$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFCC/06C55AE816D311F1BAA410C8303D8C67/UG49HcCtxzidnNuq-lFwdBtVhho.mft File: UG49HcCtxzidnNuq-lFwdBtVhho.mft (raw, json) Hash identifier: LzqUOZPKCrST+8p2fWSVNN+NTJ9UFjP4SWJgS90Pryw= Subject key identifier: F7:C3:8D:A9:B2:85:E7:E2:14:2D:E1:DD:3C:95:5F:45:C5:EF:30:0E Authority key identifier: 50:6E:3D:1D:C0:AD:C7:38:9D:9C:DB:AA:FA:51:70:74:1B:55:86:1A Certificate issuer: /CN=A917FFCC/serialNumber=506E3D1DC0ADC7389D9CDBAAFA5170741B55861A Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UG49HcCtxzidnNuq-lFwdBtVhho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFCC/06C55AE816D311F1BAA410C8303D8C67/UG49HcCtxzidnNuq-lFwdBtVhho.mft Manifest number: 1A Signing time: Fri 17 Apr 2026 08:38:46 +0000 Manifest this update: Fri 17 Apr 2026 08:38:45 +0000 Manifest next update: Fri 24 Apr 2026 08:38:45 +0000 Files and hashes: 1: UG49HcCtxzidnNuq-lFwdBtVhho.crl (hash: bcRaPihkcUob4rE+uA09pAa0lgPWihVAtcyGc7+y2Mk=) 2: F780D776194611F1871644483C3D8C67.roa (hash: ho5eEvE3UY6na6Rt/OnfOdSf9aaBbnbQUdpdtiKwfI4=) 3: D040E1BC16D311F18D1B19D1303D8C67.roa (hash: FW4iyNzwJYx2pnIdKFnPL+9FFZZIBrzKM+GhxItUIOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFCC/06C55AE816D311F1BAA410C8303D8C67/UG49HcCtxzidnNuq-lFwdBtVhho.crl rsync://rpki.apnic.net/member_repository/A917FFCC/06C55AE816D311F1BAA410C8303D8C67/UG49HcCtxzidnNuq-lFwdBtVhho.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UG49HcCtxzidnNuq-lFwdBtVhho.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFCC, serialNumber=506E3D1DC0ADC7389D9CDBAAFA5170741B55861A Validity Not Before: Apr 17 08:38:45 2026 GMT Not After : Apr 24 08:38:45 2026 GMT Subject: CN=69e1f196-c22b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3a:fc:a0:04:5d:13:b0:0f:30:13:27:09:a8: fc:fd:96:63:12:8c:3e:4f:0c:bb:39:ce:be:ca:54: 7e:64:84:4a:ee:73:0c:9c:05:f4:0f:5f:18:1d:73: ef:0d:67:9a:e5:a0:73:eb:2e:af:f9:45:c1:9f:99: 6e:28:a6:7e:3d:12:86:d7:03:35:e7:d3:4d:47:ca: 39:9c:34:29:e3:ea:81:3b:32:60:74:62:24:5a:82: 14:f5:ef:06:27:1a:93:0b:c8:0e:16:22:44:c8:ed: 9d:be:1b:7b:5a:7a:d6:bd:65:7e:6a:bc:cf:b0:59: 2e:55:49:43:8f:e8:2f:f5:f8:90:7b:8d:e3:14:db: fd:87:f0:0e:2a:e8:1a:ce:c9:00:83:a4:4f:a3:b2: ad:c2:d3:07:7f:ec:28:34:da:bf:9d:9f:55:b0:83: e8:ab:1b:6e:71:eb:e3:43:cf:98:ae:c9:d4:00:bb: dc:c7:cc:84:38:4f:ad:f2:b3:c3:66:59:5a:35:32: d7:66:0e:dd:60:7d:08:54:1b:c8:dc:d5:d6:84:77: 91:57:96:f3:19:f4:32:29:cc:68:11:45:fd:e5:af: 94:57:b6:1f:9b:54:73:5c:e5:90:30:52:27:1b:e0: b3:10:be:32:c8:d1:be:25:17:00:74:8b:ae:b0:5c: 2d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C3:8D:A9:B2:85:E7:E2:14:2D:E1:DD:3C:95:5F:45:C5:EF:30:0E X509v3 Authority Key Identifier: keyid:50:6E:3D:1D:C0:AD:C7:38:9D:9C:DB:AA:FA:51:70:74:1B:55:86:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFCC/06C55AE816D311F1BAA410C8303D8C67/UG49HcCtxzidnNuq-lFwdBtVhho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UG49HcCtxzidnNuq-lFwdBtVhho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFCC/06C55AE816D311F1BAA410C8303D8C67/UG49HcCtxzidnNuq-lFwdBtVhho.