$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: bv+fk/TS9/5trKhMzxStP0LB39vUDloovCtjgptso2U= Subject key identifier: 15:4E:0D:F4:C2:F9:2C:42:5B:3F:86:2B:3B:EB:9B:5B:1B:0A:5A:3B Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 010D Signing time: Fri 17 Apr 2026 05:46:28 +0000 Manifest this update: Fri 17 Apr 2026 05:46:28 +0000 Manifest next update: Fri 24 Apr 2026 05:46:28 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: G3QdplkJosVA+SVKW5EiveXvJG4zNVPOUvFNXS1CBH8=) 2: 30BF0192D5B411F0BA49041CC4F9AE02.roa (hash: 7Xq/xrlaF1i6pCbhVMnZT3OZ5U9fhM3Ebdid2BeEwH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Apr 17 05:46:28 2026 GMT Not After : Apr 24 05:46:28 2026 GMT Subject: CN=69e1c934-47c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:33:02:0d:e2:89:75:82:00:b1:08:59:50:65: 39:9c:66:b2:98:b3:09:c4:88:6f:ee:9a:18:57:ee: dc:fd:bb:60:8a:3d:2e:c0:f6:a3:7c:06:94:23:6b: d4:29:96:29:3b:45:c0:9b:11:b1:5a:b5:e2:7f:66: ec:7c:7f:4c:bc:37:6d:93:85:07:f8:fa:c4:97:80: d3:cc:a3:18:46:5a:3b:d5:e8:20:3a:b9:81:fe:e5: 67:8f:3e:21:12:42:ae:98:da:f1:8a:46:8a:ef:f0: 0e:23:f7:46:19:fd:ec:93:e8:fd:be:36:0a:37:57: 5f:28:27:b7:64:7e:c1:fc:3c:36:95:42:99:aa:df: cb:84:b4:7a:d6:37:d2:e3:28:03:b0:98:82:e7:43: ca:3f:6f:a7:44:39:64:b7:a5:de:39:70:c4:be:d1: 67:b2:f3:05:b5:b5:3b:e4:07:8b:2e:4e:e8:06:9d: 40:a3:f8:27:b0:47:cf:a7:87:08:26:6e:ca:d3:cf: a8:59:f3:d8:6b:92:c2:5b:db:77:b6:c2:e3:c7:7a: 4c:9c:3a:85:fa:40:c5:b7:92:f9:b5:38:11:72:b8: 35:c0:bb:b1:cc:f9:db:47:ff:dd:53:c3:88:2a:d1: 14:ba:59:2d:a9:99:5d:f0:ab:57:ab:e8:db:66:26: 2e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4E:0D:F4:C2:F9:2C:42:5B:3F:86:2B:3B:EB:9B:5B:1B:0A:5A:3B X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:c7:fc:ba:bd:33:0e:30:2e:e7:a0:f2:ff:91:a4:0b:3b:c8: 16:a5:5f:3d:7e:8e:3d:c5:ad:b8:8c:34:ce:fa:88:a6:27:5b: 33:2b:61:a3:5c:72:5e:25:29:b3:98:27:52:e2:8a:3a:4c:4c: 56:c0:ee:20:b6:66:7d:4c:98:7f:31:12:07:4f:b9:57:be:6a: 5c:ae:0b:16:3a:7c:7e:c6:75:e0:30:22:52:bd:d4:b5:5e:3a: dc:66:93:f6:c6:bc:05:b2:00:c7:00:15:77:a7:07:e1:01:62: 56:7f:9f:9d:d9:5e:31:98:98:0c:34:c9:c2:34:c0:62:32:28: af:39:3c:25:31:4e:ad:57:d5:43:65:61:d9:cc:b4:da:f0:99: ec:27:36:c7:74:ec:97:09:d9:64:2a:be:9f:bf:80:c9:48:24: 7b:4a:54:7e:62:82:e8:d3:ee:9a:f2:0b:8a:5c:cf:7a:d3:2f: eb:1e:88:43:87:90:8b:3c:e2:bb:41:8c:2f:ea:0d:24:94:04: 01:ef:f1:63:54:09:23:c6:cf:dd:5a:b8:46:ed:96:26:85:76: 9d:cd:99:60:94:ce:0a:87:dd:58:5c:e0:88:7e:5b:93:8f:9c: 18:d7:e8:f0:cc:8a:03:8c:f6:2b:7b:e1:2b:63:36:f0:50:ed: 93:d6:8d:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjYwNDE3MDU0NjI4WhcNMjYwNDI0MDU0NjI4WjAYMRYwFAYD VQQDEw02OWUxYzkzNC00N2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DMCDeKJdYIAsQhZUGU5nGaymLMJxIhv7poYV+7c/btgij0uwPajfAaUI2vU KZYpO0XAmxGxWrXif2bsfH9MvDdtk4UH+PrEl4DTzKMYRlo71eggOrmB/uVnjz4h EkKumNrxikaK7/AOI/dGGf3sk+j9vjYKN1dfKCe3ZH7B/Dw2lUKZqt/LhLR61jfS 4ygDsJiC50PKP2+nRDlkt6XeOXDEvtFnsvMFtbU75AeLLk7oBp1Ao/gnsEfPp4cI Jm7K08+oWfPYa5LCW9t3tsLjx3pMnDqF+kDFt5L5tTgRcrg1wLuxzPnbR//dU8OI KtEUulktqZld8KtXq+jbZiYudQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBVODfTC +SxCWz+GKzvrm1sbClo7MB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOMf8ur0zDjAu56Dy/5GkCzvIFqVfPX6OPcWtuIw0zvqIpidbMytho1xyXiUp s5gnUuKKOkxMVsDuILZmfUyYfzESB0+5V75qXK4LFjp8fsZ14DAiUr3UtV463GaT 9sa8BbIAxwAVd6cH4QFiVn+fndleMZiYDDTJwjTAYjIorzk8JTFOrVfVQ2Vh2cy0 2vCZ7Cc2x3TslwnZZCq+n7+AyUgke0pUfmKC6NPumvILilzPetMv6x6IQ4eQizzi u0GML+oNJJQEAe/xY1QJI8bP3Vq4Ru2WJoV2nc2ZYJTOCofdWFzgiH5bk4+cGNfo 8MyKA4z2K3vhK2M28FDtk9aNpg== -----END CERTIFICATE-----Generated at Fri Apr 17 07:22:56 2026 by rpki-client