$ rpki-client -vvf rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft File: IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft (raw, json) Hash identifier: 8fNxl3vvvlPNV+/tirpNhd79P8wO1KX9MzeKh8JoRpA= Subject key identifier: A3:CF:CB:52:26:2D:72:E3:37:D5:34:05:47:8F:9D:9A:77:FB:78:2A Authority key identifier: 20:03:EE:40:52:29:D8:8C:94:8B:76:DC:19:5D:43:0B:C0:20:AF:1E Certificate issuer: /CN=A918C2EB/serialNumber=2003EE405229D88C948B76DC195D430BC020AF1E Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IAPuQFIp2IyUi3bcGV1DC8Agrx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft Manifest number: 3F Signing time: Fri 17 Apr 2026 08:13:51 +0000 Manifest this update: Fri 17 Apr 2026 08:13:50 +0000 Manifest next update: Fri 24 Apr 2026 08:13:50 +0000 Files and hashes: 1: IAPuQFIp2IyUi3bcGV1DC8Agrx4.crl (hash: kLjMHvvwjmH3sGcfv/w1ImtMmvjlP0gB9N1zke+HqhA=) 2: 9B67FC6CE61511F0BA7CC46D6A6F56BC.roa (hash: RXKHt1MxZAi094IIW7YlJh5giMLTwFT/Xi1lVrRSFcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.crl rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IAPuQFIp2IyUi3bcGV1DC8Agrx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C2EB, serialNumber=2003EE405229D88C948B76DC195D430BC020AF1E Validity Not Before: Apr 17 08:13:50 2026 GMT Not After : Apr 24 08:13:50 2026 GMT Subject: CN=69e1ebbe-2b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:00:b3:32:73:7f:6e:76:24:77:fd:52:dc:1a: 86:9c:20:90:07:27:5b:aa:69:0b:2f:72:a4:21:ee: e5:a4:2d:80:d5:81:1f:d3:47:37:4d:54:e7:e1:d9: 43:7e:59:54:7d:f8:3e:fb:29:0a:a6:98:45:20:7b: 4e:06:8e:29:42:bd:16:b8:99:ae:b6:81:12:8e:6c: c6:92:86:23:4b:a2:e1:9d:6a:d9:a0:0e:53:62:0e: 38:d5:fc:8b:fc:c7:7e:9d:f5:60:a5:d4:fb:80:91: 14:cc:8c:5b:44:76:3c:62:d5:3f:c0:04:07:dc:13: 2a:0f:fc:a1:ae:98:aa:8c:c1:0e:62:b4:9a:ef:bd: bc:7a:b2:f0:c1:31:ff:1f:be:74:c6:f6:fd:39:cf: 6e:9c:c3:35:df:a8:84:a1:bb:9f:90:23:f9:21:8b: f8:6a:cf:18:60:46:c0:0c:60:72:65:14:3c:75:1b: d2:93:6a:d8:ad:c2:28:ef:93:e3:10:9e:9c:60:c1: b4:b1:a1:f3:83:58:8a:62:c1:5c:b8:35:ed:33:73: 20:a8:48:5d:d6:ca:89:a4:62:ed:e7:12:04:96:f9: 60:be:79:52:3a:49:57:65:22:29:21:80:4c:59:1f: 95:9e:b8:57:7e:c5:b6:68:07:cc:ee:bb:99:ae:42: 9a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CF:CB:52:26:2D:72:E3:37:D5:34:05:47:8F:9D:9A:77:FB:78:2A X509v3 Authority Key Identifier: