$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: HcqbxeGZwH1PIS92ydY97AwA3sNFKIwprL+AsEK5zcw= Subject key identifier: 66:C1:81:CA:3C:E8:FE:9C:62:C0:E4:DF:CF:E6:AC:F2:B0:21:3A:ED Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: 0176 Signing time: Fri 17 Apr 2026 04:27:22 +0000 Manifest this update: Fri 17 Apr 2026 04:27:22 +0000 Manifest next update: Fri 24 Apr 2026 04:27:22 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: Y+4kP1HjaBVHiJM6GY1cwwB3lMJ8+TpDXpvybFMrl1o=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: 6+bY61LdDlam0PC7GuKMwEXRvre/3cSdh3l+aLkv2pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Apr 17 04:27:22 2026 GMT Not After : Apr 24 04:27:22 2026 GMT Subject: CN=69e1b6aa-de81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8f:21:65:8f:f1:9c:ee:16:7e:e2:a9:00:4d: 3e:05:2e:7f:a1:c2:8d:6c:a2:47:55:94:dd:65:9e: db:ab:62:4e:44:30:bf:eb:d9:3f:bc:39:d1:5c:1d: 96:51:d8:2f:94:23:8d:fd:4a:50:4f:2e:ea:03:8b: a4:79:77:43:62:3a:20:f3:31:39:18:fd:b0:e6:5a: 67:cf:c3:b2:79:c4:b4:7f:ac:24:e8:11:63:41:58: a8:56:ad:35:3f:99:ab:6c:05:b5:27:18:43:7a:d1: 7a:b7:c1:4f:b1:31:68:d8:89:28:dc:b8:12:71:40: cf:33:af:20:1a:25:5f:ce:ff:7b:fd:41:ce:9d:fd: 5d:08:9c:90:4b:52:0e:0c:90:e6:24:2c:f4:fc:d4: 0f:71:f1:cf:14:cb:d2:cc:45:ed:38:ab:7a:c3:73: 68:53:bf:31:e1:01:79:59:73:36:56:d9:56:b2:d8: e7:b3:46:41:15:53:51:b1:38:e3:cf:1d:2e:ea:be: c2:b3:f8:f9:d5:8a:ee:76:1c:1b:1a:ee:77:d7:97: c7:22:00:41:81:39:ed:4b:e7:d8:43:09:be:ab:d8: 0b:6a:a0:a7:06:47:ac:71:7f:36:c3:40:f3:6f:4e: 43:52:cc:88:c3:61:1e:d7:ff:69:da:40:3f:2a:fa: dc:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C1:81:CA:3C:E8:FE:9C:62:C0:E4:DF:CF:E6:AC:F2:B0:21:3A:ED X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:cf:39:38:5f:8d:d0:7b:ad:cc:ea:8c:e5:de:6d:6e:d8:31: 75:8c:ee:c9:84:60:b7:7a:ed:14:e9:fb:06:ab:c4:e4:a1:9c: d2:e9:3d:25:3d:62:91:3e:ec:8e:82:88:63:e4:4b:52:93:fa: e7:21:de:2f:34:58:b7:95:88:ae:15:cf:98:83:cb:33:fd:94: d5:8d:d1:06:f2:79:cf:85:52:51:82:50:9b:df:d1:e9:e3:4a: d5:2a:77:db:67:8b:90:32:71:8b:79:89:83:c2:0f:a5:80:c0: 1e:2e:93:92:3c:53:da:8a:2f:de:9a:ba:d3:da:42:e1:8f:7c: bc:b8:b9:52:51:b7:e0:8b:e1:16:39:47:4e:d8:74:1c:d9:68: fb:3c:90:70:84:8a:0d:ec:31:88:a4:66:77:d7:9e:50:e9:1c: 57:88:2e:3a:2d:47:c4:61:3a:ee:cc:d2:fc:ee:43:3d:e6:d6: 98:fc:3d:e8:68:af:25:ac:b4:10:ab:7f:45:af:74:a2:f7:03: a8:78:06:f6:da:02:dd:bf:bc:99:53:88:14:96:63:ba:1c:05: 04:17:41:90:ba:41:ab:e2:27:b2:26:de:ce:9f:4a:51:62:bf: 30:ef:a9:92:54:0d:8c:89:6b:dd:ac:2b:42:61:a6:44:a0:99: b6:d6:86:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjYwNDE3MDQyNzIyWhcNMjYwNDI0MDQyNzIyWjAYMRYwFAYD VQQDEw02OWUxYjZhYS1kZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY8hZY/xnO4WfuKpAE0+BS5/ocKNbKJHVZTdZZ7bq2JORDC/69k/vDnRXB2W UdgvlCON/UpQTy7qA4ukeXdDYjog8zE5GP2w5lpnz8OyecS0f6wk6BFjQVioVq01 P5mrbAW1JxhDetF6t8FPsTFo2Iko3LgScUDPM68gGiVfzv97/UHOnf1dCJyQS1IO DJDmJCz0/NQPcfHPFMvSzEXtOKt6w3NoU78x4QF5WXM2VtlWstjns0ZBFVNRsTjj zx0u6r7Cs/j51YrudhwbGu5315fHIgBBgTntS+fYQwm+q9gLaqCnBkescX82w0Dz b05DUsyIw2Ee1/9p2kA/KvrcFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGbBgco8 6P6cYsDk38/mrPKwITrtMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfM85OF+N0HutzOqM5d5tbtgxdYzuyYRgt3rtFOn7BqvE5KGc0uk9JT1ikT7s joKIY+RLUpP65yHeLzRYt5WIrhXPmIPLM/2U1Y3RBvJ5z4VSUYJQm9/R6eNK1Sp3 22eLkDJxi3mJg8IPpYDAHi6TkjxT2oov3pq609pC4Y98vLi5UlG34IvhFjlHTth0 HNlo+zyQcISKDewxiKRmd9eeUOkcV4guOi1HxGE67szS/O5DPebWmPw96GivJay0 EKt/Ra90ovcDqHgG9toC3b+8mVOIFJZjuhwFBBdBkLpBq+Insibezp9KUWK/MO+p klQNjIlr3awrQmGmRKCZttaGIQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:23:04 2026 by rpki-client