$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: C6GEhlN/qh/xX/nVHn+c61Qr9UAsLEMZBmSPbBGWYyk= Subject key identifier: 92:17:A1:7F:76:26:84:B2:F7:10:2B:2D:5C:EF:9E:D1:F4:66:4A:3D Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 0224 Signing time: Sat 18 Apr 2026 18:44:56 +0000 Manifest this update: Sat 18 Apr 2026 18:44:56 +0000 Manifest next update: Sat 25 Apr 2026 18:44:56 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: hlmiwfmmAkdM8nRwQsyCjGJ1rE7snwt51ahOGMmImh0=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: UxgWHSWCQslOtEVN8vxHfkeQxG5zKwXTOsnpS8saGYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Apr 18 18:44:56 2026 GMT Not After : Apr 25 18:44:56 2026 GMT Subject: CN=69e3d128-9688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1f:3f:d4:3d:55:35:22:05:eb:60:87:4b:f7: c1:e5:4f:d5:5c:da:90:f6:c2:62:40:03:34:71:56: be:f8:15:d7:b6:42:15:e4:7a:ec:2b:23:56:c2:2c: 43:62:4d:f3:c0:4b:13:59:26:7e:63:e8:c6:7d:f0: 91:13:19:90:0f:0d:eb:ea:2a:cc:0f:46:b9:12:50: c0:10:19:77:4f:fc:b4:e4:c8:77:38:d2:4b:1b:f8: 1e:69:89:f9:08:e4:b1:9d:34:1c:69:dd:c5:00:ef: 35:31:4d:e5:cd:c3:1b:31:a0:6a:8d:96:9f:c5:83: 5f:a1:d3:ca:c7:fa:73:0a:90:8e:c5:98:9b:ac:5f: f8:9c:5b:7f:03:30:f4:cd:28:96:b0:a6:6c:8a:26: 09:8e:65:49:7b:fe:d7:70:57:e6:a3:9c:ae:7d:9f: c6:de:bf:ea:db:13:45:aa:55:aa:5d:5f:f9:f4:b5: da:d3:62:d1:40:fe:d0:a4:90:5f:19:d0:90:0e:eb: f6:07:b2:29:45:17:ae:90:6b:88:5d:2a:a2:4d:9c: a5:61:f2:02:d4:9d:98:e2:be:42:e0:88:ab:29:f6: 4f:16:d8:3f:3f:70:a1:d2:c0:9d:2a:bf:a6:eb:68: f5:62:2a:cc:00:9c:cf:81:cf:93:a5:b3:6f:8b:06: 0c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:17:A1:7F:76:26:84:B2:F7:10:2B:2D:5C:EF:9E:D1:F4:66:4A:3D X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:59:b8:13:67:9b:26:15:54:a3:23:d7:1c:9e:be:93:bd:cb: 1a:4d:23:e7:01:4b:b8:81:cd:78:a8:2a:60:a1:4e:1f:a8:e1: 4c:c2:08:30:c1:3f:ef:40:36:83:1a:46:19:d2:3d:2e:39:d5: d4:a4:2d:10:8d:de:ed:cb:83:90:92:b2:9c:bc:de:57:9e:fb: 9a:8b:a7:94:88:a3:e2:d1:d7:cd:e1:7e:51:32:56:38:14:26: e1:c1:48:73:a7:fe:29:7b:2a:b7:f5:45:70:06:e2:a5:cd:2b: 61:9a:b1:f8:ef:0a:58:e2:54:bf:ba:5c:c8:1c:09:3e:db:a2: bb:4d:3e:7d:66:04:23:d1:b4:0f:a4:c2:b4:26:6f:99:eb:d0: 76:7c:0f:7b:c8:04:f7:9f:b7:e3:02:a1:02:ff:57:e2:79:48: 56:62:fc:6f:b0:64:9a:59:08:ed:e1:f8:6d:d8:3e:77:38:f5: 06:0f:dd:f4:c5:7d:7b:f2:e1:ff:1c:23:6c:28:92:bd:e9:2f: 21:f9:f5:51:6c:65:02:76:78:c5:26:9e:0c:66:1e:56:53:7e: d9:ad:91:ac:16:7b:bf:5a:0c:58:48:70:b4:75:6c:cd:d8:96: 5b:d5:48:95:90:b9:60:ca:62:be:33:99:31:53:8f:48:b2:b2: dd:2f:f7:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjYwNDE4MTg0NDU2WhcNMjYwNDI1MTg0NDU2WjAYMRYwFAYD VQQDEw02OWUzZDEyOC05Njg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0h8/1D1VNSIF62CHS/fB5U/VXNqQ9sJiQAM0cVa++BXXtkIV5HrsKyNWwixD Yk3zwEsTWSZ+Y+jGffCRExmQDw3r6irMD0a5ElDAEBl3T/y05Mh3ONJLG/geaYn5 COSxnTQcad3FAO81MU3lzcMbMaBqjZafxYNfodPKx/pzCpCOxZibrF/4nFt/AzD0 zSiWsKZsiiYJjmVJe/7XcFfmo5yufZ/G3r/q2xNFqlWqXV/59LXa02LRQP7QpJBf GdCQDuv2B7IpRReukGuIXSqiTZylYfIC1J2Y4r5C4IirKfZPFtg/P3Ch0sCdKr+m 62j1YirMAJzPgc+TpbNviwYMBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJIXoX92 JoSy9xArLVzvntH0Zko9MB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASVm4E2ebJhVUoyPXHJ6+k73LGk0j5wFLuIHNeKgqYKFOH6jhTMIIMME/70A2 gxpGGdI9LjnV1KQtEI3e7cuDkJKynLzeV577mounlIij4tHXzeF+UTJWOBQm4cFI c6f+KXsqt/VFcAbipc0rYZqx+O8KWOJUv7pcyBwJPtuiu00+fWYEI9G0D6TCtCZv mevQdnwPe8gE95+34wKhAv9X4nlIVmL8b7BkmlkI7eH4bdg+dzj1Bg/d9MV9e/Lh /xwjbCiSvekvIfn1UWxlAnZ4xSaeDGYeVlN+2a2RrBZ7v1oMWEhwtHVszdiWW9VI lZC5YMpivjOZMVOPSLKy3S/3Hw== -----END CERTIFICATE-----Generated at Sat Apr 18 21:07:47 2026 by rpki-client