$ rpki-client -vvf rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft File: h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft (raw, json) Hash identifier: sBuPWV5HX9ibc+cQIp3TgcNvjxFOXUv0KUWnffkO3U4= Subject key identifier: 05:DF:9E:56:C1:B5:41:0D:B1:2D:44:AE:07:DF:0B:93:E0:AC:50:A5 Authority key identifier: 87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B Certificate issuer: /CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Certificate serial: 0C47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft Manifest number: 0C3F Signing time: Thu 16 Apr 2026 18:39:33 +0000 Manifest this update: Thu 16 Apr 2026 18:39:33 +0000 Manifest next update: Thu 23 Apr 2026 18:39:33 +0000 Files and hashes: 1: h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl (hash: Ac88s3zIZEI16mGvxCx/KBRGIPEblsvIBZhgIJw0wj8=) 2: 0D22F748261A11EA83CE8D17C4F9AE02.roa (hash: AGJ3imo4fnyGAnxscjmKEoYw6azyeSOHkHTLOF2MKsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3143 (0xc47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A35C, serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Validity Not Before: Apr 16 18:39:33 2026 GMT Not After : Apr 23 18:39:33 2026 GMT Subject: CN=69e12ce5-98ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0b:3f:8d:8f:6f:dc:87:3d:fc:50:6a:1c:74: d2:d9:90:16:2f:2a:56:11:25:5b:38:fb:04:03:93: 58:5c:09:45:99:9e:76:16:6b:40:64:ea:10:1c:92: e5:37:24:c4:91:0e:80:9d:3f:d0:41:84:46:cd:55: 06:f1:89:07:47:30:1d:c7:69:55:ce:90:3b:c3:da: 98:e2:c4:0f:31:ea:15:74:1a:fa:d9:76:76:3c:3b: 06:1b:11:7b:98:ab:d9:a0:9b:da:d7:d7:3f:13:b1: 53:92:2e:f5:fb:a3:37:11:6f:63:02:87:8f:5b:29: 5d:cf:91:4b:a3:08:f3:45:7b:3a:9c:8b:78:ae:19: 85:27:03:94:0c:98:f6:f1:aa:a0:ed:5d:1c:67:93: 79:a0:ca:88:b0:96:ec:dd:17:9d:2b:3a:37:64:98: 72:d8:94:e2:ed:bb:7f:f9:58:11:d1:0d:17:d6:ad: 20:4a:df:28:63:e7:36:5f:50:8c:c9:f5:b7:84:a0: 12:c1:9a:92:48:95:dc:97:2f:74:b6:24:c4:1c:c5: 45:f5:73:38:ae:ba:84:62:b1:49:1a:8d:73:64:98: 71:23:f2:56:ee:94:0d:97:b1:1c:aa:29:11:e5:bb: 38:ac:55:64:3f:e5:37:3c:c5:2d:cc:5f:9f:3f:9a: b2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DF:9E:56:C1:B5:41:0D:B1:2D:44:AE:07:DF:0B:93:E0:AC:50:A5 X509v3 Authority Key Identifier: keyid:87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:d9:40:57:40:42:29:50:59:e1:d2:3e:e3:25:78:73:d5:03: 0c:fc:d1:39:e1:16:d6:dd:39:df:12:a1:1c:ce:c7:11:e2:c4: 1b:60:86:2c:a7:f8:be:32:96:db:17:e9:5e:8f:b4:09:31:90: a8:41:99:b3:86:41:ca:2e:1f:8f:ac:c8:ae:d4:47:b4:f7:20: 9b:16:ef:0f:d1:04:b6:b8:20:66:b2:78:1c:73:86:5d:8e:53: 1f:84:40:bd:92:8d:a4:4c:58:76:ff:31:bb:91:8a:f8:84:26: e5:66:8e:3c:71:14:b5:b5:7d:a7:e5:32:eb:f0:b3:ad:9e:ff: 71:15:2a:dd:bf:5d:a8:0b:71:f6:36:f4:a6:60:e6:ac:33:22: 9d:0d:12:49:63:db:db:5b:77:bf:83:eb:7a:d1:69:57:c2:2e: 3a:7a:c2:7f:b4:2b:af:d9:91:80:d9:08:fc:3a:41:54:9c:69: 62:d1:22:65:7c:4b:3f:7e:d0:86:1a:55:dd:d1:a2:23:7c:bb: e1:6d:71:da:46:fd:db:34:b6:46:6e:33:f0:bd:ce:8e:ed:b6: f7:d3:d8:3b:45:3e:dd:10:30:73:3f:93:79:ad:3f:84:81:c9: db:33:ad:11:e6:d0:f3:2d:87:9b:f1:fe:cd:00:ac:7a:5d:99: 71:d8:63:dc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNUMxMTAvBgNVBAUTKDg3OEI4Njg2OTVGQzQ1QzlDNjNCNkZCQzU0Q0NCMzUw OUM0QjlGNEIwHhcNMjYwNDE2MTgzOTMzWhcNMjYwNDIzMTgzOTMzWjAYMRYwFAYD VQQDEw02OWUxMmNlNS05OGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxws/jY9v3Ic9/FBqHHTS2ZAWLypWESVbOPsEA5NYXAlFmZ52FmtAZOoQHJLl NyTEkQ6AnT/QQYRGzVUG8YkHRzAdx2lVzpA7w9qY4sQPMeoVdBr62XZ2PDsGGxF7 mKvZoJva19c/E7FTki71+6M3EW9jAoePWyldz5FLowjzRXs6nIt4rhmFJwOUDJj2 8aqg7V0cZ5N5oMqIsJbs3RedKzo3ZJhy2JTi7bt/+VgR0Q0X1q0gSt8oY+c2X1CM yfW3hKASwZqSSJXcly90tiTEHMVF9XM4rrqEYrFJGo1zZJhxI/JW7pQNl7EcqikR 5bs4rFVkP+U3PMUtzF+fP5qykwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAXfnlbB tUENsS1ErgffC5PgrFClMB8GA1UdIwQYMBaAFIeLhoaV/EXJxjtvvFTMs1CcS59L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM1Qy81MkZDNkI5ODI2 MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJjbkdPMi04Vk15elVKeExu MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g0dUdocFg4UmNuR08yLThWTXl6VUp4TG4wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTM1Qy81MkZDNkI5ODI2MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJj bkdPMi04Vk15elVKeExuMHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACtlAV0BCKVBZ4dI+4yV4c9UDDPzROeEW1t053xKhHM7HEeLEG2CGLKf4vjKW 2xfpXo+0CTGQqEGZs4ZByi4fj6zIrtRHtPcgmxbvD9EEtrggZrJ4HHOGXY5TH4RA vZKNpExYdv8xu5GK+IQm5WaOPHEUtbV9p+Uy6/CzrZ7/cRUq3b9dqAtx9jb0pmDm rDMinQ0SSWPb21t3v4PretFpV8IuOnrCf7Qrr9mRgNkI/DpBVJxpYtEiZXxLP37Q hhpV3dGiI3y74W1x2kb92zS2Rm4z8L3Oju2299PYO0U+3RAwcz+Tea0/hIHJ2zOt EebQ8y2Hm/H+zQCsel2Zcdhj3A== -----END CERTIFICATE-----Generated at Fri Apr 17 17:24:47 2026 by rpki-client