$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: 5TArCvWSA12DnsrJt1i4VYRULjNXiDFjFg9qw/ck1Os= Subject key identifier: 28:3A:BD:07:01:2E:9F:7B:61:F2:71:BC:7D:C2:0C:6E:5A:C0:D1:52 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0CE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0CD7 Signing time: Thu 16 Apr 2026 18:18:23 +0000 Manifest this update: Thu 16 Apr 2026 18:18:22 +0000 Manifest next update: Thu 23 Apr 2026 18:18:22 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: s867DdmaopD8Z3rvtQAlOkvQAbWTaT7yK1ix2Olsj2k=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: 4IWb1AIWezAKoYALmO7zIehYCtFAdvZjNhim+DfuwqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Apr 16 18:18:22 2026 GMT Not After : Apr 23 18:18:22 2026 GMT Subject: CN=69e127ee-4c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:41:d2:9e:65:5f:60:b0:fe:ef:9f:5c:57:48: 73:5c:3d:7c:8b:1e:7f:0d:94:55:75:a2:ef:12:8c: fb:9d:27:98:28:15:26:c4:89:4b:74:f6:e4:aa:81: 15:6f:40:7b:e3:b4:3a:ab:f7:50:d6:31:bd:ba:d9: 74:50:7f:fc:29:a1:c7:d1:cc:16:f8:02:f2:43:3f: 7d:be:09:8d:15:56:d0:d3:75:71:b4:1a:37:bd:7d: c2:e2:a1:46:b8:dc:f3:d5:74:59:ff:c6:42:d3:c6: e7:05:68:6a:92:5b:7f:75:29:fd:0d:27:50:79:57: 82:9f:82:c6:a3:71:d9:9a:8f:7e:f1:3c:b6:14:6e: 9b:eb:56:23:0c:26:45:8e:a3:a6:70:8b:f1:cb:7f: 0f:f7:c3:30:bd:71:db:f9:b4:8e:b0:df:20:1b:0d: e5:a3:25:10:12:e3:88:7d:a1:15:2f:48:22:bd:26: 26:1d:a3:b6:d3:29:9d:ed:c3:bf:fb:37:dd:2c:a1: d1:1c:79:8f:be:4d:c3:09:36:d0:63:e5:b3:39:f9: c8:38:46:7d:b4:04:a2:01:ef:0a:ee:4a:c8:25:77: 53:db:c1:03:2a:57:d4:1f:a6:1a:15:f2:70:fa:e4: d9:47:e2:b4:a9:97:69:40:a4:6b:40:d6:73:a2:73: d8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3A:BD:07:01:2E:9F:7B:61:F2:71:BC:7D:C2:0C:6E:5A:C0:D1:52 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:e1:98:24:b3:3e:3e:5f:7b:48:6f:df:30:bb:1c:28:80:2d: d2:1d:4f:37:76:2b:00:c0:99:2d:a3:ee:4d:a7:c7:06:59:ed: 22:ec:82:0d:c5:78:d9:4f:ef:15:a5:da:2e:e8:10:ce:e4:f3: 5e:4c:82:4f:87:8e:1f:27:da:0d:1a:19:28:2a:f9:f1:6d:c9: cb:72:33:17:c8:be:1d:52:e8:e5:ca:c4:e3:0d:59:76:d3:68: ea:11:f1:07:0b:0f:5b:c2:7d:da:c2:ca:b1:f4:4d:b8:e2:32: 8b:98:4e:c3:5e:9d:26:aa:4e:23:f1:97:c4:a7:91:af:bf:12: 19:2d:88:47:1c:e5:5b:23:cc:4f:d8:c9:85:fc:74:60:10:f3: 75:28:30:1a:88:33:10:f2:df:5f:f3:16:1c:30:30:b9:64:a1: 95:b8:d3:0b:f6:64:f5:13:55:c7:14:37:a4:f7:af:f1:df:dc: 15:ea:36:f8:30:69:32:5e:04:cf:57:33:f9:89:27:56:cc:77: af:99:21:a2:02:ff:b2:11:c7:a2:41:03:56:dc:7c:f1:39:0f: 37:6c:f5:4a:53:74:c1:4c:f2:69:7a:b0:1c:28:b3:84:a9:b7: ba:58:bc:c7:92:9e:08:d3:7e:96:95:85:0a:96:4c:b7:18:bc: 76:fe:fa:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjYwNDE2MTgxODIyWhcNMjYwNDIzMTgxODIyWjAYMRYwFAYD VQQDEw02OWUxMjdlZS00YzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EHSnmVfYLD+759cV0hzXD18ix5/DZRVdaLvEoz7nSeYKBUmxIlLdPbkqoEV b0B747Q6q/dQ1jG9utl0UH/8KaHH0cwW+ALyQz99vgmNFVbQ03VxtBo3vX3C4qFG uNzz1XRZ/8ZC08bnBWhqklt/dSn9DSdQeVeCn4LGo3HZmo9+8Ty2FG6b61YjDCZF jqOmcIvxy38P98MwvXHb+bSOsN8gGw3loyUQEuOIfaEVL0givSYmHaO20ymd7cO/ +zfdLKHRHHmPvk3DCTbQY+WzOfnIOEZ9tASiAe8K7krIJXdT28EDKlfUH6YaFfJw +uTZR+K0qZdpQKRrQNZzonPYfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCg6vQcB Lp97YfJxvH3CDG5awNFSMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3uGYJLM+Pl97SG/fMLscKIAt0h1PN3YrAMCZLaPuTafHBlntIuyCDcV42U/v FaXaLugQzuTzXkyCT4eOHyfaDRoZKCr58W3Jy3IzF8i+HVLo5crE4w1ZdtNo6hHx BwsPW8J92sLKsfRNuOIyi5hOw16dJqpOI/GXxKeRr78SGS2IRxzlWyPMT9jJhfx0 YBDzdSgwGogzEPLfX/MWHDAwuWShlbjTC/Zk9RNVxxQ3pPev8d/cFeo2+DBpMl4E z1cz+YknVsx3r5khogL/shHHokEDVtx88TkPN2z1SlN0wUzyaXqwHCizhKm3uli8 x5KeCNN+lpWFCpZMtxi8dv76ww== -----END CERTIFICATE-----Generated at Fri Apr 17 12:33:24 2026 by rpki-client