$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: 5flUJ0IJUbPuBXTuVyFCyVE0mUzmuytAFSuSK8lcAYg= Subject key identifier: E1:31:A1:D4:24:E1:5A:63:8E:6E:EA:3C:2A:43:EC:68:69:C0:89:5B Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0284 Signing time: Fri 17 Apr 2026 01:45:48 +0000 Manifest this update: Fri 17 Apr 2026 01:45:48 +0000 Manifest next update: Fri 24 Apr 2026 01:45:48 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: rD/Y2G5ibeLE+JZXmO2TZXjghvYOOBDGc5J2w+NnUWg=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: PtDZ91mnT8EbY3+b/UvFfpQljI6ctCClP32Mn4w89n8=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: D/XxgpTmAqVDQH9jHYni1JxMUh1+GB1xdzs9QThZoNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Apr 17 01:45:48 2026 GMT Not After : Apr 24 01:45:48 2026 GMT Subject: CN=69e190cc-b689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:cc:05:2f:0d:9a:02:7d:c4:34:bc:65:35:64: 41:e8:b2:09:b9:e6:16:2e:35:a9:72:b7:c5:d2:8f: 4b:7a:31:b5:a9:5a:ee:09:61:bb:7b:30:ee:68:56: 85:56:93:68:18:dd:85:fd:f6:c0:08:fe:59:e8:f9: da:6a:2a:68:cc:a3:66:85:52:b3:28:eb:5c:5f:e1: ac:b5:b4:68:e7:bb:1f:21:0d:aa:a8:0a:60:02:5a: 42:51:bf:6d:46:f6:64:fe:97:b5:ec:bb:e5:5f:2d: b6:68:cb:05:57:ff:91:2f:23:70:72:8e:b5:03:83: f0:3b:b8:98:d5:cf:36:31:d2:45:ad:f0:09:4b:15: 73:e9:10:0a:b4:e4:c3:39:12:c8:b0:94:ae:b7:bd: 32:e5:49:e2:16:7d:b3:cc:53:10:57:3e:3b:5f:3e: b4:ae:26:dd:14:8d:67:34:8d:11:11:30:74:f9:e4: af:98:ba:08:e4:f1:2f:5c:ea:4c:59:a9:af:1f:95: 92:14:1b:23:76:1f:12:7d:a4:69:17:17:1d:b9:33: b1:d1:e3:18:4b:1c:38:c8:ab:af:91:60:fd:d2:90: 76:fa:e7:80:3e:15:de:09:56:90:8b:0b:83:1e:10: a1:13:f6:5c:10:1d:b4:58:99:1e:48:8c:51:f5:1f: b5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:31:A1:D4:24:E1:5A:63:8E:6E:EA:3C:2A:43:EC:68:69:C0:89:5B X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:20:50:44:ce:93:bf:39:20:e1:b7:f7:85:2e:e8:9f:64:9e: 15:da:ea:84:22:7a:69:03:59:4d:3d:de:77:0d:d1:f9:20:41: 68:75:4c:a4:78:5b:6b:7c:75:9e:00:f0:c7:1b:3f:33:8e:84: 9c:e6:f4:f3:96:4d:71:89:28:d4:b8:36:41:86:36:16:7f:2c: f3:c0:60:5d:eb:24:31:ca:87:09:a6:06:a7:02:e2:1a:3e:f7: 4c:09:18:13:6d:3a:9b:01:59:eb:a7:a2:c6:6a:b3:ac:2d:6e: c9:b2:26:a1:8c:c3:f1:87:ff:6b:ac:7f:9e:c0:52:61:4a:b6: 05:84:85:63:e8:e3:0b:ff:65:62:1a:a8:8a:26:5d:65:65:95: 87:4e:aa:66:fa:e9:b3:d6:77:1e:e3:be:84:99:1a:b7:2e:81: cc:e9:24:c3:4e:43:3f:da:a1:e5:4d:00:76:65:23:fe:40:be: fb:68:9c:78:58:28:de:14:62:bb:2c:47:e0:be:8e:52:85:22: ec:11:4a:0e:0f:c3:6c:e6:f7:bd:fb:12:84:5b:ef:da:7d:88: 41:43:f3:8c:94:44:5f:70:d5:04:02:d5:31:6b:1c:8c:09:4d: 3f:7d:95:41:60:b3:1e:99:cb:52:bd:a9:ce:be:b7:2f:8d:5a: 72:28:24:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjYwNDE3MDE0NTQ4WhcNMjYwNDI0MDE0NTQ4WjAYMRYwFAYD VQQDEw02OWUxOTBjYy1iNjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8swFLw2aAn3ENLxlNWRB6LIJueYWLjWpcrfF0o9LejG1qVruCWG7ezDuaFaF VpNoGN2F/fbACP5Z6PnaaipozKNmhVKzKOtcX+GstbRo57sfIQ2qqApgAlpCUb9t RvZk/pe17LvlXy22aMsFV/+RLyNwco61A4PwO7iY1c82MdJFrfAJSxVz6RAKtOTD ORLIsJSut70y5UniFn2zzFMQVz47Xz60ribdFI1nNI0RETB0+eSvmLoI5PEvXOpM WamvH5WSFBsjdh8SfaRpFxcduTOx0eMYSxw4yKuvkWD90pB2+ueAPhXeCVaQiwuD HhChE/ZcEB20WJkeSIxR9R+1pQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOExodQk 4Vpjjm7qPCpD7GhpwIlbMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKyBQRM6Tvzkg4bf3hS7on2SeFdrqhCJ6aQNZTT3edw3R+SBBaHVMpHhba3x1 ngDwxxs/M46EnOb085ZNcYko1Lg2QYY2Fn8s88BgXeskMcqHCaYGpwLiGj73TAkY E206mwFZ66eixmqzrC1uybImoYzD8Yf/a6x/nsBSYUq2BYSFY+jjC/9lYhqoiiZd ZWWVh06qZvrps9Z3HuO+hJkaty6BzOkkw05DP9qh5U0AdmUj/kC++2iceFgo3hRi uyxH4L6OUoUi7BFKDg/DbOb3vfsShFvv2n2IQUPzjJREX3DVBALVMWscjAlNP32V QWCzHpnLUr2pzr63L41acigkrw== -----END CERTIFICATE-----Generated at Fri Apr 17 06:30:22 2026 by rpki-client