$ rpki-client -vvf rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft File: H7fzr2-da5fjcg7FSsv1iTrGk2g.mft (raw, json) Hash identifier: DFY2u5TljNIp5/S7p/A6qTotDl/KPVVrxgzCHdRwlQc= Subject key identifier: 24:1A:62:4B:DA:17:1F:A6:E2:F4:00:E8:14:78:97:63:60:7D:72:50 Authority key identifier: 1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 Certificate issuer: /CN=A9117DD2/serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft Manifest number: 0241 Signing time: Wed 29 Apr 2026 03:00:35 +0000 Manifest this update: Wed 29 Apr 2026 03:00:35 +0000 Manifest next update: Wed 06 May 2026 03:00:35 +0000 Files and hashes: 1: H7fzr2-da5fjcg7FSsv1iTrGk2g.crl (hash: Dj2HIUciSEPnR3Sn9sqhUvZZEEpboeMEysAGbmYizXY=) 2: 2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa (hash: ojeQEJwfkmkjsjTjJi7JxC/rYMjRAxyFan+n2ZkXfIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 03:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117DD2, serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Validity Not Before: Apr 29 03:00:35 2026 GMT Not After : May 6 03:00:35 2026 GMT Subject: CN=69f17453-98ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bc:7f:fe:b8:60:0f:95:3e:9b:c6:53:78:1a: a6:4e:05:ac:b3:15:4b:d2:b5:d1:44:4d:36:d7:7c: a6:80:11:f8:44:61:ea:ed:e7:a1:68:5f:ce:17:5d: 37:91:32:a0:51:90:10:37:bb:a3:83:9c:c4:18:bc: be:88:82:27:2c:86:82:d2:a5:67:48:76:0f:3b:19: 4c:f9:b8:47:44:81:c5:9c:2a:b2:ec:9d:66:f3:d8: f8:83:4f:2d:aa:73:a3:8a:81:52:3f:be:49:59:ff: 5a:bc:ad:b3:35:0b:64:a0:77:17:d6:5d:e1:1c:e5: 71:e6:e7:a1:bd:7d:20:f6:09:c3:39:b0:db:44:14: ec:58:df:2d:1f:6d:4a:e1:48:e1:b7:5c:76:c8:73: 5b:04:1d:6c:49:89:3e:88:57:b9:1e:bd:98:45:cf: 29:fb:41:e3:19:a9:77:8c:ac:1a:28:db:75:d9:af: 3f:b0:f8:ee:82:8d:c8:f4:3b:b0:65:92:c6:84:dd: 30:bc:84:26:a5:53:73:e4:05:45:00:65:46:1b:48: e3:c6:d6:05:01:8c:1b:6a:a2:3c:74:e5:83:79:c6: 0d:e7:80:34:1d:d3:f8:4f:03:6c:7b:7a:80:09:12: 5c:2f:31:07:0e:ad:63:ef:e4:df:c3:96:3b:0a:51: fd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1A:62:4B:DA:17:1F:A6:E2:F4:00:E8:14:78:97:63:60:7D:72:50 X509v3 Authority Key Identifier: keyid:1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:b0:60:a0:70:04:ec:6c:82:22:eb:bf:66:2e:f0:4f:a0:b7: e8:18:f3:8a:ab:5e:ea:d2:44:13:86:86:1f:e8:6e:ab:ba:25: 58:19:3a:00:4c:a7:2f:cf:5a:4f:75:62:53:47:15:59:b6:a9: 81:26:34:e2:11:5b:23:cc:01:54:5d:ba:4b:2c:c2:de:de:ef: 26:77:a7:19:3b:4b:fa:d2:1c:f1:dc:a0:75:39:8a:a8:1d:d7: 61:0a:d7:0a:f5:67:6d:63:77:03:a7:b2:ad:8a:6d:c0:06:49: 36:c6:d1:a2:5d:42:7e:bb:36:f1:03:7d:b8:a1:dc:3f:1e:e9: 70:43:b3:ee:9b:0f:25:d7:b0:68:6a:a2:e1:9a:49:47:db:f3: 5a:9c:ca:85:52:83:76:69:42:97:41:82:39:65:31:a8:83:e0: d7:fa:b6:a4:95:53:87:75:f4:f1:90:90:f3:67:56:48:6b:b0: 52:7d:02:bd:a1:7f:33:d9:1f:c4:55:47:83:bc:f1:71:76:ac: 2d:5d:1b:c0:11:d9:cf:4e:3b:54:2d:8d:89:56:26:55:22:51: 30:d8:39:3f:7d:6a:8e:75:9e:d7:a8:0d:01:d1:d1:3a:fd:55: f7:ee:26:6b:18:7d:05:01:c8:b3:2e:8e:93:f7:9f:e4:9d:71: 59:26:0a:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdERDIxMTAvBgNVBAUTKDFGQjdGM0FGNkY5RDZCOTdFMzcyMEVDNTRBQ0JGNTg5 M0FDNjkzNjgwHhcNMjYwNDI5MDMwMDM1WhcNMjYwNTA2MDMwMDM1WjAYMRYwFAYD VQQDEw02OWYxNzQ1My05OGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbx//rhgD5U+m8ZTeBqmTgWssxVL0rXRRE0213ymgBH4RGHq7eehaF/OF103 kTKgUZAQN7ujg5zEGLy+iIInLIaC0qVnSHYPOxlM+bhHRIHFnCqy7J1m89j4g08t qnOjioFSP75JWf9avK2zNQtkoHcX1l3hHOVx5uehvX0g9gnDObDbRBTsWN8tH21K 4Ujht1x2yHNbBB1sSYk+iFe5Hr2YRc8p+0HjGal3jKwaKNt12a8/sPjugo3I9Duw ZZLGhN0wvIQmpVNz5AVFAGVGG0jjxtYFAYwbaqI8dOWDecYN54A0HdP4TwNse3qA CRJcLzEHDq1j7+Tfw5Y7ClH9AwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCQaYkva Fx+m4vQA6BR4l2NgfXJQMB8GA1UdIwQYMBaAFB+3869vnWuX43IOxUrL9Yk6xpNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0REMi8xMDFFREFFQUQx QzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1ZmpjZzdGU3N2MWlUckdr MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3ZnpyMi1kYTVmamNnN0ZTc3YxaVRyR2syZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0REMi8xMDFFREFFQUQxQzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1 ZmpjZzdGU3N2MWlUckdrMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArrBgoHAE7GyCIuu/Zi7wT6C36Bjziqte6tJEE4aGH+huq7olWBk6AEynL89a T3ViU0cVWbapgSY04hFbI8wBVF26SyzC3t7vJnenGTtL+tIc8dygdTmKqB3XYQrX CvVnbWN3A6eyrYptwAZJNsbRol1Cfrs28QN9uKHcPx7pcEOz7psPJdewaGqi4ZpJ R9vzWpzKhVKDdmlCl0GCOWUxqIPg1/q2pJVTh3X08ZCQ82dWSGuwUn0CvaF/M9kf xFVHg7zxcXasLV0bwBHZz047VC2NiVYmVSJRMNg5P31qjnWe16gNAdHROv1V9+4m axh9BQHIsy6Ok/ef5J1xWSYKHQ== -----END CERTIFICATE-----Generated at Wed Apr 29 17:49:21 2026 by rpki-client