a9:f3:31:70:7d:ad:ed:53:dd: c2:21:7d:f9:5c:0e:dc:7a:23:62:fa:7a:30:5a:8d: 10:51:16:fc:93:46:71:1b:24:e0:22:90:b4:e7:a5: 41:d0:70:60:d1:c6:bc:3c:69:44:8d:36:9e:39:bb: dc:cf:df:b3:f4:e8:1f:5c:0a:cf:94:0a:cc:f7:84: 4e:fc:fc:ce:94:85:9b:cf:d7:40:7b:31:98:06:44: 75:9c:9d:75:87:67:92:d0:5d:7a:3b:68:d2:6b:50: a4:ff:93:b0:97:1d:43:d0:f7:1e:fe:f1:05:de:b5: ea:a1:cf:7d:6d:69:2b:7a:1c:60:ab:7a:7b:f1:27: 85:fe:b8:a1:8e:c5:b1:d1:74:4f:8c:4f:28:e1:5e: f9:f0:c1:5c:08:a6:d9:63:b6:e0:dd:65:dc:09:10: 55:75:03:2c:40:43:2d:23:23:95:9f:73:a6:48:87: 7c:04:c7:8f:71:dc:06:e3:0c:93:3b:92:26:8f:62: fc:9f:18:4e:51:be:e1:ae:fe:5c:00:60:38:f9:25: e4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3A:47:D2:1C:34:BC:51:89:AC:89:A4:F3:D8:BF:B1:68:D8:FC:8D X509v3 Authority Key Identifier: keyid:FA:6B:62:75:7B:CA:D4:57:AC:A0:70:A5:1C:48:08:B4:B7:C9:33:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E322/C9C2AAD8187611F186284E4E363D8C67/-mtidXvK1FesoHClHEgItLfJM3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mtidXvK1FesoHClHEgItLfJM3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E322/C9C2AAD8187611F186284E4E363D8C67/-mtidXvK1FesoHClHEgItLfJM3A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:39:13:47:d6:a3:0c:07:df:86:41:56:28:61:63:db:c7:90: 92:4d:b2:6c:ea:c5:f0:cd:f8:30:a8:df:cc:fa:b4:af:6b:97: 4b:53:6c:ad:16:1e:72:ca:b8:4d:25:32:53:6b:02:35:39:83: fe:44:b2:c7:ce:a6:f4:1f:b5:6b:1c:b1:56:ec:55:26:f6:3d: aa:79:ed:57:84:0a:f7:3c:2b:bc:cc:3c:d0:96:17:e8:38:ad: 8c:a6:40:cc:e3:59:ab:99:ae:d5:98:69:a4:a5:0c:a4:61:e2: 77:0a:85:bf:ce:80:eb:7c:99:95:a4:f0:91:86:a6:43:14:57: 5e:52:30:a5:9a:e6:5e:19:10:ff:6f:49:aa:b7:04:7f:bd:3e: b1:b3:b0:be:8e:ae:a6:b8:47:67:3f:b3:97:0a:47:40:66:26: 99:58:0a:b4:91:5c:98:67:e7:4b:8d:5a:48:cb:61:ce:87:69: ef:a2:c8:35:64:90:7f:d5:20:63:31:7d:2c:d3:8c:fa:64:1d: 97:0c:ec:95:5d:97:cc:71:7f:05:08:7b:20:3b:58:60:b8:a6: 31:2d:c0:94:a8:ae:ea:5c:4e:4c:90:fc:a8:22:cb:82:8a:d0: 58:14:7b:ce:21:e2:75:a3:01:c6:79:4d:43:58:64:b5:d7:36: 66:88:0b:f9 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTMyMjExMC8GA1UEBRMoRkE2QjYyNzU3QkNBRDQ1N0FDQTA3MEE1MUM0ODA4QjRC N0M5MzM3MDAeFw0yNjA0MTcwODQwMjRaFw0yNjA0MjQwODQwMjRaMBgxFjAUBgNV BAMTDTY5ZTFmMWY5LTFiMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwq3JmV/yc0patcf2TnRU9ahEVkABakfXBwT2ikb9/xcULn/nHonrMn2DgunBr YStqS6nzMXB9re1T3cIhfflcDtx6I2L6ejBajRBRFvyTRnEbJOAikLTnpUHQcGDR xrw8aUSNNp45u9zP37P06B9cCs+UCsz3hE78/M6UhZvP10B7MZgGRHWcnXWHZ5LQ XXo7aNJrUKT/k7CXHUPQ9x7+8QXeteqhz31taSt6HGCrenvxJ4X+uKGOxbHRdE+M TyjhXvnwwVwIptljtuDdZdwJEFV1AyxAQy0jI5Wfc6ZIh3wEx49x3AbjDJM7kiaP YvyfGE5RvuGu/lwAYDj5JeSbAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUkjpH0hw0 vFGJrImk89i/sWjY/I0wHwYDVR0jBBgwFoAU+mtidXvK1FesoHClHEgItLfJM3Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMzIyL0M5QzJBQUQ4MTg3 NjExRjE4NjI4NEU0RTM2M0Q4QzY3Ly1tdGlkWHZLMUZlc29IQ2xIRWdJdExmSk0z QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLW10aWRYdksxRmVzb0hDbEhFZ0l0TGZKTTNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MzIyL0M5QzJBQUQ4MTg3NjExRjE4NjI4NEU0RTM2M0Q4QzY3Ly1tdGlkWHZLMUZl c29IQ2xIRWdJdExmSk0zQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAuORNH1qMMB9+GQVYoYWPbx5CSTbJs6sXwzfgwqN/M+rSva5dLU2ytFh5yyrhN JTJTawI1OYP+RLLHzqb0H7VrHLFW7FUm9j2qee1XhAr3PCu8zDzQlhfoOK2MpkDM 41mrma7VmGmkpQykYeJ3CoW/zoDrfJmVpPCRhqZDFFdeUjClmuZeGRD/b0mqtwR/ vT6xs7C+jq6muEdnP7OXCkdAZiaZWAq0kVyYZ+dLjVpIy2HOh2nvosg1ZJB/1SBj MX0s04z6ZB2XDOyVXZfMcX8FCHsgO1hguKYxLcCUqK7qXE5MkPyoIsuCitBYFHvO IeJ1owHGeU1DWGS11zZmiAv5 -----END CERTIFICATE-----Generated at Fri Apr 17 12:18:32 2026 by rpki-client