$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft File: AI8syGQkHehjXpOldED5wusli7M.mft (raw, json) Hash identifier: Vek3snSUzck5BmB97iSX8nA2oP8PaP1KtyPG07Z772o= Subject key identifier: 2C:8C:5D:59:CF:28:BB:7C:59:87:04:A5:3A:FE:B4:32:19:8E:74:79 Authority key identifier: 00:8F:2C:C8:64:24:1D:E8:63:5E:93:A5:74:40:F9:C2:EB:25:8B:B3 Certificate issuer: /CN=A917AC3B/serialNumber=008F2CC864241DE8635E93A57440F9C2EB258BB3 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft Manifest number: 0190 Signing time: Sun 05 Apr 2026 03:51:44 +0000 Manifest this update: Sun 05 Apr 2026 03:51:44 +0000 Manifest next update: Sun 12 Apr 2026 03:51:44 +0000 Files and hashes: 1: AI8syGQkHehjXpOldED5wusli7M.crl (hash: +gnTqSm3wEsEZPXWokN37t8rbHSz/d1O/sMpW9R31fI=) 2: 2C24CB26CECC11EEAFCD520AC4F9AE02.roa (hash: /7z7IB560Zyid1gAT+cg8GKzeif1WiKdRUALH0UbtFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.crl rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC3B, serialNumber=008F2CC864241DE8635E93A57440F9C2EB258BB3 Validity Not Before: Apr 5 03:51:44 2026 GMT Not After : Apr 12 03:51:44 2026 GMT Subject: CN=69d1dc50-49a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e9:b1:6f:5f:40:46:19:56:eb:33:61:7b:39: fe:ca:26:59:e4:a8:7c:68:7a:e4:7f:2a:10:55:ca: ea:7b:e4:0e:51:71:f9:49:76:07:a5:51:9f:d6:7f: 04:42:c3:74:02:41:f1:35:34:18:94:8c:3c:d4:36: 7d:6f:d5:a3:38:b8:17:c3:73:ce:f2:13:f5:63:09: 2b:43:39:1b:4a:5e:47:cc:09:da:b4:39:20:c9:38: 05:e4:4f:fb:c0:85:6e:c7:7a:81:f6:ea:c2:79:31: c9:f6:d1:9e:cc:06:1d:2d:ea:0e:be:93:65:5a:96: 6a:12:74:94:f7:75:78:66:ed:08:6a:8f:7d:8c:43: e0:38:f8:0c:59:f5:07:4e:3a:55:50:4c:be:bf:51: b9:bf:fc:37:f8:70:7b:6d:08:e9:64:5c:76:d4:83: f3:26:c1:33:88:26:9b:11:28:6e:70:25:89:91:c4: fe:f1:63:86:f9:3a:8f:df:29:1a:af:da:25:35:34: 08:a8:bd:26:8e:45:12:90:d8:0a:54:78:e6:b3:c0: ed:66:6c:b3:4a:6f:1f:36:27:86:38:f3:ef:32:3d: 0e:7c:55:06:6c:d7:07:92:50:d6:90:57:b2:4f:d9: b6:17:0b:1a:58:ad:41:66:8a:76:30:34:9f:34:2b: 09:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8C:5D:59:CF:28:BB:7C:59:87:04:A5:3A:FE:B4:32:19:8E:74:79 X509v3 Authority Key Identifier: keyid:00:8F:2C:C8:64:24:1D:E8:63:5E:93:A5:74:40:F9:C2:EB:25:8B:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e3:12:fe:92:08:f5:65:7a:1e:3c:ec:11:96:76:ce:98:ee: