$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: IeYevVFw7oCpJlcU01PqpXHh5OU3BeU6E4SRtIr+tD8= Subject key identifier: E0:76:13:2B:B3:68:0C:DC:28:A1:AB:89:15:D9:7B:41:25:52:4E:63 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 017F Signing time: Fri 17 Apr 2026 04:16:52 +0000 Manifest this update: Fri 17 Apr 2026 04:16:52 +0000 Manifest next update: Fri 24 Apr 2026 04:16:52 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: ArszAFa1uPK9oAPjw1muW8n4CaH5zWUcRZEsYk2jzRQ=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: LehxYUyNY+Aih3/gKb031XwxWefiznlK8xHHelOl+ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Apr 17 04:16:52 2026 GMT Not After : Apr 24 04:16:52 2026 GMT Subject: CN=69e1b434-1783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:21:d3:de:63:65:c8:89:07:e2:07:22:27:e6: 17:3f:61:ab:78:71:3a:da:0c:76:92:34:60:89:f0: 9c:33:d7:88:b5:aa:f7:75:86:36:0b:e3:e4:65:c7: 8d:26:34:e3:81:67:42:bd:2d:a1:c0:57:29:07:34: 37:3d:66:6f:a4:e1:b5:31:99:28:d9:2f:fa:38:01: 81:65:24:f4:8c:f5:39:7b:22:41:a6:9d:9d:c3:bb: b6:41:59:c5:8f:e4:06:7f:76:13:01:6c:e7:2e:17: 51:74:fa:60:70:86:6f:1e:c3:3f:19:2c:02:ae:5d: 19:cd:39:69:b6:e8:82:43:68:08:58:e4:e9:f7:e3: 10:bd:02:07:03:9c:a5:88:ac:24:6e:b4:9e:83:d2: 94:45:7d:39:5f:87:6e:de:94:50:e0:b3:6f:ef:b5: e8:e0:c4:d9:b3:25:d4:19:05:ea:f5:90:7d:ad:7b: 80:96:5c:83:b0:43:8e:3e:5e:bf:0c:e7:74:60:da: 8a:ff:05:2f:0b:52:be:3a:66:cd:8e:d0:1e:ac:44: 4c:55:3a:c9:62:99:36:6b:72:4b:e2:89:55:2d:c6: b2:52:39:48:24:2d:f5:4d:97:30:87:bd:50:33:44: 62:18:49:b8:76:cc:f5:34:4b:f1:72:70:a7:20:0b: 3f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:76:13:2B:B3:68:0C:DC:28:A1:AB:89:15:D9:7B:41:25:52:4E:63 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:3c:3f:90:51:df:68:aa:ee:1f:c4:ab:70:5a:90:53:f2:11: ea:aa:81:5e:53:cc:d2:da:33:7a:2f:83:be:6b:34:10:f8:27: 75:22:98:43:f1:8b:26:b8:0b:bc:40:d1:59:fc:f7:90:60:4b: 7a:17:88:35:ca:dc:aa:0b:96:ff:06:a1:ef:fb:4e:59:a8:c9: ce:04:1e:82:50:23:fd:c0:7c:9e:41:1f:3d:56:82:5c:9e:f9: db:36:ef:e8:bd:85:37:4e:26:55:af:27:c3:c1:4b:55:50:78: 45:61:7d:fe:9b:4e:3e:ff:3c:f1:7a:ac:4a:95:eb:8d:45:a8: bb:91:fc:ff:d4:b1:b6:62:e9:14:68:c2:55:d8:53:d3:6d:7c: fb:68:96:10:ce:a6:a9:7b:ff:f8:6e:b5:5b:a9:67:22:d0:16: 90:e1:60:c7:4d:08:c7:38:a3:46:77:48:09:dd:d3:8e:6d:0a: 02:c4:bf:30:73:e0:91:d3:a8:93:08:97:f8:25:55:26:c6:7c: a7:c0:71:8d:61:ff:03:d6:b8:6d:d4:3a:04:ac:78:46:7b:da: f8:02:04:1e:59:07:00:27:68:72:e1:38:ca:05:3d:54:2f:b5: d1:f4:2a:02:01:91:f8:f4:c5:e4:ac:f2:c3:17:e5:7a:91:6e: cc:d1:ef:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjYwNDE3MDQxNjUyWhcNMjYwNDI0MDQxNjUyWjAYMRYwFAYD VQQDEw02OWUxYjQzNC0xNzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSHT3mNlyIkH4gciJ+YXP2GreHE62gx2kjRgifCcM9eItar3dYY2C+PkZceN JjTjgWdCvS2hwFcpBzQ3PWZvpOG1MZko2S/6OAGBZST0jPU5eyJBpp2dw7u2QVnF j+QGf3YTAWznLhdRdPpgcIZvHsM/GSwCrl0ZzTlptuiCQ2gIWOTp9+MQvQIHA5yl iKwkbrSeg9KURX05X4du3pRQ4LNv77Xo4MTZsyXUGQXq9ZB9rXuAllyDsEOOPl6/ DOd0YNqK/wUvC1K+OmbNjtAerERMVTrJYpk2a3JL4olVLcayUjlIJC31TZcwh71Q M0RiGEm4dsz1NEvxcnCnIAs/ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOB2Eyuz aAzcKKGriRXZe0ElUk5jMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwDw/kFHfaKruH8SrcFqQU/IR6qqBXlPM0tozei+Dvms0EPgndSKYQ/GLJrgL vEDRWfz3kGBLeheINcrcqguW/wah7/tOWajJzgQeglAj/cB8nkEfPVaCXJ752zbv 6L2FN04mVa8nw8FLVVB4RWF9/ptOPv888XqsSpXrjUWou5H8/9SxtmLpFGjCVdhT 0218+2iWEM6mqXv/+G61W6lnItAWkOFgx00IxzijRndICd3Tjm0KAsS/MHPgkdOo kwiX+CVVJsZ8p8BxjWH/A9a4bdQ6BKx4Rnva+AIEHlkHACdocuE4ygU9VC+10fQq AgGR+PTF5KzywxflepFuzNHvPA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:22:09 2026 by rpki-client