$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: iYfg0YhY+1a0edu2Kn7xjWfhzeZC/dh9yfhFs4CUc7c= Subject key identifier: BF:C6:3B:9E:1C:81:5D:26:2E:5B:3F:D4:8F:C2:40:BF:96:AE:DF:06 Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 01CE Signing time: Fri 17 Apr 2026 03:30:37 +0000 Manifest this update: Fri 17 Apr 2026 03:30:37 +0000 Manifest next update: Fri 24 Apr 2026 03:30:37 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: o5xJDcVx/JTp9+hbYGZ7yMHJ9fyb375H49VVq0in0Cc=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: 9Cz73WT7Rn3Trdhhklo6EWl3uWAxMBB/0nYJ5e8QOZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Apr 17 03:30:37 2026 GMT Not After : Apr 24 03:30:37 2026 GMT Subject: CN=69e1a95d-a4da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a5:de:4e:5d:dd:bc:32:e5:cf:e0:0e:c5:c8: ed:4a:50:c7:2b:5d:24:f2:3d:ac:ff:f8:44:3d:b2: 6e:45:72:b4:6d:85:7b:fe:f1:ad:98:7a:38:98:af: 35:2e:47:65:c4:4d:cf:73:f7:af:e8:bb:57:76:27: 6d:85:04:91:cd:f2:f8:28:a7:b1:9e:4f:6c:dc:3e: a0:11:9c:31:7a:19:64:01:7a:f9:32:a1:de:94:ea: 44:c5:07:72:53:09:12:db:fb:f9:29:96:3a:a5:8a: c5:00:7a:4c:6a:3d:29:38:be:31:1f:4f:20:6a:c5: f2:38:f0:68:c8:b6:5e:b6:67:34:84:fe:ed:33:55: ab:56:9f:f3:af:6c:a3:df:8b:ea:2a:b7:2c:1f:ff: a5:33:2c:1a:df:92:9a:8c:74:ea:8f:f0:28:b5:16: 5a:21:7a:52:ec:72:3b:d5:7c:48:60:bb:2d:60:bb: 0a:a7:be:71:2b:df:fb:87:6c:bb:f0:64:6e:c5:5b: 8e:e3:81:5a:11:d1:3b:99:15:57:c3:50:2c:89:10: 9a:08:59:0a:29:40:f1:af:cc:65:13:f1:12:78:c1: ef:f4:50:76:0b:5c:44:a5:e2:1f:72:64:e4:3d:32: 39:14:2e:de:8c:7e:59:74:0f:44:3c:4d:d4:29:c5: fc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C6:3B:9E:1C:81:5D:26:2E:5B:3F:D4:8F:C2:40:BF:96:AE:DF:06 X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:6a:d4:36:bb:0c:1b:7e:14:3c:46:5b:b0:27:27:26:ed:d9: 4f:0b:72:d5:a4:f0:73:cb:48:27:25:a0:ee:0f:ce:a0:db:32: 33:10:12:ae:07:44:a0:70:7c:00:8a:af:f3:f7:49:60:a4:e5: ce:c6:dc:0b:79:d0:51:85:a6:82:cb:bc:57:cc:61:5a:5b:92: 31:53:d1:25:61:8f:34:a8:e9:1c:65:f5:be:b7:83:93:09:ba: ce:29:38:fe:e9:6b:b9:c4:15:44:56:a8:81:40:b1:61:11:16: e7:31:a3:9e:6b:39:de:bd:22:32:21:10:9a:c3:ab:a1:9d:af: cc:74:1c:9a:33:fc:b3:b6:c0:4f:f0:20:74:dd:75:d1:34:a6: e6:64:f1:03:ff:56:07:03:fe:5c:ab:d7:96:31:bf:ed:79:61: 0e:13:ec:90:c3:dd:33:ec:e8:c8:f7:6e:c2:d5:d9:72:60:2e: e6:ef:df:8e:48:b0:a8:3f:51:b1:35:42:15:f4:98:24:f0:a3: ae:5d:dc:7f:ff:b5:c2:14:6a:2a:c7:91:1f:db:9f:37:e0:78: 66:36:2e:7a:70:4f:48:6d:ee:c0:b4:ed:af:ff:b3:04:b3:e9: 99:18:4d:99:f3:67:11:bb:03:5b:05:38:98:48:de:28:c5:c0: aa:bd:ef:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjYwNDE3MDMzMDM3WhcNMjYwNDI0MDMzMDM3WjAYMRYwFAYD VQQDEw02OWUxYTk1ZC1hNGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6XeTl3dvDLlz+AOxcjtSlDHK10k8j2s//hEPbJuRXK0bYV7/vGtmHo4mK81 LkdlxE3Pc/ev6LtXdidthQSRzfL4KKexnk9s3D6gEZwxehlkAXr5MqHelOpExQdy UwkS2/v5KZY6pYrFAHpMaj0pOL4xH08gasXyOPBoyLZetmc0hP7tM1WrVp/zr2yj 34vqKrcsH/+lMywa35KajHTqj/AotRZaIXpS7HI71XxIYLstYLsKp75xK9/7h2y7 8GRuxVuO44FaEdE7mRVXw1AsiRCaCFkKKUDxr8xlE/ESeMHv9FB2C1xEpeIfcmTk PTI5FC7ejH5ZdA9EPE3UKcX8hwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL/GO54c gV0mLls/1I/CQL+Wrt8GMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbmrUNrsMG34UPEZbsCcnJu3ZTwty1aTwc8tIJyWg7g/OoNsyMxASrgdEoHB8 AIqv8/dJYKTlzsbcC3nQUYWmgsu8V8xhWluSMVPRJWGPNKjpHGX1vreDkwm6zik4 /ulrucQVRFaogUCxYREW5zGjnms53r0iMiEQmsOroZ2vzHQcmjP8s7bAT/AgdN11 0TSm5mTxA/9WBwP+XKvXljG/7XlhDhPskMPdM+zoyPduwtXZcmAu5u/fjkiwqD9R sTVCFfSYJPCjrl3cf/+1whRqKseRH9ufN+B4ZjYuenBPSG3uwLTtr/+zBLPpmRhN mfNnEbsDWwU4mEjeKMXAqr3vzw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:04:41 2026 by rpki-client