$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: iA4RF8rkS1ed9Oxak/6gSxR8q0VNzx97JxTQrpyvO48= Subject key identifier: 1D:CF:2B:60:75:CD:EA:2B:CC:87:78:3F:F5:F2:8E:65:0D:D1:5A:C7 Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0C88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0C7D Signing time: Sun 26 Apr 2026 18:31:03 +0000 Manifest this update: Sun 26 Apr 2026 18:31:02 +0000 Manifest next update: Sun 03 May 2026 18:31:02 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: FOjBnuNYsfbwFpNpCqtBmBfPrm2w+DHlK87tgSEwI50=) 2: 021496F2A4EC11F0A8EB5F7EC4F9AE02.roa (hash: jvXpWHuQMqZIyWCLt8zGlmD/EFuQwBIFv6UJxNzSdzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 18:31:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3208 (0xc88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22, serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: Apr 26 18:31:02 2026 GMT Not After : May 3 18:31:02 2026 GMT Subject: CN=69ee59e7-3f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:37:73:76:d8:a9:5b:b7:3d:5e:c5:a5:09: a3:a8:c0:43:70:06:a7:00:96:15:ba:c6:91:71:21: e4:62:bc:4c:0d:f6:ad:18:95:ac:2a:73:ef:d8:3a: 9f:92:43:46:64:40:39:56:7c:68:45:d9:e0:e7:bf: 24:df:7f:35:d5:96:99:1c:96:31:a9:4e:66:40:a4: a7:83:e9:92:68:17:ad:db:ed:c2:51:85:5d:35:43: 2b:30:ec:41:6d:d1:09:4d:a0:7d:84:d1:33:15:94: ec:7b:9d:ec:fc:35:9d:44:2a:fb:bf:ce:6f:05:fb: 3b:38:0d:bb:03:77:86:88:4f:53:7b:fa:e9:63:05: 1b:6c:cc:a0:f3:3b:04:2c:24:52:d2:a1:e0:76:0d: 96:08:3e:54:ce:33:81:b8:95:fc:ea:8f:02:a4:9f: e6:03:fd:4a:49:e5:07:be:b9:e2:04:81:9e:2f:cb: e2:c6:47:40:cb:7a:e7:1a:85:c9:df:46:93:f9:ad: 49:4f:93:3e:3a:56:0e:dc:a4:7b:96:ba:50:82:d5: fc:bf:3c:fa:72:c7:3d:a8:3b:42:cd:c6:b8:9c:e5: d7:41:34:41:dd:a3:14:d7:78:a8:dd:aa:b0:9d:75: 75:88:62:79:e2:07:a4:e3:67:c7:07:63:3a:04:47: 42:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:CF:2B:60:75:CD:EA:2B:CC:87:78:3F:F5:F2:8E:65:0D:D1:5A:C7 X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:a0:7e:ec:bb:a1:2d:51:75:23:1f:cb:09:4a:4d:f7:ef:3e: c6:9e:34:62:00:8d:dc:16:e5:ac:a0:5b:15:31:b0:27:73:2e: 0b:c6:17:de:b9:64:d2:30:d3:79:84:21:f2:38:50:d2:b8:3f: 1c:51:7c:fc:89:03:75:d9:c1:32:df:30:9c:3f:56:a5:00:b3: 0d:b5:0a:52:cd:f5:89:29:61:fa:a7:dc:1c:bb:b1:5a:a7:a3: 4a:c8:0f:4b:05:e8:de:41:dd:51:31:ef:97:0c:35:16:b4:47: 84:0d:0d:c0:80:5f:c4:80:56:02:19:7f:c2:37:33:d9:2e:42: db:3c:70:fb:92:be:cd:f3:64:ee:0b:df:87:a6:41:65:fc:74: 13:27:e6:32:aa:36:f2:e0:c4:2a:80:62:15:75:30:b9:76:47: 37:25:12:e0:40:14:93:17:76:9c:30:89:8a:ab:32:8c:71:7b: 28:e3:e7:91:9a:df:4b:2d:23:a3:a5:4e:1c:42:1d:b8:7f:d2: 66:f8:d2:35:2f:d8:f3:53:63:d2:35:24:85:0e:da:68:a4:90: a5:e1:e7:2d:ea:33:43:b4:a1:3a:77:b5:df:e6:bc:df:4f:0b: f5:10:b2:d7:bd:7a:45:49:61:ac:91:e2:64:5d:85:14:78:ec: 15:60:8e:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjYwNDI2MTgzMTAyWhcNMjYwNTAzMTgzMTAyWjAYMRYwFAYD VQQDEw02OWVlNTllNy0zZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1E3c3bYqVu3PV7FpQmjqMBDcAanAJYVusaRcSHkYrxMDfatGJWsKnPv2Dqf kkNGZEA5VnxoRdng578k33811ZaZHJYxqU5mQKSng+mSaBet2+3CUYVdNUMrMOxB bdEJTaB9hNEzFZTse53s/DWdRCr7v85vBfs7OA27A3eGiE9Te/rpYwUbbMyg8zsE LCRS0qHgdg2WCD5UzjOBuJX86o8CpJ/mA/1KSeUHvrniBIGeL8vixkdAy3rnGoXJ 30aT+a1JT5M+OlYO3KR7lrpQgtX8vzz6csc9qDtCzca4nOXXQTRB3aMU13io3aqw nXV1iGJ54gek42fHB2M6BEdCDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB3PK2B1 zeorzId4P/XyjmUN0VrHMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABKB+7LuhLVF1Ix/LCUpN9+8+xp40YgCN3BblrKBbFTGwJ3MuC8YX3rlk0jDT eYQh8jhQ0rg/HFF8/IkDddnBMt8wnD9WpQCzDbUKUs31iSlh+qfcHLuxWqejSsgP SwXo3kHdUTHvlww1FrRHhA0NwIBfxIBWAhl/wjcz2S5C2zxw+5K+zfNk7gvfh6ZB Zfx0EyfmMqo28uDEKoBiFXUwuXZHNyUS4EAUkxd2nDCJiqsyjHF7KOPnkZrfSy0j o6VOHEIduH/SZvjSNS/Y81Nj0jUkhQ7aaKSQpeHnLeozQ7ShOne13+a8308L9RCy 1716RUlhrJHiZF2FFHjsFWCOQQ== -----END CERTIFICATE-----Generated at Mon Apr 27 11:18:30 2026 by rpki-client