$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft File: HsQsG2nhb183xz2Bv5-rH0ukIyk.mft (raw, json) Hash identifier: kqVMEmDNCvknaD29w7Qm0Ge43b6HJYu8k3+xVVIL0Cg= Subject key identifier: C8:0E:84:37:C6:AB:CF:16:C0:E1:47:8F:A6:44:E5:00:14:4F:04:58 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 0B42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft Manifest number: 0AC9 Signing time: Thu 16 Apr 2026 19:32:32 +0000 Manifest this update: Thu 16 Apr 2026 19:32:32 +0000 Manifest next update: Thu 23 Apr 2026 19:32:32 +0000 Files and hashes: 1: HsQsG2nhb183xz2Bv5-rH0ukIyk.crl (hash: j+N7vnBdqXL0//jvyae+sarEnjBqxM+l5NfyyZn9tHI=) 2: 6C68485C5A1D11EFA9989052C4F9AE02.roa (hash: gKdZCMFVp9SI3rESOVHwnsGLBaaJOZqgNabpfZNzfAY=) 3: A7A72BF24B0611EF91534014C4F9AE02.roa (hash: RMfV3v+YMKrEsv4J/X9BeNndnRE9fJpMKXXZWqx+jrk=) 4: A81364AC4B0611EF91534014C4F9AE02.roa (hash: 7nc0FQIuWt5iAf4cd70KYSyea0Ow8OKJ3jyzk3RRDos=) 5: FC2C48DA1D1711F193C53B4D0E3D8C67.roa (hash: t5GO0KVpRO0vMtyXCfhbCMuVtePS8oymCsUiik5fkqM=) 6: B8D18508EDE011EF88407251C4F9AE02.roa (hash: NdZ92kK8LP+A4ucoxj2Mn/YHm/Cj8wuqKbvHDIwNWi0=) 7: 73DC26744B0611EF8698EB13C4F9AE02.roa (hash: QbjBpA8yO+Th7aJxPrDQfS3hz6qzzWk2P0LycOFlE0A=) 8: D9AFDBC2400111EFBB30C475C4F9AE02.roa (hash: HrZGFhV7ij/MniPPdnAUj9aXz0QqgUpU7Kf1yG1SMQ0=) 9: D42F0D06B51611EEADC7924BC4F9AE02.roa (hash: kqyC7MEnLT1Hy4mgRDx5xjtCxGf3dNpztnPLrCKEqKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Apr 16 19:32:32 2026 GMT Not After : Apr 23 19:32:32 2026 GMT Subject: CN=69e13950-6169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:92:56:f4:62:2c:dd:47:e6:93:25:ba:13:52: 0d:ed:b9:e8:9c:dd:65:5f:a0:c1:95:6d:9d:f6:5b: e8:d4:da:30:78:fd:a1:b7:1d:4b:6b:b2:1e:9c:23: ba:3d:85:64:36:66:a6:30:f2:d6:59:ac:49:13:0c: 7e:40:5f:0f:1f:b7:f6:af:9f:fb:3f:d5:4d:c4:7c: ec:68:5b:66:8a:3d:9b:cd:cb:46:90:86:94:f0:41: 49:73:ce:13:89:2f:9d:48:f5:f8:1c:cc:1f:ad:99: 8d:11:d9:57:46:25:2e:dc:5e:3b:7b:2e:6e:70:c6: d8:e9:19:24:b9:10:21:d5:7f:10:38:b7:96:6e:b0: 4f:69:20:ab:48:e4:23:25:a1:39:fa:6f:e3:1b:76: 38:39:fa:50:3d:2f:fa:b9:4a:5d:a8:4f:9a:74:b0: 17:5c:56:6f:7c:e6:53:2e:3d:9b:47:50:a0:fd:45: da:49:94:d9:da:68:74:2c:3b:f2:10:04:fa:00:43: 35:4a:cf:c9:9d:d4:62:a4:af:95:15:86:f5:c8:c0: 20:5f:9a:45:05:5a:ca:6c:1e:b6:c4:ea:2e:9a:c0: