$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: G8gPwksBBp1TbGKtJB4Py9Ww1knzVt5mXnKXOgzwGec= Subject key identifier: CD:C8:DE:53:8E:95:B2:D0:67:BA:44:92:E8:4B:24:6F:E4:B2:DF:C4 Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 03BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 03AC Signing time: Fri 17 Apr 2026 00:37:29 +0000 Manifest this update: Fri 17 Apr 2026 00:37:28 +0000 Manifest next update: Fri 24 Apr 2026 00:37:28 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: ImDflmxeP/4FI1wR04B8X04sAo8pgnadtokaxSlUcNs=) 2: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: elymg/oKLo36bQB76f3/BjLy1dUOOeqORBslgCNGm4w=) 3: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: PpySkmXHDFAMdn8q7qJMbkbAjwFyZ6Dte8VkGbnBdUI=) 4: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: VgHpUmv5XapUWkoHMwq6CHIEaAxNeoc/taSmWAxGkC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Apr 17 00:37:28 2026 GMT Not After : Apr 24 00:37:28 2026 GMT Subject: CN=69e180c8-4d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:14:0c:db:ae:0b:77:97:ee:0c:53:2a:78:01: 5c:c0:d1:ab:07:dd:39:05:c2:01:47:29:22:b7:2c: 31:68:92:12:04:7f:e8:0b:06:50:1a:73:4e:6d:36: 0e:d7:fc:71:97:06:da:1a:fa:75:1c:89:5e:61:32: 23:5a:22:4d:2b:1e:bc:3a:f8:86:05:fc:13:8f:ee: 1c:ba:ee:5d:19:43:bc:7c:20:6f:56:47:1c:66:9d: ac:ad:a4:47:57:9e:08:d4:b7:57:96:6e:a0:6b:b7: 4b:bf:46:65:f6:18:81:e5:3a:6c:b2:68:8b:68:0e: 99:b5:e2:43:66:2b:a0:2f:e4:d3:82:a5:9b:68:e8: 9d:52:89:08:3d:1a:3e:3d:0e:06:5b:18:77:ec:bb: 50:59:45:95:57:28:d4:42:bc:20:b3:00:0f:12:6e: 74:aa:af:b7:c7:95:95:9d:e3:62:2b:25:a5:20:73: 0f:87:a8:2c:18:36:7e:55:6c:1b:bf:7b:24:5d:85: e0:02:15:34:bb:56:0c:14:f0:34:8e:e9:14:9e:78: 9a:b1:57:aa:ca:31:09:74:3c:22:0f:cd:8c:a3:13: 70:ee:2e:0f:b3:76:1a:f1:d3:32:17:6e:11:b3:35: 39:10:42:5d:a8:d4:28:e9:c8:a0:ca:9e:68:eb:87: bf:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C8:DE:53:8E:95:B2:D0:67:BA:44:92:E8:4B:24:6F:E4:B2:DF:C4 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:72:9e:f4:3a:7b:7a:5b:8e:1e:7d:63:f9:65:61:fb:fa:bd: ff:5f:e5:2c:0f:c8:a3:01:50:64:71:9a:82:79:ac:ad:d5:65: 34:c3:33:44:ea:64:e9:91:4e:80:d4:fd:cf:c7:cd:d6:ae:c7: 64:c3:3c:dd:56:dd:f7:6b:84:14:28:b2:06:bd:f0:81:45:2c: a9:73:d8:fc:69:5d:6d:ef:71:e8:1b:cd:95:3d:3e:92:1b:42: 31:a1:79:bd:b1:82:1f:ac:9c:b3:cf:e8:46:22:89:ab:65:4d: 42:3b:5f:c8:54:19:59:a1:ad:73:65:11:cb:ac:0c:b7:37:65: c8:c4:07:fc:fa:42:38:9e:a3:c5:51:86:5a:1d:ad:93:be:cd: 46:6e:45:ba:26:7b:0e:a6:df:84:99:21:6b:ac:27:6f:65:e8: 02:ff:57:86:97:2e:89:c9:05:be:79:f1:1a:17:d9:9f:bd:67: 16:91:db:9c:61:c8:aa:83:a0:84:28:af:07:3d:d9:9b:7d:4e: 13:4d:40:f7:0a:e5:99:dc:48:f1:89:e4:ca:07:25:30:5c:35: 49:fd:4f:94:57:b7:bf:1f:bb:24:bf:38:0a:a1:98:23:93:f6: 2d:24:ef:44:8d:a9:98:e3:db:fb:dc:4e:7f:b0:71:fe:7d:f0: 83:da:f2:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjYwNDE3MDAzNzI4WhcNMjYwNDI0MDAzNzI4WjAYMRYwFAYD VQQDEw02OWUxODBjOC00ZDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBQM264Ld5fuDFMqeAFcwNGrB905BcIBRykitywxaJISBH/oCwZQGnNObTYO 1/xxlwbaGvp1HIleYTIjWiJNKx68OviGBfwTj+4cuu5dGUO8fCBvVkccZp2sraRH V54I1LdXlm6ga7dLv0Zl9hiB5TpssmiLaA6ZteJDZiugL+TTgqWbaOidUokIPRo+ PQ4GWxh37LtQWUWVVyjUQrwgswAPEm50qq+3x5WVneNiKyWlIHMPh6gsGDZ+VWwb v3skXYXgAhU0u1YMFPA0jukUnniasVeqyjEJdDwiD82MoxNw7i4Ps3Ya8dMyF24R szU5EEJdqNQo6cigyp5o64e/dwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3I3lOO lbLQZ7pEkuhLJG/kst/EMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEHKe9Dp7eluOHn1j+WVh+/q9/1/lLA/IowFQZHGagnmsrdVlNMMzROpk6ZFO gNT9z8fN1q7HZMM83Vbd92uEFCiyBr3wgUUsqXPY/Gldbe9x6BvNlT0+khtCMaF5 vbGCH6ycs8/oRiKJq2VNQjtfyFQZWaGtc2URy6wMtzdlyMQH/PpCOJ6jxVGGWh2t k77NRm5FuiZ7DqbfhJkha6wnb2XoAv9XhpcuickFvnnxGhfZn71nFpHbnGHIqoOg hCivBz3Zm31OE01A9wrlmdxI8YnkygclMFw1Sf1PlFe3vx+7JL84CqGYI5P2LSTv RI2pmOPb+9xOf7Bx/n3wg9ryzA== -----END CERTIFICATE-----Generated at Fri Apr 17 08:07:33 2026 by rpki-client