$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: ueaZgV14hFGt3HAxZC82H0lHaLLOrYqp2HImmWB6Hbg= Subject key identifier: 01:6A:B1:36:D2:90:5E:EB:DC:F3:62:6F:3B:37:3E:1F:E4:E0:52:69 Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: 016C Signing time: Fri 17 Apr 2026 04:33:11 +0000 Manifest this update: Fri 17 Apr 2026 04:33:10 +0000 Manifest next update: Fri 24 Apr 2026 04:33:10 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: bVxyD6hjD9kwZZcrSlHerw9H7v2+pAwyrr+gtid3msc=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: 0MC3M/D9hdEqrZPQotxdyqsZrkxdxXCIcqMyB/RgjTg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Apr 17 04:33:10 2026 GMT Not After : Apr 24 04:33:10 2026 GMT Subject: CN=69e1b807-1d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c8:fb:7e:ec:02:89:6a:69:3a:9a:93:95:7c: 68:a8:8f:b3:fb:c1:e2:83:16:11:67:c6:c5:e2:1a: 3c:5c:14:0d:35:0a:18:13:4e:fe:77:3b:56:31:46: 81:c5:b9:0f:f3:a0:b2:d3:65:55:a8:bd:5c:ec:73: ca:b3:46:db:c8:24:e2:3e:49:70:7e:92:3f:4c:ac: 3e:dc:9f:6b:62:ea:26:09:a3:bc:e0:67:5f:42:20: f4:3d:2f:61:53:23:69:a1:ca:22:e3:bf:73:f9:95: 1c:0d:80:20:21:86:08:94:35:4d:f6:66:14:07:20: 2f:c3:0e:fc:7d:71:d7:83:70:2b:da:d1:bc:c0:f5: 6f:6e:7a:57:10:29:f3:63:28:a3:8e:cc:8c:92:3e: 8d:f1:7c:06:62:16:08:a5:b8:7b:76:65:72:ae:de: 46:35:60:cf:d2:f5:06:4e:72:ec:82:db:c3:f8:9b: 74:72:02:3e:7e:7e:c8:08:67:4c:2d:98:93:74:db: 82:f6:cc:a2:fc:c9:fc:88:46:7c:2d:75:cf:9a:eb: 7b:c1:fb:3f:18:d6:ba:05:17:41:7f:7f:6a:26:6a: b8:b3:3d:ae:aa:02:d3:07:d1:8d:bc:77:ca:fe:ca: 66:94:78:fd:2a:d1:ae:d3:5a:7f:a8:a8:e4:12:4b: d8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:6A:B1:36:D2:90:5E:EB:DC:F3:62:6F:3B:37:3E:1F:E4:E0:52:69 X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:7e:21:ec:17:1a:85:83:c9:74:37:b9:ee:4b:cc:54:cf:29: da:72:6e:d8:14:73:9e:83:cc:8c:61:be:ac:0a:bc:42:23:5b: d9:08:ab:30:9c:a5:ae:72:ca:83:4a:6b:cb:fe:fd:28:75:48: 3a:c7:53:fc:02:8a:71:80:42:f9:42:69:f6:c9:88:91:e1:96: 47:e7:99:bf:52:1b:cf:88:0d:b9:ee:d1:f2:77:5e:e8:93:d4: 59:a1:c6:11:34:1f:b4:21:1e:24:5a:24:0c:b3:1d:09:c9:b2: 5e:cc:ea:b8:12:cb:28:58:6c:54:78:5b:83:18:b9:b7:24:59: 60:eb:29:4a:e9:6b:44:ca:55:ae:68:2c:d2:62:3c:59:d2:d5: f2:84:09:1a:36:4e:f6:6f:68:e8:7a:be:af:9c:f3:78:7e:69: 10:b2:88:a1:13:a0:b4:05:2b:01:f9:bf:84:73:aa:23:30:40: fe:e7:f3:c9:b0:fa:60:72:6b:63:96:49:d6:f0:cf:96:c5:10: 72:23:d5:50:e4:d8:0c:aa:8d:c8:0c:d7:be:8a:a7:59:81:51: 6f:ae:98:07:30:b6:b9:43:89:4c:c0:36:df:7e:ac:31:da:59: 4b:b2:7d:28:d9:ad:f4:31:7a:4e:1d:7c:50:37:e2:fa:4b:03: 84:9a:1f:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjYwNDE3MDQzMzEwWhcNMjYwNDI0MDQzMzEwWjAYMRYwFAYD VQQDEw02OWUxYjgwNy0xZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMj7fuwCiWppOpqTlXxoqI+z+8HigxYRZ8bF4ho8XBQNNQoYE07+dztWMUaB xbkP86Cy02VVqL1c7HPKs0bbyCTiPklwfpI/TKw+3J9rYuomCaO84GdfQiD0PS9h UyNpocoi479z+ZUcDYAgIYYIlDVN9mYUByAvww78fXHXg3Ar2tG8wPVvbnpXECnz YyijjsyMkj6N8XwGYhYIpbh7dmVyrt5GNWDP0vUGTnLsgtvD+Jt0cgI+fn7ICGdM LZiTdNuC9syi/Mn8iEZ8LXXPmut7wfs/GNa6BRdBf39qJmq4sz2uqgLTB9GNvHfK /spmlHj9KtGu01p/qKjkEkvYnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAFqsTbS kF7r3PNibzs3Ph/k4FJpMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADX4h7BcahYPJdDe57kvMVM8p2nJu2BRznoPMjGG+rAq8QiNb2QirMJylrnLK g0pry/79KHVIOsdT/AKKcYBC+UJp9smIkeGWR+eZv1Ibz4gNue7R8nde6JPUWaHG ETQftCEeJFokDLMdCcmyXszquBLLKFhsVHhbgxi5tyRZYOspSulrRMpVrmgs0mI8 WdLV8oQJGjZO9m9o6Hq+r5zzeH5pELKIoROgtAUrAfm/hHOqIzBA/ufzybD6YHJr Y5ZJ1vDPlsUQciPVUOTYDKqNyAzXvoqnWYFRb66YBzC2uUOJTMA2336sMdpZS7J9 KNmt9DF6Th18UDfi+ksDhJofQg== -----END CERTIFICATE-----Generated at Fri Apr 17 08:09:52 2026 by rpki-client