fd:49:b9:1f:18:9a:ba:09:43:62:39:3b:e5:05:63:0d:9b:1b: 74:0b:a6:40:e2:70:07:af:3e:e7:97:25:97:a6:14:9d:c4:25: a4:13:22:dd:eb:a5:1d:d4:81:12:97:23:52:b3:a6:18:13:3d: d0:c4:0d:04:64:33:05:58:2f:c9:8e:03:ff:97:64:b1:e3:b9: 11:fa:cb:bc:52:8d:16:37:90:54:e6:62:1a:7e:ad:ff:67:8d: 29:16:ae:6c:9b:4d:8f:a3:f4:cd:4f:70:d8:8f:e1:40:77:50: b2:b8:69:02:c9:19:57:ae:05:65:fa:f6:1b:4d:fc:35:9f:79: 10:5d:dd:70:b9:4d:57:6f:e1:7f:f2:2f:af:eb:b1:27:ca:c4: 5a:e9:ca:6f:e3:da:a2:d1:f0:fe:0f:10:c8:e3:2e:5d:99:ff: 67:c2:68:63:2d:ac:2e:3e:a1:d2:0a:aa:6c:ec:82:ea:df:77: 7b:1d:ec:0a:fc:e7:a9:e7:1d:cc:6b:d9:f6:28:6d:5e:7f:dc: 21:a1:90:83:2a:ca:f2:44:75:01:4f:6e:d7:af:74:bc:ab:ca: 4d:da:cb:7d:90:b3:3c:a4:e5:9f:a5:26:cb:3e:8b:f0:c5:b2: 39:f5:0a:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDM0IxMTAvBgNVBAUTKDAwOEYyQ0M4NjQyNDFERTg2MzVFOTNBNTc0NDBGOUMy RUIyNThCQjMwHhcNMjYwNDA1MDM1MTQ0WhcNMjYwNDEyMDM1MTQ0WjAYMRYwFAYD VQQDEw02OWQxZGM1MC00OWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOmxb19ARhlW6zNhezn+yiZZ5Kh8aHrkfyoQVcrqe+QOUXH5SXYHpVGf1n8E QsN0AkHxNTQYlIw81DZ9b9WjOLgXw3PO8hP1YwkrQzkbSl5HzAnatDkgyTgF5E/7 wIVux3qB9urCeTHJ9tGezAYdLeoOvpNlWpZqEnSU93V4Zu0Iao99jEPgOPgMWfUH TjpVUEy+v1G5v/w3+HB7bQjpZFx21IPzJsEziCabEShucCWJkcT+8WOG+TqP3yka r9olNTQIqL0mjkUSkNgKVHjms8DtZmyzSm8fNieGOPPvMj0OfFUGbNcHklDWkFey T9m2FwsaWK1BZop2MDSfNCsJdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCyMXVnP KLt8WYcEpTr+tDIZjnR5MB8GA1UdIwQYMBaAFACPLMhkJB3oY16TpXRA+cLrJYuz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzQi85NTdCMjQ0MENF Q0IxMUVFQjAzMDU1ODdDNEY5QUUwMi9BSThzeUdRa0hlaGpYcE9sZEVENXd1c2xp N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJOHN5R1FrSGVoalhwT2xkRUQ1d3VzbGk3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzQi85NTdCMjQ0MENFQ0IxMUVFQjAzMDU1ODdDNEY5QUUwMi9BSThzeUdRa0hl aGpYcE9sZEVENXd1c2xpN00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAduMS/pII9WV6HjzsEZZ2zpju/Um5HxiauglDYjk75QVjDZsbdAumQOJwB68+ 55cll6YUncQlpBMi3eulHdSBEpcjUrOmGBM90MQNBGQzBVgvyY4D/5dkseO5EfrL vFKNFjeQVOZiGn6t/2eNKRaubJtNj6P0zU9w2I/hQHdQsrhpAskZV64FZfr2G038 NZ95EF3dcLlNV2/hf/Ivr+uxJ8rEWunKb+PaotHw/g8QyOMuXZn/Z8JoYy2sLj6h 0gqqbOyC6t93ex3sCvznqecdzGvZ9ihtXn/cIaGQgyrK8kR1AU9u1690vKvKTdrL fZCzPKTln6Umyz6L8MWyOfUKug== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:59 2026 by rpki-client