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ee:57:00:47:8e:ca:a7:bb:42:ef:fd:a2:21:b8:06:61:c5: 12:54:06:05:a5:c5:6f:8d:2d:7c:a5:c3:98:83:1a:26:df:e7: 3c:8a:a2:fe:0e:fa:53:47:63:62:1f:e5:8f:9b:d4:24:d4:ef: 17:95:a5:2a:48:8c:43:da:52:99:08:cc:61:bb:a9:63:c8:b1: 65:cc:71:d1:0d:55:8e:4f:7d:35:32:69:5c:40:c4:31:59:29: 9b:63:d3:26:96:6f:de:44:bc:07:9b:bc:c0:52:86:c5:d7:4e: e7:38:33:2d:07:c3:13:31:b8:d0:db:03:33:a8:bc:f5:cb:e0: 9e:e3:6a:8d:1b:18:8c:ce:44:23:f8:09:0f:27:11:fe:54:23: 3b:0b:bc:48:dc:ff:0e:0f:76:cc:25:90:3b:8f:88:c6:3b:21: 5e:33:80:5a:92:a6:49:10:fe:7e:f5:5d:79:e5:e9:70:29:ca: 53:d0:0a:74:32:dc:c3:b0:41:a0:62:2b:d0:1a:af:f4:87:1a: 82:a7:6e:1c:97:36:82:1f:4b:0b:df:48:df:67:6c:ae:a1:e3: 8f:df:3a:4c:9b:01:34:a2:c8:9f:3c:a5:65:81:13:8b:25:a7: 60:a9:58:66:79:c9:bb:5f:dd:ab:47:bf:13:7e:b3:50:ca:d8: 82:f4:27:62 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkZDQzExMC8GA1UEBRMoNTA2RTNEMURDMEFEQzczODlEOUNEQkFBRkE1MTcwNzQx QjU1ODYxQTAeFw0yNjA0MTcwODM4NDVaFw0yNjA0MjQwODM4NDVaMBgxFjAUBgNV BAMTDTY5ZTFmMTk2LWMyMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsOvygBF0TsA8wEycJqPz9lmMSjD5PDLs5zr7KVH5khErucwycBfQPXxgdc+8N Z5rloHPrLq/5RcGfmW4opn49EobXAzXn001HyjmcNCnj6oE7MmB0YiRaghT17wYn GpMLyA4WIkTI7Z2+G3taeta9ZX5qvM+wWS5VSUOP6C/1+JB7jeMU2/2H8A4q6BrO yQCDpE+jsq3C0wd/7Cg02r+dn1Wwg+irG25x6+NDz5iuydQAu9zHzIQ4T63ys8Nm WVo1MtdmDt1gfQhUG8jc1daEd5FXlvMZ9DIpzGgRRf3lr5RXth+bVHNc5ZAwUicb 4LMQvjLI0b4lFwB0i66wXC3VAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU98ONqbKF 5+IULeHdPJVfRcXvMA4wHwYDVR0jBBgwFoAUUG49HcCtxzidnNuq+lFwdBtVhhow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGRkNDLzA2QzU1QUU4MTZE MzExRjFCQUE0MTBDODMwM0Q4QzY3L1VHNDlIY0N0eHppZG5OdXEtbEZ3ZEJ0Vmho by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUc0OUhjQ3R4emlkbk51cS1sRndkQnRWaGhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG RkNDLzA2QzU1QUU4MTZEMzExRjFCQUE0MTBDODMwM0Q4QzY3L1VHNDlIY0N0eHpp ZG5OdXEtbEZ3ZEJ0Vmhoby5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBO7lcAR47Kp7tC7/2iIbgGYcUSVAYFpcVvjS18pcOYgxom3+c8iqL+DvpTR2Ni H+WPm9Qk1O8XlaUqSIxD2lKZCMxhu6ljyLFlzHHRDVWOT301MmlcQMQxWSmbY9Mm lm/eRLwHm7zAUobF107nODMtB8MTMbjQ2wMzqLz1y+Ce42qNGxiMzkQj+AkPJxH+ VCM7C7xI3P8OD3bMJZA7j4jGOyFeM4BakqZJEP5+9V155elwKcpT0Ap0MtzDsEGg YivQGq/0hxqCp24clzaCH0sL30jfZ2yuoeOP3zpMmwE0osifPKVlgROLJadgqVhm ecm7X92rR78TfrNQytiC9Cdi -----END CERTIFICATE-----Generated at Fri Apr 17 23:27:20 2026 by rpki-client