$ rpki-client -vvf rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft File: 2y3U_v83CRJX9gGdUKI5MOxG4fs.mft (raw, json) Hash identifier: KD3rEHHUjhWo2Ivt5NZeV+BX+4ZgHUMHxfVb5cete1A= Subject key identifier: B5:F6:8C:49:A1:54:E7:67:03:AB:B4:31:EC:7E:D0:1A:B6:CF:E5:2C Authority key identifier: DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB Certificate issuer: /CN=A917F116/serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft Manifest number: A7 Signing time: Fri 17 Apr 2026 07:20:31 +0000 Manifest this update: Fri 17 Apr 2026 07:20:31 +0000 Manifest next update: Fri 24 Apr 2026 07:20:31 +0000 Files and hashes: 1: 2y3U_v83CRJX9gGdUKI5MOxG4fs.crl (hash: TYohle1FvMNUMXsofHxqlPHsUV3iGCSNT4ljx4biNlE=) 2: 3E9B5E9C791511F09DD1364EC4F9AE02.roa (hash: ZCsqysIZa7spZRDM5FKGh48jQ/BUyE3DwkRZdcL8PRg=) 3: 1210E96E791511F08360054EC4F9AE02.roa (hash: ULmaEbsCt8jx5VNQEK4A/L6Td+dmpFbzrt4LFjox2QU=) 4: 029780A8791D11F08A28C96CC4F9AE02.roa (hash: EvnupFOZS9saBqM7mIs3MvjaMbJtIFIC/WVZZVoBHUA=) 5: 5747D682B8C611F085BFD10DC4F9AE02.roa (hash: e/nGF9gabnytD0nDQ8tiyYbCWD4pMyOmMIQ/tzUfKDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F116, serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Validity Not Before: Apr 17 07:20:31 2026 GMT Not After : Apr 24 07:20:31 2026 GMT Subject: CN=69e1df3f-2166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:91:ce:4c:84:aa:67:a0:7e:a1:c6:e5:fb:9a: 2a:24:25:c0:d0:57:f0:97:bf:f0:34:e1:1f:94:64: 87:f6:ed:8a:af:f0:4f:6e:57:31:93:a9:ab:e6:41: b7:00:fc:f1:1b:21:fa:93:44:a6:68:f1:52:a1:84: 11:de:9b:4f:85:9f:05:0e:cd:8f:1a:ef:b8:01:32: 0d:20:0b:74:79:a6:1e:eb:3c:fd:af:fc:fb:a3:07: af:93:a5:c8:6c:20:0c:ee:6f:44:7a:d0:26:26:cf: d6:2c:5d:95:62:82:06:4f:1e:2d:47:da:09:39:79: 58:b7:3d:a1:63:b3:b3:92:5b:22:bc:e7:68:02:fb: ce:4e:83:39:69:64:23:b0:76:ec:62:80:1b:6a:b1: ac:8d:3c:45:a7:95:d6:6c:0a:3b:b7:e9:e6:dc:ac: 23:21:b3:a5:f4:2b:a0:26:2d:26:83:d9:32:06:ba: 38:ae:71:8e:b0:46:dc:a1:65:71:24:7e:40:9f:13: 98:dd:0e:42:27:39:4b:94:d8:6d:f0:52:7b:21:04: fb:10:4c:99:48:d7:c7:48:b7:3e:41:7c:c1:4c:ab: 61:09:4a:40:04:50:f5:e7:5b:e1:da:7e:b2:80:fc: 57:2c:07:47:eb:21:4b:29:ca:60:86:5a:29:78:0a: 17:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F6:8C:49:A1:54:E7:67:03:AB:B4:31:EC:7E:D0:1A:B6:CF:E5:2C X509v3 Authority Key Identifier: keyid:DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:66:8d:88:bd:5a:ea:65:5b:26:7e:61:ce:50:1a:7c:3b:43: 