$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: LzvyGfAaOwKZTuLSTUhO0cUTU1s8E+7wkUny4fkJoFQ= Subject key identifier: 67:8D:7B:5A:A8:87:B4:72:8E:97:A3:10:B8:5E:79:35:3D:C8:20:37 Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 0111 Signing time: Sat 18 Apr 2026 19:10:54 +0000 Manifest this update: Sat 18 Apr 2026 19:10:54 +0000 Manifest next update: Sat 25 Apr 2026 19:10:54 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: bHKZ3PM7uSTRYIDVpmA8dag1LujrbHAsiVEWik3Hk1M=) 2: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: CmfJtzvbUDIWlxCuJc7fM+dnWaJ+FXCzjzg3v0W8Rc4=) 3: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: eX1W6sEO6qSGiwMhq2AqfocdX9JRjmM9eN6Q3NFHq5U=) 4: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: dPEhTQP3qeAR4yGjatb5GQPGEIi2y0rBsSN9VqRiVX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 19:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Apr 18 19:10:54 2026 GMT Not After : Apr 25 19:10:54 2026 GMT Subject: CN=69e3d73e-9a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:41:0e:e6:66:f1:0c:79:10:77:e6:d8:99:1e: 39:96:e3:3e:15:6b:98:ad:66:95:3f:78:b8:5e:63: 8e:83:21:ff:a1:d0:08:43:65:58:f7:1e:80:1d:4b: af:68:d6:51:2f:fa:23:d3:fe:4c:58:78:4e:b6:92: 45:20:2b:17:56:ac:53:0a:c6:9b:07:bb:cb:e0:76: 09:c7:15:99:33:bb:4d:b0:e8:9b:ff:e3:f1:7a:e5: 33:e7:52:44:ab:77:d1:c9:dd:c8:10:bb:f2:d4:70: 94:ce:1a:1b:d4:23:ec:59:02:b6:18:94:00:22:d8: 92:96:cc:ee:8a:fd:7f:91:68:fd:64:e7:18:93:e7: 43:16:f5:cb:b8:51:af:f4:f6:f6:98:87:da:12:55: 5d:68:ba:4e:80:1e:ab:39:dd:5f:66:95:63:4e:c2: 45:e8:2f:46:d4:94:84:bd:a7:bd:b4:0f:36:85:3d: 47:b1:c2:3d:72:ae:b8:9d:c4:6c:40:79:55:e5:c9: 50:ed:fc:1d:8e:8f:e5:96:51:87:12:e4:f1:f7:1f: 15:5a:61:90:9c:10:a4:7f:7f:44:ef:1a:5f:73:2d: 1a:c2:c5:b6:1b:a1:ca:48:30:7e:de:54:84:82:3a: b1:25:8d:21:0c:49:de:5b:97:1a:c9:b7:43:74:f2: 05:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8D:7B:5A:A8:87:B4:72:8E:97:A3:10:B8:5E:79:35:3D:C8:20:37 X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:c8:a4:2b:38:62:79:59:ca:01:8f:45:1b:8f:bd:5f:69:37: 18:df:2c:c3:a7:86:85:05:f8:a3:f5:c6:fe:8e:3a:14:64:0d: 51:1b:42:1d:84:ad:73:d5:cd:83:28:00:9d:66:2d:ec:6f:d9: a5:66:c3:ba:51:6d:3a:21:53:38:a2:a2:31:a2:27:75:31:5c: 6b:e9:dc:68:29:5d:b0:ab:16:3d:32:6d:9b:a0:b0:ed:36:60: 2a:b6:84:43:f9:74:50:f6:fc:4b:ff:53:a9:19:6d:39:75:9c: 96:32:b5:de:5b:e1:9e:f2:df:81:59:93:b1:87:03:bb:da:61: 15:a1:a0:71:dc:7d:3e:2f:d4:29:4f:2c:69:b1:99:d3:d1:b3: 90:06:5f:eb:bf:1d:9c:27:be:30:81:e7:bb:40:b3:fd:a2:e1: 0a:80:1b:f0:2d:55:03:31:e9:20:6b:93:de:7d:b6:06:b3:32: fc:d0:67:22:04:27:16:25:35:a4:7e:7e:8e:a6:97:f3:af:59: 46:5f:2b:2e:76:6e:c3:d3:8a:c2:5c:fe:ee:89:e8:a5:e3:4e: 0c:b0:db:88:7f:09:46:66:fc:b9:8c:1f:6f:9b:5d:43:8c:6d: 4f:e2:e7:71:d4:af:4d:a0:76:0a:7e:2d:27:60:23:57:66:de: d1:d1:e4:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjYwNDE4MTkxMDU0WhcNMjYwNDI1MTkxMDU0WjAYMRYwFAYD VQQDEw02OWUzZDczZS05YTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kEO5mbxDHkQd+bYmR45luM+FWuYrWaVP3i4XmOOgyH/odAIQ2VY9x6AHUuv aNZRL/oj0/5MWHhOtpJFICsXVqxTCsabB7vL4HYJxxWZM7tNsOib/+PxeuUz51JE q3fRyd3IELvy1HCUzhob1CPsWQK2GJQAItiSlszuiv1/kWj9ZOcYk+dDFvXLuFGv 9Pb2mIfaElVdaLpOgB6rOd1fZpVjTsJF6C9G1JSEvae9tA82hT1HscI9cq64ncRs QHlV5clQ7fwdjo/lllGHEuTx9x8VWmGQnBCkf39E7xpfcy0awsW2G6HKSDB+3lSE gjqxJY0hDEneW5caybdDdPIFwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGeNe1qo h7RyjpejELheeTU9yCA3MB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGcikKzhieVnKAY9FG4+9X2k3GN8sw6eGhQX4o/XG/o46FGQNURtCHYStc9XN gygAnWYt7G/ZpWbDulFtOiFTOKKiMaIndTFca+ncaCldsKsWPTJtm6Cw7TZgKraE Q/l0UPb8S/9TqRltOXWcljK13lvhnvLfgVmTsYcDu9phFaGgcdx9Pi/UKU8sabGZ 09GzkAZf678dnCe+MIHnu0Cz/aLhCoAb8C1VAzHpIGuT3n22BrMy/NBnIgQnFiU1 pH5+jqaX869ZRl8rLnZuw9OKwlz+7onopeNODLDbiH8JRmb8uYwfb5tdQ4xtT+Ln cdSvTaB2Cn4tJ2AjV2be0dHkSA== -----END CERTIFICATE-----Generated at Mon Apr 20 04:51:31 2026 by rpki-client