$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: 63kz8fATMi7G0a7CYTt/+9UJUV9I/3i8JJdNTENTSrk= Subject key identifier: 90:45:58:AD:70:D4:83:FF:63:56:1C:DA:17:9B:7F:0C:3D:A0:0C:91 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 3573 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 354B Signing time: Thu 16 Apr 2026 14:18:27 +0000 Manifest this update: Thu 16 Apr 2026 14:18:26 +0000 Manifest next update: Thu 23 Apr 2026 14:18:26 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: wHAHBWFK+IcAcNGsaibGBu212w7FF3aRm+LaBgbsIb4=) 2: 074A1CE2F1FD11F0BDA01C59486F56BC.roa (hash: PbRvsMPaciwk4aKrh1Gz2k+CLsuW70foiScaNfZvE3I=) 3: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: x1jt7itPjnC6MQbNejsBQgbeqBxLH2bZYuNPNtNXfYM=) 4: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: uTwgdWpEtjV1ALHAM8OqP3F4AfwGv1rbWW6ZiHZWVyg=) 5: 24D6C7C4F1FD11F0B766F66D486F56BC.roa (hash: x81djxirc4TZ7LBWsfaYDwm6dEqBh0TJcdGGB4pBfl8=) 6: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: kemAcHttVJ/67VTbPvla1uxc5lCQKg8ypYYWxu51V6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13683 (0x3573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Apr 16 14:18:26 2026 GMT Not After : Apr 23 14:18:26 2026 GMT Subject: CN=69e0efb3-893d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0b:02:dd:02:4b:69:a3:99:52:9c:c8:d8:89: 0b:dd:2c:df:8d:73:20:cf:ac:06:30:91:b1:60:24: 3c:bb:4e:d0:93:d6:c9:ed:b1:c7:a3:82:54:ee:15: d5:a0:1d:4a:64:22:01:e7:79:53:10:a7:d0:c3:a0: 14:d3:bd:26:e8:4d:01:df:a7:8d:15:c1:eb:79:25: 93:a8:90:b0:1b:0f:43:a8:ac:68:db:d4:c5:42:07: ab:fc:e1:67:fa:39:a9:e6:d0:fe:64:6b:0c:be:91: a2:34:72:8d:44:fd:7d:14:48:0d:50:4a:4a:9d:fa: 8e:ce:1f:52:11:a9:c9:cd:9b:25:c1:e1:23:f6:67: 14:7f:f9:4e:14:c0:4c:12:2e:06:cd:91:df:5b:75: eb:65:20:11:2a:82:bc:f5:16:aa:a6:fa:6e:96:61: 44:77:67:08:0c:c7:72:09:7b:a7:6b:02:89:92:16: e6:19:2d:8b:1e:a6:e5:c0:b8:2e:1f:17:af:0e:5f: b7:73:e9:4a:b5:6b:cb:2f:78:24:22:cb:1a:df:4e: 9f:94:7c:ef:09:04:28:1b:62:c6:a8:76:ba:22:db: fb:e3:a4:70:ec:1c:fb:6e:f4:e7:4e:5d:24:91:d1: 9c:00:fd:a1:ca:fe:08:44:31:17:6f:71:27:b1:33: f5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:45:58:AD:70:D4:83:FF:63:56:1C:DA:17:9B:7F:0C:3D:A0:0C:91 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:2c:ba:67:f7:87:e5:a4:b5:dd:da:a1:a8:2d:77:f9:42:a8: c4:ba:a4:45:f1:fb:2b:51:f3:53:c1:0d:71:10:4e:b4:87:09: 90:3d:83:8a:d0:80:ed:1b:51:23:bd:b1:b0:c5:b3:62:fb:a1: 68:17:40:23:02:fa:c2:82:75:cc:19:93:04:da:c9:98:37:1c: ae:27:e9:16:9f:04:25:e2:85:6d:2d:fc:cb:2e:6a:27:90:ca: da:6b:7d:b8:ce:30:e3:d1:70:45:f8:4a:aa:87:89:43:48:99: dd:1c:a5:13:0f:a3:d5:40:0a:02:a1:1c:a1:0c:3a:2b:93:c7: ec:9e:ee:6a:c0:60:fa:df:07:a5:aa:75:54:b0:df:ee:40:a7: 97:44:b8:bd:c7:4e:e6:e4:db:b8:38:c0:61:16:92:99:f3:12: 16:38:62:8c:ee:11:94:fc:9a:34:76:ef:d9:90:5a:45:4f:d4: 29:c8:24:a5:eb:95:c0:80:49:c9:c1:60:c7:06:d4:ad:d6:3f: 35:ee:3c:67:1d:f8:68:5f:08:35:5e:29:b7:4c:07:d3:d2:b6: e4:1f:30:f0:36:21:3d:87:97:bb:00:90:a2:4e:f6:4d:ff:1f: 80:2f:48:ba:cc:8c:d6:d2:d7:5f:3d:ed:05:c2:2c:11:9b:06: eb:74:f1:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjYwNDE2MTQxODI2WhcNMjYwNDIzMTQxODI2WjAYMRYwFAYD VQQDEw02OWUwZWZiMy04OTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgsC3QJLaaOZUpzI2IkL3SzfjXMgz6wGMJGxYCQ8u07Qk9bJ7bHHo4JU7hXV oB1KZCIB53lTEKfQw6AU070m6E0B36eNFcHreSWTqJCwGw9DqKxo29TFQger/OFn +jmp5tD+ZGsMvpGiNHKNRP19FEgNUEpKnfqOzh9SEanJzZslweEj9mcUf/lOFMBM Ei4GzZHfW3XrZSARKoK89RaqpvpulmFEd2cIDMdyCXunawKJkhbmGS2LHqblwLgu HxevDl+3c+lKtWvLL3gkIssa306flHzvCQQoG2LGqHa6Itv746Rw7Bz7bvTnTl0k kdGcAP2hyv4IRDEXb3EnsTP1JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJBFWK1w 1IP/Y1Yc2hebfww9oAyRMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPSy6Z/eH5aS13dqhqC13+UKoxLqkRfH7K1HzU8ENcRBOtIcJkD2DitCA7RtR I72xsMWzYvuhaBdAIwL6woJ1zBmTBNrJmDccrifpFp8EJeKFbS38yy5qJ5DK2mt9 uM4w49FwRfhKqoeJQ0iZ3RylEw+j1UAKAqEcoQw6K5PH7J7uasBg+t8Hpap1VLDf 7kCnl0S4vcdO5uTbuDjAYRaSmfMSFjhijO4RlPyaNHbv2ZBaRU/UKcgkpeuVwIBJ ycFgxwbUrdY/Ne48Zx34aF8INV4pt0wH09K25B8w8DYhPYeXuwCQok72Tf8fgC9I usyM1tLXXz3tBcIsEZsG63TxJg== -----END CERTIFICATE-----Generated at Fri Apr 17 07:24:35 2026 by rpki-client