$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: VrhQKjGUCpBq7OK4953s9xYIxQSuNyYr0cOtu+65zHs= Subject key identifier: 7C:9B:CE:39:BB:40:E8:36:99:9B:0A:B7:C6:3E:AB:9C:30:FC:70:03 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 01DB Signing time: Sun 05 Apr 2026 03:04:11 +0000 Manifest this update: Sun 05 Apr 2026 03:04:11 +0000 Manifest next update: Sun 12 Apr 2026 03:04:11 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: pVnJCAeaKrzY40sGUVy9Th0XTAinGnz3/+jmL+Klufk=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: qVMa/Xz0rkX7Diy34qfbgTAPdgO1If06CjZkRcC7AXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:04:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Apr 5 03:04:11 2026 GMT Not After : Apr 12 03:04:11 2026 GMT Subject: CN=69d1d12b-672d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:f9:9b:a1:19:f1:c9:2d:2e:52:b2:a3:7a:f1: 72:99:6a:e5:14:bc:3d:a9:79:79:11:6e:a8:c0:4a: db:07:8b:a2:be:92:33:06:76:94:e9:d2:50:d8:57: bf:a0:13:5d:a8:98:56:75:84:af:47:cc:0b:3a:f1: f0:73:36:99:e4:fd:64:ca:36:c3:0d:12:dd:b1:67: 61:0e:1f:26:4e:53:e8:5e:78:72:e8:12:38:69:a6: 92:df:cc:7b:62:df:a8:2c:1d:11:01:7a:c2:ed:fd: 1d:93:ff:23:fb:04:2c:79:ed:e7:09:71:df:09:cc: 2a:a9:50:c7:73:1d:29:df:40:26:a8:0f:fb:44:c1: a9:2d:03:ab:88:74:81:99:8d:04:a6:fb:0f:47:01: e1:9f:07:3f:82:5a:a0:3a:f5:f1:ac:17:3e:99:27: c6:5c:38:d9:e6:84:87:7d:8a:a1:59:38:68:9d:65: d9:20:b8:65:fd:ee:30:c3:4d:e0:e0:86:f5:ec:2b: ee:d4:b1:93:90:e7:35:ce:81:3b:7c:ff:99:a9:79: db:7f:b7:2d:c7:06:22:78:d2:83:a9:e8:de:2b:44: c5:b7:f7:b6:81:88:a0:71:3e:e5:d3:4d:03:e4:21: f7:22:9b:fe:86:a3:4f:04:78:34:53:a0:8c:ab:57: a4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9B:CE:39:BB:40:E8:36:99:9B:0A:B7:C6:3E:AB:9C:30:FC:70:03 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:72:34:15:c5:13:df:8d:9d:ce:bb:42:8e:ec:45:bc:5f:48: 4f:93:9d:a8:ad:4f:c7:0f:f1:38:bc:9a:ef:d3:78:72:89:cd: 77:f7:64:79:0c:53:fa:ae:75:c9:f1:b6:c0:d2:8c:7f:2e:b8: 8d:fe:f9:8b:9e:f5:03:9e:90:3f:09:e1:e5:75:55:1f:43:b1: e6:3d:5d:e2:74:be:3c:3b:ab:c2:a5:85:5e:71:6d:77:95:9c: b7:fc:13:33:52:18:14:46:4d:b5:85:08:10:0e:6c:7a:4d:0a: 43:9c:f9:8c:bd:9d:c9:1b:ba:a6:99:56:47:6f:e5:6b:56:c4: c7:de:4c:1a:4f:5e:c9:d6:91:6c:9c:35:d1:d0:47:bc:9e:21: 2e:f2:fe:0f:c5:ad:41:7e:62:06:67:23:03:35:fd:f2:8f:59: f1:e8:0c:7d:f3:d3:e3:b3:ec:a0:0d:44:d6:94:ee:87:a3:c2: 91:82:73:ee:af:57:ca:53:a0:9e:ae:f7:3c:cd:e1:59:8e:01: d5:e6:3d:1e:56:e0:30:3d:5a:81:82:5b:0c:2e:9b:ff:3d:6b: 00:ec:f9:76:4a:4e:c0:e2:8c:5e:db:9c:dc:41:76:7f:ef:f2: 0b:ff:16:37:b3:ea:2f:de:ea:c1:2d:6c:8a:f5:6e:52:0b:23: e0:7b:18:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjYwNDA1MDMwNDExWhcNMjYwNDEyMDMwNDExWjAYMRYwFAYD VQQDEw02OWQxZDEyYi02NzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAivmboRnxyS0uUrKjevFymWrlFLw9qXl5EW6owErbB4uivpIzBnaU6dJQ2Fe/ oBNdqJhWdYSvR8wLOvHwczaZ5P1kyjbDDRLdsWdhDh8mTlPoXnhy6BI4aaaS38x7 Yt+oLB0RAXrC7f0dk/8j+wQsee3nCXHfCcwqqVDHcx0p30AmqA/7RMGpLQOriHSB mY0EpvsPRwHhnwc/glqgOvXxrBc+mSfGXDjZ5oSHfYqhWThonWXZILhl/e4ww03g 4Ib17Cvu1LGTkOc1zoE7fP+ZqXnbf7ctxwYieNKDqejeK0TFt/e2gYigcT7l000D 5CH3Ipv+hqNPBHg0U6CMq1ekUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHybzjm7 QOg2mZsKt8Y+q5ww/HADMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlnI0FcUT342dzrtCjuxFvF9IT5OdqK1Pxw/xOLya79N4conNd/dkeQxT+q51 yfG2wNKMfy64jf75i571A56QPwnh5XVVH0Ox5j1d4nS+PDurwqWFXnFtd5Wct/wT M1IYFEZNtYUIEA5sek0KQ5z5jL2dyRu6pplWR2/la1bEx95MGk9eydaRbJw10dBH vJ4hLvL+D8WtQX5iBmcjAzX98o9Z8egMffPT47PsoA1E1pTuh6PCkYJz7q9XylOg nq73PM3hWY4B1eY9HlbgMD1agYJbDC6b/z1rAOz5dkpOwOKMXtuc3EF2f+/yC/8W N7PqL97qwS1sivVuUgsj4HsYzg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:04 2026 by rpki-client