$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft File: H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft (raw, json) Hash identifier: YnwOztob1IFXRddxFwkHbBjf/zsf+djMhwNS5DoP0qo= Subject key identifier: 2F:BB:94:83:29:FC:D5:03:AE:5B:8C:BE:4D:F3:60:F7:49:20:37:DD Authority key identifier: 1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 Certificate issuer: /CN=A91F8282/serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft Manifest number: D4 Signing time: Fri 17 Apr 2026 06:27:19 +0000 Manifest this update: Fri 17 Apr 2026 06:27:19 +0000 Manifest next update: Fri 24 Apr 2026 06:27:19 +0000 Files and hashes: 1: H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl (hash: G2Ydsia3iW6PBCgJ8pR2ZypL6h2sxEt7Ji40h5wKKdI=) 2: 0664C974FEF811EFB0C52572C4F9AE02.roa (hash: VTTmes8N3+DkLFdnT/jEg6MX9n3Ds/jhDY1DgH8WfVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Validity Not Before: Apr 17 06:27:19 2026 GMT Not After : Apr 24 06:27:19 2026 GMT Subject: CN=69e1d2c7-a990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:45:0e:34:6e:95:b1:51:23:20:b3:31:29:be: b9:0d:3e:80:51:62:bf:db:07:9f:2b:05:94:a6:a3: 2c:ff:77:2d:5a:4d:cd:bf:0e:5e:ef:c5:94:84:b8: ff:30:f6:9e:9f:9d:5c:a4:37:27:15:09:8d:8e:c6: e8:fc:2c:e7:28:01:ed:e8:8f:0b:2a:1b:3f:46:ab: 5d:27:7f:4a:b0:d6:f7:fd:83:d2:4f:c0:27:10:73: 11:39:1f:ce:2d:1b:fc:7a:3e:34:de:84:0b:bb:50: 60:8e:4b:92:78:ee:79:50:7f:da:14:0f:a3:ca:ab: 94:e6:bb:42:f1:4e:df:45:a9:1f:94:49:d1:9d:fa: 98:46:54:e8:fb:1e:f9:c4:9e:2c:60:33:a1:ae:7b: b6:64:5a:16:ef:0f:81:31:b8:82:59:58:7d:9b:bd: fc:88:08:d3:07:7b:c2:b3:c0:c8:2e:1c:7c:dd:74: d0:23:3d:19:67:b6:97:be:cd:53:59:13:8d:58:96: 99:9a:4d:26:76:54:14:ee:82:5b:e8:05:67:74:28: f2:2e:87:02:e3:d5:db:bd:63:c9:27:35:36:90:a7: a1:79:8c:c1:14:09:0e:5f:ff:df:0a:b2:1d:65:2e: f0:a7:98:f7:57:19:ab:1f:5b:2a:43:8b:d9:5d:3f: eb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BB:94:83:29:FC:D5:03:AE:5B:8C:BE:4D:F3:60:F7:49:20:37:DD X509v3 Authority Key Identifier: keyid:1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:06:b5:d0:2b:af:a5:51:d9:ef:08:41:c0:17:41:d7:6a:de: d0:19:71:1c:c0:2f:93:76:e0:83:97:67:8e:14:58:d3:56:16: d0:f1:c6:2b:67:78:65:27:63:48:62:98:e5:81:2e:da:4c:a1: a0:ab:73:32:de:c0:51:67:c4:f3:1f:b8:6e:7c:f8:60:3a:d9: d5:a5:55:81:8d:90:97:70:ed:aa:17:62:c8:de:7f:19:bb:0e: 72:f3:fd:14:f0:a4:f2:b9:cf:91:cb:ca:ce:fd:71:67:76:15: ff:f6:6c:0d:52:f1:32:dd:a6:82:6f:c0:67:3b:26:18:81:54: 88:b3:6d:1b:b5:14:4c:94:26:f9:55:10:d4:74:49:e0:3d:75: 2e:87:d1:bd:ed:1f:df:73:ce:1e:c3:42:0a:7c:45:bd:ae:1f: a7:55:82:1d:71:30:b8:e5:92:1e:10:f3:cd:99:fb:1a:54:90: 35:49:02:55:94:12:f9:da:a3:4a:f6:88:66:89:f0:8a:87:4f: 95:1b:6d:d3:ff:77:b3:0f:52:c8:ab:2e:61:c6:28:b1:d2:6e: b7:51:76:ee:48:9f:48:59:e0:01:93:1f:a2:6e:7e:3b:e3:49: d9:d7:ff:c1:13:8f:01:da:29:f6:70:30:19:aa:8e:7a:79:54: f5:7c:db:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyODIxMTAvBgNVBAUTKDFGNERDRTM0MzlCMUY0MDM1RkZGOEM3MUNFMzU5RTVE MjBFNjlBMjQwHhcNMjYwNDE3MDYyNzE5WhcNMjYwNDI0MDYyNzE5WjAYMRYwFAYD VQQDEw02OWUxZDJjNy1hOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUUONG6VsVEjILMxKb65DT6AUWK/2wefKwWUpqMs/3ctWk3Nvw5e78WUhLj/ MPaen51cpDcnFQmNjsbo/CznKAHt6I8LKhs/RqtdJ39KsNb3/YPST8AnEHMROR/O LRv8ej403oQLu1BgjkuSeO55UH/aFA+jyquU5rtC8U7fRakflEnRnfqYRlTo+x75 xJ4sYDOhrnu2ZFoW7w+BMbiCWVh9m738iAjTB3vCs8DILhx83XTQIz0ZZ7aXvs1T WRONWJaZmk0mdlQU7oJb6AVndCjyLocC49XbvWPJJzU2kKeheYzBFAkOX//fCrId ZS7wp5j3VxmrH1sqQ4vZXT/r5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC+7lIMp /NUDrluMvk3zYPdJIDfdMB8GA1UdIwQYMBaAFB9NzjQ5sfQDX/+Mcc41nl0g5pok MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODI4Mi8yRjI1M0MxQUZC RkUxMUVGQjU1MjBBMTJDNEY5QUUwMi9IMDNPTkRteDlBTmZfNHh4empXZVhTRG1t aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0gwM09ORG14OUFOZl80eHh6aldlWFNEbW1pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODI4Mi8yRjI1M0MxQUZCRkUxMUVGQjU1MjBBMTJDNEY5QUUwMi9IMDNPTkRteDlB TmZfNHh4empXZVhTRG1taVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJwa10CuvpVHZ7whBwBdB12re0BlxHMAvk3bgg5dnjhRY01YW0PHGK2d4ZSdj SGKY5YEu2kyhoKtzMt7AUWfE8x+4bnz4YDrZ1aVVgY2Ql3DtqhdiyN5/GbsOcvP9 FPCk8rnPkcvKzv1xZ3YV//ZsDVLxMt2mgm/AZzsmGIFUiLNtG7UUTJQm+VUQ1HRJ 4D11LofRve0f33POHsNCCnxFva4fp1WCHXEwuOWSHhDzzZn7GlSQNUkCVZQS+dqj SvaIZonwiodPlRtt0/93sw9SyKsuYcYosdJut1F27kifSFngAZMfom5+O+NJ2df/ wROPAdop9nAwGaqOenlU9XzbIA== -----END CERTIFICATE-----Generated at Fri Apr 17 22:43:55 2026 by rpki-client