$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: Fz9hQCFvOPwIgljIdWeNHVYQdw9MtEJ/F2Ipf81xR7o= Subject key identifier: E3:44:0B:2B:3F:E0:0A:1E:76:82:2E:6C:2D:E1:03:26:B0:98:08:85 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 0798 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 0762 Signing time: Thu 16 Apr 2026 21:37:21 +0000 Manifest this update: Thu 16 Apr 2026 21:37:21 +0000 Manifest next update: Thu 23 Apr 2026 21:37:21 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: ohKIxSb8srrEzDpDxNBaKdlwlMhwjVNSS7kuqpunSyo=) 2: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: aSxgIlw8nZiN+6lgLNU5XvZ1FdnFtkSevs0pTTJMvJY=) 3: 34956990D75511EF80E68A39C4F9AE02.roa (hash: t2VblrPsPkg3OLGXiwM69R4XdRcwB3mySF4/73qDgbo=) 4: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: JyT9d9OOCJrRzpFBrxSBmC+CtEx3ZAy2eSQHymf45+s=) 5: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: mr8KwOkVa8RAea/BYVd3YUG6na4L4IGVAN/w6VWKUIw=) 6: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: GtRv2G1MeWMHZlw+kEpfpaWB79CdGXzgFC1k73nj5d0=) 7: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 4thkndOJT3+vXRn8C465Fs6jq2L+GeTYNEVafFWoUXs=) 8: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: phlxZambGxwdatRQWNb2Yjt/alGa6e8xzyqiiNU2+mQ=) 9: 05F05106586011EE9399A92EC4F9AE02.roa (hash: d5Czd9F+MkzuB9PBir/JbWAghXpmJN+auVy0L4FfZfQ=) 10: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: vtp4YKFz/A5Vi0zg64GLZs1k3ocvwIIzZCuiJxmejGs=) 11: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: hn072ZUt0QkiLvSmGaoI0bZ5eHexJ3APJASDMCiyA2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:37:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1944 (0x798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Apr 16 21:37:21 2026 GMT Not After : Apr 23 21:37:21 2026 GMT Subject: CN=69e15691-8765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f7:d2:55:21:02:93:75:e6:ff:6a:d9:b0:06: 63:e2:81:a7:ec:78:e9:dc:a4:b9:ca:58:43:33:30: d5:d3:92:4b:9d:14:1c:a3:a1:10:59:ec:83:be:2f: b6:ab:08:f8:7a:3d:e2:26:d0:70:2d:e2:20:8e:81: 7e:e0:38:c3:b5:e9:a1:23:9d:2c:6f:f2:94:5a:cf: 55:88:81:f5:84:1e:f6:96:1e:32:6f:f3:34:47:3a: 89:06:43:ec:d1:10:53:9b:47:14:e1:0f:07:6f:2b: b5:f9:b7:9f:42:7b:c7:44:7c:44:68:3d:4a:3b:6f: 7c:ed:22:f0:ac:f1:17:57:1f:cb:c5:6a:da:79:04: 40:e0:d2:a7:a1:40:94:e3:4a:9f:95:42:51:2d:48: b5:20:ad:e0:c7:4b:dc:c8:68:ae:9a:ff:c5:03:0a: 0d:b5:d3:30:8d:0c:83:fe:c5:65:73:f4:5e:3c:fd: 9a:4e:26:ca:07:f1:6a:09:64:f4:bf:e9:98:a3:71: e9:a7:2b:a2:6e:ed:8a:b2:d0:76:1c:35:2c:5b:22: b3:89:ae:80:ab:53:82:7e:c2:1d:54:b4:0f:05:5c: b2:cb:08:7d:75:ac:33:eb:9b:f6:7e:60:4d:f6:9b: 16:aa:82:fe:74:3e:aa:0e:62:7e:d3:b6:8b:cb:6e: 8e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:44:0B:2B:3F:E0:0A:1E:76:82:2E:6C:2D:E1:03:26:B0:98:08:85 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:08:a6:11:fa:30:ff:d4:ff:20:ea:24:49:d7:72:b0:a0:f7: 77:73:dc:9b:27:d3:e7:ab:80:8e:56:59:37:14:d7:83:3a:56: c9:75:09:58:82:1d:f0:75:3f:ba:e2:53:7a:e7:cf:ea:6e:11: b4:57:b5:3b:0d:9d:61:5a:41:01:04:73:fd:24:2e:9f:cf:5d: f6:50:f5:a9:c6:67:c4:8c:3f:f4:7f:de:52:9f:95:c1:a1:96: c3:77:b1:49:3f:07:c7:df:84:7d:04:b1:dd:85:ea:90:10:59: a1:aa:58:e3:c8:09:b9:f9:42:a3:03:82:07:9a:34:bb:3b:a5: fb:b3:ff:7f:b9:d1:e8:89:40:23:c8:ad:5a:d0:1e:d6:16:38: d9:05:24:6a:e4:1a:49:d3:5a:56:f5:65:6f:74:bc:33:57:f8: 39:7b:16:5f:5f:1d:55:02:21:df:fa:8d:a4:ee:73:78:98:2d: 99:28:76:ef:3e:32:de:11:ac:0e:b1:72:a7:ad:04:f9:45:c4: 6d:58:11:31:6e:3a:6f:48:98:32:2a:f0:07:e2:92:22:82:e7: 37:26:2b:74:0c:fe:3e:59:45:3d:42:9f:60:fc:c6:a8:e2:ed: 56:59:ac:0c:cc:13:41:dc:bd:9e:c8:bc:61:72:01:be:ed:20: d3:41:92:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjYwNDE2MjEzNzIxWhcNMjYwNDIzMjEzNzIxWjAYMRYwFAYD VQQDEw02OWUxNTY5MS04NzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vfSVSECk3Xm/2rZsAZj4oGn7Hjp3KS5ylhDMzDV05JLnRQco6EQWeyDvi+2 qwj4ej3iJtBwLeIgjoF+4DjDtemhI50sb/KUWs9ViIH1hB72lh4yb/M0RzqJBkPs 0RBTm0cU4Q8Hbyu1+befQnvHRHxEaD1KO2987SLwrPEXVx/LxWraeQRA4NKnoUCU 40qflUJRLUi1IK3gx0vcyGiumv/FAwoNtdMwjQyD/sVlc/RePP2aTibKB/FqCWT0 v+mYo3Hppyuibu2KstB2HDUsWyKzia6Aq1OCfsIdVLQPBVyyywh9dawz65v2fmBN 9psWqoL+dD6qDmJ+07aLy26OEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONECys/ 4AoedoIubC3hAyawmAiFMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQwimEfow/9T/IOokSddysKD3d3PcmyfT56uAjlZZNxTXgzpWyXUJWIId8HU/ uuJTeufP6m4RtFe1Ow2dYVpBAQRz/SQun89d9lD1qcZnxIw/9H/eUp+VwaGWw3ex ST8Hx9+EfQSx3YXqkBBZoapY48gJuflCowOCB5o0uzul+7P/f7nR6IlAI8itWtAe 1hY42QUkauQaSdNaVvVlb3S8M1f4OXsWX18dVQIh3/qNpO5zeJgtmSh27z4y3hGs DrFyp60E+UXEbVgRMW46b0iYMirwB+KSIoLnNyYrdAz+PllFPUKfYPzGqOLtVlms DMwTQdy9nsi8YXIBvu0g00GSIg== -----END CERTIFICATE-----Generated at Sat Apr 18 00:07:48 2026 by rpki-client