3a:18:24:3c:ff:69:a8:f5:e0:46:a3:b0:71:1c:9b:2c:4d:77: 44:d5:b2:cb:2f:2d:ab:89:36:fa:ad:b6:c3:0c:be:a2:25:4d: cc:4a:85:97:f4:01:77:9b:3a:90:1b:79:87:be:ab:5f:85:8c: 2c:5b:df:43:c6:f8:81:d3:2b:b3:ca:c8:3e:4f:0b:9c:62:08: 85:f1:3c:80:04:5d:74:ea:dd:3b:4c:17:1c:99:25:f5:55:78: f1:38:df:4f:8c:23:9d:a5:3c:80:7b:fa:c3:20:58:73:14:6d: 24:eb:0c:67:32:ff:55:ab:35:d2:02:7a:a3:95:6e:83:46:73: de:47:16:10:32:44:67:f0:b0:25:87:4d:83:3f:4c:7b:8a:17: 61:e2:87:b2:19:f3:b3:da:32:ac:f6:13:ad:55:b5:33:cd:f3: 27:0b:4a:03:ce:79:45:02:d0:9d:8b:73:8f:db:d4:a0:04:27: 63:86:35:0f:ca:14:e2:1d:54:68:3f:30:e9:20:66:5e:20:33: e5:de:e3:a1:9e:73:f2:c4:c1:1a:64:08:ea:8f:94:66:3f:7c: d7:14:5e:8d:a1:ec:0c:73:0a:d2:45:91:f3:a4:d8:34:1b:74: 4e:71:81:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YxMTYxMTAvBgNVBAUTKERCMkRENEZFRkYzNzA5MTI1N0Y2MDE5RDUwQTIzOTMw RUM0NkUxRkIwHhcNMjYwNDE3MDcyMDMxWhcNMjYwNDI0MDcyMDMxWjAYMRYwFAYD VQQDEw02OWUxZGYzZi0yMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5HOTISqZ6B+ocbl+5oqJCXA0Ffwl7/wNOEflGSH9u2Kr/BPblcxk6mr5kG3 APzxGyH6k0SmaPFSoYQR3ptPhZ8FDs2PGu+4ATINIAt0eaYe6zz9r/z7owevk6XI bCAM7m9EetAmJs/WLF2VYoIGTx4tR9oJOXlYtz2hY7OzklsivOdoAvvOToM5aWQj sHbsYoAbarGsjTxFp5XWbAo7t+nm3KwjIbOl9CugJi0mg9kyBro4rnGOsEbcoWVx JH5AnxOY3Q5CJzlLlNht8FJ7IQT7EEyZSNfHSLc+QXzBTKthCUpABFD151vh2n6y gPxXLAdH6yFLKcpghlopeAoXWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLX2jEmh VOdnA6u0Mex+0Bq2z+UsMB8GA1UdIwQYMBaAFNst1P7/NwkSV/YBnVCiOTDsRuH7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjExNi84QkNGRkYwNjZF REUxMUYwOTFFMDJBMjFDNEY5QUUwMi8yeTNVX3Y4M0NSSlg5Z0dkVUtJNU1PeEc0 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5M1VfdjgzQ1JKWDlnR2RVS0k1TU94RzRmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjExNi84QkNGRkYwNjZFREUxMUYwOTFFMDJBMjFDNEY5QUUwMi8yeTNVX3Y4M0NS Slg5Z0dkVUtJNU1PeEc0ZnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQmaNiL1a6mVbJn5hzlAafDtDOhgkPP9pqPXgRqOwcRybLE13RNWyyy8tq4k2 +q22wwy+oiVNzEqFl/QBd5s6kBt5h76rX4WMLFvfQ8b4gdMrs8rIPk8LnGIIhfE8 gARddOrdO0wXHJkl9VV48TjfT4wjnaU8gHv6wyBYcxRtJOsMZzL/Vas10gJ6o5Vu g0Zz3kcWEDJEZ/CwJYdNgz9Me4oXYeKHshnzs9oyrPYTrVW1M83zJwtKA855RQLQ nYtzj9vUoAQnY4Y1D8oU4h1UaD8w6SBmXiAz5d7joZ5z8sTBGmQI6o+UZj981xRe jaHsDHMK0kWR86TYNBt0TnGBeA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:21:10 2026 by rpki-client