ed:c6:47:6f:17:3d:4f:9f:79:ef:51:0c:af:b3:98: a4:a0:2e:d6:75:87:88:ff:07:55:48:c0:59:88:c2: 68:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:0E:84:37:C6:AB:CF:16:C0:E1:47:8F:A6:44:E5:00:14:4F:04:58 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:36:10:5f:8f:06:22:fb:bb:8b:24:cd:0e:36:b5:cc:65:14: b8:aa:b0:70:ef:97:f6:09:cf:cf:71:fa:c5:29:03:33:bd:65: ca:70:8a:d4:8e:36:7a:ce:e8:f8:bc:d5:be:11:71:c6:7e:3e: 08:0e:93:da:1a:21:f1:7f:7b:7a:80:99:9e:57:2e:1b:9a:19: c6:fa:90:ee:c9:c9:0b:aa:9c:4d:77:ad:98:ef:5c:76:80:9d: be:62:6d:8c:c5:87:3c:da:80:8c:c4:2d:2a:3e:77:29:97:27: 33:56:5e:31:da:17:46:d6:89:ca:3b:f7:bc:4f:94:c6:8d:ee: bc:17:0b:94:cd:9b:17:03:58:3e:dc:ab:80:52:b4:43:f6:2d: 9b:eb:e1:cc:21:8a:5c:39:c1:26:33:39:b2:de:8a:9f:e5:e9: 3f:a9:d5:80:93:92:4c:bb:87:7e:e3:14:2c:37:d2:a1:ab:a4: 80:b5:d2:e2:71:ff:52:19:5f:e8:6d:10:d5:be:0d:4a:28:b4: 37:c0:9b:31:50:d1:bd:53:f7:fe:8d:01:26:b6:e3:e5:64:45: 6b:72:0c:73:99:61:23:dd:b3:32:a1:7c:76:39:bd:21:2e:54: 83:4b:5a:47:d1:b2:de:c2:35:6e:14:cd:fc:e1:64:82:8f:f8: 7d:5a:72:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjYwNDE2MTkzMjMyWhcNMjYwNDIzMTkzMjMyWjAYMRYwFAYD VQQDEw02OWUxMzk1MC02MTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JJW9GIs3UfmkyW6E1IN7bnonN1lX6DBlW2d9lvo1NoweP2htx1La7IenCO6 PYVkNmamMPLWWaxJEwx+QF8PH7f2r5/7P9VNxHzsaFtmij2bzctGkIaU8EFJc84T iS+dSPX4HMwfrZmNEdlXRiUu3F47ey5ucMbY6RkkuRAh1X8QOLeWbrBPaSCrSOQj JaE5+m/jG3Y4OfpQPS/6uUpdqE+adLAXXFZvfOZTLj2bR1Cg/UXaSZTZ2mh0LDvy EAT6AEM1Ss/JndRipK+VFYb1yMAgX5pFBVrKbB62xOoumsDtxkdvFz1Pn3nvUQyv s5ikoC7WdYeI/wdVSMBZiMJoyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMgOhDfG q88WwOFHj6ZE5QAUTwRYMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wQkJEOUVBMjgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIx ODN4ejJCdjUtckgwdWtJeWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeDYQX48GIvu7iyTNDja1zGUUuKqwcO+X9gnPz3H6xSkDM71lynCK1I42es7o +LzVvhFxxn4+CA6T2hoh8X97eoCZnlcuG5oZxvqQ7snJC6qcTXetmO9cdoCdvmJt jMWHPNqAjMQtKj53KZcnM1ZeMdoXRtaJyjv3vE+Uxo3uvBcLlM2bFwNYPtyrgFK0 Q/Ytm+vhzCGKXDnBJjM5st6Kn+XpP6nVgJOSTLuHfuMULDfSoaukgLXS4nH/Uhlf 6G0Q1b4NSii0N8CbMVDRvVP3/o0BJrbj5WRFa3IMc5lhI92zMqF8djm9IS5Ug0ta R9Gy3sI1bhTN/OFkgo/4fVpyGw== -----END CERTIFICATE-----Generated at Fri Apr 17 20:02:30 2026 by rpki-client