$ rpki-client -vvf rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft File: I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft (raw, json) Hash identifier: KT/nR6f+DloPCVgTp+BlzhS5hCUt4Jfa09yuNP1MLng= Subject key identifier: A1:E1:8E:0C:1B:7E:F1:FB:8D:D5:4B:0A:C5:1B:CE:D0:52:7D:FB:BE Authority key identifier: 23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28 Certificate issuer: /CN=A919DB08/serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft Manifest number: 27 Signing time: Wed 15 Apr 2026 08:25:55 +0000 Manifest this update: Wed 15 Apr 2026 08:25:55 +0000 Manifest next update: Wed 22 Apr 2026 08:25:55 +0000 Files and hashes: 1: I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl (hash: LO8e+LlnQPm+mAeV6NvRLfD94gXtIHkd7U6vSWiU0I8=) 2: 3F7E724808FA11F1B69E3FD3313D8C67.roa (hash: NZDM0P5b400zVrhyd2jzSLfxw/qGeaxR3jXe0NSn67o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 08:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DB08, serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828 Validity Not Before: Apr 15 08:25:55 2026 GMT Not After : Apr 22 08:25:55 2026 GMT Subject: CN=69df4b93-4ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:28:32:a9:f5:57:18:a4:ff:a4:1e:e1:08:6b: cf:59:dc:b1:48:c2:1d:e1:32:c4:87:b2:c4:35:c0: a0:9c:a4:63:c5:c2:03:f9:16:a7:41:cf:29:ed:cd: ab:40:64:b1:99:7d:4c:ca:a2:90:ec:6f:05:19:1a: fc:eb:70:f2:c1:97:a3:d2:26:eb:15:a1:30:a0:a8: 85:3a:4b:d8:70:2b:c1:17:b1:dd:68:a8:e6:16:41: bc:8f:c4:3a:50:e3:d0:64:72:d5:d7:6b:24:00:f7: 19:f6:77:91:2e:db:e5:a6:27:76:c9:25:0f:b8:51: 25:8a:46:8c:b6:41:f0:d1:2f:1a:cc:55:64:8e:b2: 20:71:9e:3e:cc:0a:60:43:c5:51:87:a3:37:59:2d: d3:7e:28:6d:81:f6:cc:65:35:05:27:e3:39:04:ff: fd:fc:fb:12:1f:e4:55:39:38:65:6c:61:51:e5:8d: f7:65:b0:b0:e2:3b:0f:9d:46:0c:8c:af:d1:50:6b: ae:51:67:d8:41:14:07:cd:a3:54:9e:24:64:46:06: 8d:a8:8f:32:39:ee:0a:9a:bb:d3:03:a7:4f:8a:3e: f5:0d:e8:63:ba:1c:ca:b0:bb:9f:1b:fa:85:0b:79: d1:a4:4e:26:41:67:a5:fe:9e:49:b0:09:99:3b:31: b9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:E1:8E:0C:1B:7E:F1:FB:8D:D5:4B:0A:C5:1B:CE:D0:52:7D:FB:BE X509v3 Authority Key Identifier: keyid:23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:7a:dc:a7:77:c0:7a:0b:a3:5b:cd:e1:4b:a5:65:c9:fa:fa: 89:1f:5d:ce:43:29:b6:54:19:29:9a:d5:80:32:11:7c:39:13: a1:8c:1a:a5:3f:91:0e:89:cf:06:78:55:7e:25:94:38:70:ed: 3a:0b:2f:92:4a:43:d0:2e:5a:53:42:06:fe:cc:6c:cb:77:a2: e6:b0:cf:ef:ad:bb:23:e6:8f:14:0d:b0:a0:a8:49:78:41:35: f3:13:d3:c8:fc:61:21:ab:75:d0:75:ee:39:0c:1d:73:ba:a8: 16:32:fb:87:d8:3d:da:22:39:e2:c0:7b:2a:b0:80:ad:1b:1b: d8:dc:73:3f:14:85:94:52:a5:9e:c9:10:1c:16:da:6a:97:2c: 24:e3:8f:fe:4e:fb:7d:88:79:6a:fa:11:aa:f3:5a:f0:44:ec: 96:bf:14:c2:cb:aa:bd:7f:5f:db:af:f2:aa:a6:77:99:00:ea: 70:99:37:07:84:9c:67:0b:29:47:fd:a2:30:de:ea:a1:c4:20: 78:81:5a:38:63:56:49:0a:1c:67:77:2d:94:26:4a:5c:cf:c4: c5:41:32:7a:b7:98:b7:96:d2:11:85:9e:8e:51:2a:08:df:eb: 47:16:c8:5b:27:73:f9:c4:60:53:9f:4a:fc:40:ed:a9:51:d4: c6:7f:10:3a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 REIwODExMC8GA1UEBRMoMjM5MUZCNEQ5QUVENDRBQjgwRTZBRkQ4RDgyMEExQzA2 NDQzOTgyODAeFw0yNjA0MTUwODI1NTVaFw0yNjA0MjIwODI1NTVaMBgxFjAUBgNV BAMTDTY5ZGY0YjkzLTRhY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiKDKp9VcYpP+kHuEIa89Z3LFIwh3hMsSHssQ1wKCcpGPFwgP5FqdBzyntzatA ZLGZfUzKopDsbwUZGvzrcPLBl6PSJusVoTCgqIU6S9hwK8EXsd1oqOYWQbyPxDpQ 49BkctXXayQA9xn2d5Eu2+WmJ3bJJQ+4USWKRoy2QfDRLxrMVWSOsiBxnj7MCmBD xVGHozdZLdN+KG2B9sxlNQUn4zkE//38+xIf5FU5OGVsYVHljfdlsLDiOw+dRgyM r9FQa65RZ9hBFAfNo1SeJGRGBo2ojzI57gqau9MDp0+KPvUN6GO6HMqwu58b+oUL edGkTiZBZ6X+nkmwCZk7Mbm5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUoeGODBt+ 8fuN1UsKxRvO0FJ9+74wHwYDVR0jBBgwFoAUI5H7TZrtRKuA5q/Y2CChwGRDmCgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEQjA4LzM4ODZFOEI4MDhG OTExRjE4MDg0RDA4NjMxM0Q4QzY3L0k1SDdUWnJ0Ukt1QTVxX1kyQ0Nod0dSRG1D Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSTVIN1RacnRSS3VBNXFfWTJDQ2h3R1JEbUNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE QjA4LzM4ODZFOEI4MDhGOTExRjE4MDg0RDA4NjMxM0Q4QzY3L0k1SDdUWnJ0Ukt1 QTVxX1kyQ0Nod0dSRG1DZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBfetynd8B6C6NbzeFLpWXJ+vqJH13OQym2VBkpmtWAMhF8OROhjBqlP5EOic8G eFV+JZQ4cO06Cy+SSkPQLlpTQgb+zGzLd6LmsM/vrbsj5o8UDbCgqEl4QTXzE9PI /GEhq3XQde45DB1zuqgWMvuH2D3aIjniwHsqsICtGxvY3HM/FIWUUqWeyRAcFtpq lywk44/+Tvt9iHlq+hGq81rwROyWvxTCy6q9f1/br/KqpneZAOpwmTcHhJxnCylH /aIw3uqhxCB4gVo4Y1ZJChxndy2UJkpcz8TFQTJ6t5i3ltIRhZ6OUSoI3+tHFshb J3P5xGBTn0r8QO2pUdTGfxA6 -----END CERTIFICATE-----Generated at Fri Apr 17 03:18:34 2026 by rpki-client