$ rpki-client -vvf rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft File: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft (raw, json) Hash identifier: 0dWorXKZdG+iX27yl3VS5CJ1ujTUHobd1zs/YbFfHWw= Subject key identifier: 9E:E4:97:40:E8:33:B5:84:6E:4A:1E:00:12:B4:9B:83:59:51:AD:CF Authority key identifier: 0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A Certificate issuer: /CN=A918E0B2/serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Certificate serial: 0603 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft Manifest number: 05F3 Signing time: Thu 16 Apr 2026 22:50:04 +0000 Manifest this update: Thu 16 Apr 2026 22:50:04 +0000 Manifest next update: Thu 23 Apr 2026 22:50:04 +0000 Files and hashes: 1: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl (hash: slLL/LafXByGbcJ3PIZojwww3EQqP248ZpmdzM32tAY=) 2: 63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa (hash: DwFRC5Q8naeDAzyAtmNxc5ykjCbZ/7NV7SU48cPZy64=) 3: 64720824EF6611EB9A7EFE0EC4F9AE02.roa (hash: LL0n4MdM8xP/nWYSFwrtL/Mk/fArB+tqMpKJaeazPNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:50:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1539 (0x603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E0B2, serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Validity Not Before: Apr 16 22:50:04 2026 GMT Not After : Apr 23 22:50:04 2026 GMT Subject: CN=69e1679c-606f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b7:49:38:26:9c:85:6f:55:95:49:d0:d7:11: 2a:c9:3f:c7:07:f9:40:97:93:bf:1c:93:2b:80:6e: de:e1:10:39:1b:cb:96:fe:cd:d1:89:50:11:08:13: 5a:b2:50:5b:25:55:25:85:a5:6c:a3:a6:53:d9:09: c1:36:4f:ea:c0:cb:7c:ad:39:bc:ff:d0:c4:7c:54: f8:ee:a7:31:bc:29:da:88:17:f2:ec:c0:da:ff:a3: 48:60:b9:8d:d7:a0:9e:71:fe:fa:8c:79:2a:8f:89: 08:83:8b:c6:84:9e:b5:87:c2:b8:84:75:3e:c3:7d: f1:9d:c6:c7:aa:ac:50:52:b8:69:44:03:26:9f:1c: 44:62:26:ea:f7:10:ae:33:ac:7e:70:be:6f:95:cb: c5:b3:39:b7:62:bc:65:a0:57:4f:5e:b3:de:2f:ae: f1:f0:3b:bb:76:99:83:69:b2:e3:37:61:43:2a:4d: ef:fb:fc:69:f2:e1:3c:a2:b8:49:02:d7:88:fc:bd: 07:15:22:5f:75:56:06:d3:c3:3d:f4:98:ca:92:32: 68:96:d1:60:d7:7a:9e:92:ae:48:ea:ef:41:96:d5: 68:d5:ba:85:cb:d8:84:8b:89:d5:44:9a:df:8f:95: 08:05:2e:31:7c:62:2b:6d:87:78:77:f4:94:6a:ce: 34:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E4:97:40:E8:33:B5:84:6E:4A:1E:00:12:B4:9B:83:59:51:AD:CF X509v3 Authority Key Identifier: keyid:0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:c7:b8:c3:bb:37:51:3e:c6:da:0e:f9:eb:76:7b:43:47:79: 8b:05:0e:90:fb:4a:d3:cb:90:3b:1b:c0:62:18:8f:47:8e:fa: 7d:73:68:99:b6:25:20:f7:83:2a:cb:00:b1:88:8b:88:8b:e3: ef:c3:90:0d:1a:25:66:d9:62:f8:83:fa:37:f5:27:d6:7b:af: 04:2f:a5:b2:d8:4c:f9:1a:68:d2:81:cb:12:70:d6:09:5e:a6: 6d:f4:1a:47:1c:fe:e9:a2:30:5f:f0:ac:fb:e8:f6:97:6d:1d: 40:d7:41:a9:aa:e9:39:76:65:6a:d3:00:48:e2:1b:f3:ab:54: fc:d3:98:b9:bc:d9:8d:d3:c0:eb:57:13:81:12:0e:c2:f3:7d: 17:f2:1c:1b:33:08:e9:3f:b2:f3:dc:37:0f:f7:81:39:5a:ed: 4d:39:38:e4:fe:83:86:aa:49:50:7a:cc:fc:fe:bd:44:5d:29: cd:e4:55:ac:dc:cd:88:57:a8:b5:86:ec:23:05:f8:5b:e1:0d: ea:b1:03:b5:49:59:37:a5:e5:c0:00:9b:ea:8d:18:43:64:cc: f9:ec:e7:08:47:56:81:2c:4a:9a:47:89:24:5b:47:92:fd:fb: f6:f9:a3:4b:45:2e:69:57:f7:e8:ee:fe:63:cd:87:1a:1e:e0: ab:e2:3c:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUwQjIxMTAvBgNVBAUTKDBCM0VCQTg4RjFBREExQTFCNTA4OTFCMjY1MzFBM0U3 MDlCRjY1OUEwHhcNMjYwNDE2MjI1MDA0WhcNMjYwNDIzMjI1MDA0WjAYMRYwFAYD VQQDEw02OWUxNjc5Yy02MDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbdJOCachW9VlUnQ1xEqyT/HB/lAl5O/HJMrgG7e4RA5G8uW/s3RiVARCBNa slBbJVUlhaVso6ZT2QnBNk/qwMt8rTm8/9DEfFT47qcxvCnaiBfy7MDa/6NIYLmN 16Cecf76jHkqj4kIg4vGhJ61h8K4hHU+w33xncbHqqxQUrhpRAMmnxxEYibq9xCu M6x+cL5vlcvFszm3YrxloFdPXrPeL67x8Du7dpmDabLjN2FDKk3v+/xp8uE8orhJ AteI/L0HFSJfdVYG08M99JjKkjJoltFg13qekq5I6u9BltVo1bqFy9iEi4nVRJrf j5UIBS4xfGIrbYd4d/SUas40HQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ7kl0Do M7WEbkoeABK0m4NZUa3PMB8GA1UdIwQYMBaAFAs+uojxraGhtQiRsmUxo+cJv2Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTBCMi82NzA0MkMxOEVG NjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9hRzFDSkd5WlRHajV3bV9a Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6NjZpUEd0b2FHMUNKR3laVEdqNXdtX1paby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTBCMi82NzA0MkMxOEVGNjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9h RzFDSkd5WlRHajV3bV9aWm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuMe4w7s3UT7G2g7563Z7Q0d5iwUOkPtK08uQOxvAYhiPR476fXNombYlIPeD KssAsYiLiIvj78OQDRolZtli+IP6N/Un1nuvBC+lsthM+Rpo0oHLEnDWCV6mbfQa Rxz+6aIwX/Cs++j2l20dQNdBqarpOXZlatMASOIb86tU/NOYubzZjdPA61cTgRIO wvN9F/IcGzMI6T+y89w3D/eBOVrtTTk45P6DhqpJUHrM/P69RF0pzeRVrNzNiFeo tYbsIwX4W+EN6rEDtUlZN6XlwACb6o0YQ2TM+eznCEdWgSxKmkeJJFtHkv379vmj S0UuaVf36O7+Y82HGh7gq+I8Qg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:13:07 2026 by rpki-client