keyid:20:03:EE:40:52:29:D8:8C:94:8B:76:DC:19:5D:43:0B:C0:20:AF:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IAPuQFIp2IyUi3bcGV1DC8Agrx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:d9:ee:0e:8e:b1:02:32:f5:9d:87:26:49:2b:52:d1:be:26: 57:bd:5e:e9:bb:8c:bc:19:60:f5:63:6e:3d:bd:91:48:48:d7: 96:1f:70:f8:fc:c6:24:76:b5:57:61:4a:02:8b:64:b5:f3:2d: 1b:d9:ed:7a:16:b5:b4:b4:c5:de:b9:34:81:57:84:f9:4d:e5: 27:8b:e3:db:2e:50:b2:92:58:fb:65:65:21:64:c8:b5:10:ba: 1b:8c:92:b7:36:70:aa:aa:f3:17:2f:c0:19:dd:bb:49:c8:43: 6f:54:2c:df:a6:e8:ca:da:70:34:d8:2a:b6:43:b2:84:2c:9b: 14:1f:f6:58:a9:11:ad:23:7a:1b:94:c8:21:59:1a:cb:e1:28: 36:4a:50:1b:99:ee:2c:a5:95:48:84:a9:95:af:15:b4:53:a9: 18:0d:c1:50:3f:ef:11:7a:23:32:30:76:08:c0:85:19:dc:38: 64:53:34:64:80:ab:63:aa:05:1e:41:d5:27:4c:df:c9:10:c4: c1:77:ca:f2:18:14:37:a2:1b:7f:50:f4:4f:d9:9c:f0:be:e9: 31:9d:ed:ca:89:34:e7:24:de:35:52:e3:5c:c0:b7:10:72:60: 5b:b3:ad:29:1c:af:2a:89:03:3a:f6:a5:12:0a:f5:34:43:f0: f6:fc:e5:80 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzJFQjExMC8GA1UEBRMoMjAwM0VFNDA1MjI5RDg4Qzk0OEI3NkRDMTk1RDQzMEJD MDIwQUYxRTAeFw0yNjA0MTcwODEzNTBaFw0yNjA0MjQwODEzNTBaMBgxFjAUBgNV BAMTDTY5ZTFlYmJlLTJiMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbALMyc39udiR3/VLcGoacIJAHJ1uqaQsvcqQh7uWkLYDVgR/TRzdNVOfh2UN+ WVR9+D77KQqmmEUge04GjilCvRa4ma62gRKObMaShiNLouGdatmgDlNiDjjV/Iv8 x36d9WCl1PuAkRTMjFtEdjxi1T/ABAfcEyoP/KGumKqMwQ5itJrvvbx6svDBMf8f vnTG9v05z26cwzXfqIShu5+QI/khi/hqzxhgRsAMYHJlFDx1G9KTatitwijvk+MQ npxgwbSxofODWIpiwVy4Ne0zcyCoSF3WyomkYu3nEgSW+WC+eVI6SVdlIikhgExZ H5WeuFd+xbZoB8zuu5muQpp7AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUo8/LUiYt cuM31TQFR4+dmnf7eCowHwYDVR0jBBgwFoAUIAPuQFIp2IyUi3bcGV1DC8Agrx4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMkVCLzg5OTcyNTEyRTUz NDExRjA5MTJDRkQ1NjZFNkY1NkJDL0lBUHVRRklwMkl5VWkzYmNHVjFEQzhBZ3J4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSUFQdVFGSXAySXlVaTNiY0dWMURDOEFncng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD MkVCLzg5OTcyNTEyRTUzNDExRjA5MTJDRkQ1NjZFNkY1NkJDL0lBUHVRRklwMkl5 VWkzYmNHVjFEQzhBZ3J4NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQDY2e4OjrECMvWdhyZJK1LRviZXvV7pu4y8GWD1Y249vZFISNeWH3D4/MYkdrVX YUoCi2S18y0b2e16FrW0tMXeuTSBV4T5TeUni+PbLlCyklj7ZWUhZMi1ELobjJK3 NnCqqvMXL8AZ3btJyENvVCzfpujK2nA02Cq2Q7KELJsUH/ZYqRGtI3oblMghWRrL 4Sg2SlAbme4spZVIhKmVrxW0U6kYDcFQP+8ReiMyMHYIwIUZ3DhkUzRkgKtjqgUe QdUnTN/JEMTBd8ryGBQ3oht/UPRP2Zzwvukxne3KiTTnJN41UuNcwLcQcmBbs60p HK8qiQM69qUSCvU0Q/D2/OWA -----END CERTIFICATE-----Generated at Fri Apr 17 10:09:51 2026 by rpki-client