$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft File: CViGFDhyEOi2mtPDGnNhnXVe0MA.mft (raw, json) Hash identifier: vDBarxayCR0cXv4EASDwSZIbTSLgdP46cswpcAR1fCA= Subject key identifier: 09:3E:63:C0:69:1D:35:DC:54:16:84:60:5A:EF:E4:24:DC:91:3F:52 Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft Manifest number: 01BC Signing time: Sun 05 Apr 2026 03:22:10 +0000 Manifest this update: Sun 05 Apr 2026 03:22:09 +0000 Manifest next update: Sun 12 Apr 2026 03:22:09 +0000 Files and hashes: 1: CViGFDhyEOi2mtPDGnNhnXVe0MA.crl (hash: +nAZqPo45eA+2PSa74qrGuZ7xXWuVhpdbG2ZUxg/T/8=) 2: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (hash: AWmRUUuHw7qvkIYfsKHsasjQBa7Xv/yb5/iOLvXpkFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22, serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: Apr 5 03:22:09 2026 GMT Not After : Apr 12 03:22:09 2026 GMT Subject: CN=69d1d562-ca30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:35:cc:57:ed:a0:3f:45:26:d4:23:e0:65:5e: 1a:a0:b1:5c:93:85:6e:24:a4:df:bc:26:d3:aa:5a: 0f:1e:88:00:42:54:c1:ac:60:c7:2e:f4:c5:4b:06: 4f:d4:09:1a:b6:bd:56:3b:00:84:48:2a:9e:4f:42: 77:5c:49:17:dd:2b:61:f7:c6:71:9f:ed:b5:6f:6b: 0f:e5:d5:b6:84:a5:ad:7f:d4:60:df:5e:3b:98:4f: fa:c1:c3:0c:b6:d7:76:74:c0:2a:94:1b:5a:74:9e: a2:52:79:20:88:25:1e:b3:f9:19:f1:1b:67:1d:99: fd:29:d3:6a:6e:24:1d:b2:90:cb:f9:19:ad:0b:ad: 22:83:bb:e0:08:88:af:39:b8:d5:d4:fe:f7:e1:ac: 08:79:cb:d9:bf:0a:3a:06:ec:2d:ce:b1:31:c0:aa: c2:fb:2f:43:d7:6b:4b:4d:34:11:48:df:aa:7f:00: e8:f4:a0:75:23:15:8a:f7:b1:43:fe:10:2f:1b:76: da:45:cf:f4:dd:d9:6e:c7:e0:3e:c2:b3:5b:80:3a: ab:68:b4:8f:12:b7:f3:b0:61:9b:a9:74:ee:cb:42: 8a:24:7c:5d:f1:5a:8e:50:aa:36:c8:6f:8b:5d:49: ab:ba:d9:3a:ec:63:7c:24:be:0b:9d:5d:a5:5d:1a: 47:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3E:63:C0:69:1D:35:DC:54:16:84:60:5A:EF:E4:24:DC:91:3F:52 X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b6:22:d4:e4:f7:32:7d:1f:a2:dc:b0:73:73:bc:6d:0b:65: d1:56:eb:6d:49:a7:77:8a:8b:58:9c:cb:ce:07:e8:63:e6:ed: 35:83:71:f6:e6:a3:ed:20:2e:ff:43:93:b8:92:45:fa:cf:09: 6d:00:e0:cf:27:dc:bb:9b:5f:fa:9e:9c:c4:99:04:e2:a7:b3: ac:2a:38:53:a9:44:26:09:88:cc:37:2b:14:b5:87:83:cf:fe: 2f:aa:36:9d:8b:33:72:eb:1c:9a:1b:df:4f:7c:f9:ed:77:9f: 34:72:25:f4:eb:95:25:bc:23:14:f1:5e:64:06:a3:a8:ce:20: 48:8f:2f:e6:03:b5:0d:1b:9f:3e:c8:de:fd:94:4c:50:f4:7a: b0:cd:05:c5:31:40:f1:12:db:59:0f:6a:08:2f:fe:3d:57:67: 48:3c:71:94:a6:87:da:a4:57:df:59:27:fc:a0:16:e2:29:08: 25:a4:22:d7:af:34:ed:9a:de:06:78:50:c2:e1:e0:9b:69:81: 0e:67:bd:85:a3:e0:a0:32:75:93:21:f6:43:0b:ce:32:f3:cd: 0d:b0:50:34:d9:cb:c7:35:75:f6:d1:6c:8a:24:1b:aa:bf:2a: 2f:06:91:a2:cb:c7:9f:e9:6a:73:91:5e:ab:92:13:be:a6:81: 14:09:97:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCMjIxMTAvBgNVBAUTKDA5NTg4NjE0Mzg3MjEwRThCNjlBRDNDMzFBNzM2MTlE NzU1RUQwQzAwHhcNMjYwNDA1MDMyMjA5WhcNMjYwNDEyMDMyMjA5WjAYMRYwFAYD VQQDEw02OWQxZDU2Mi1jYTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDXMV+2gP0Um1CPgZV4aoLFck4VuJKTfvCbTqloPHogAQlTBrGDHLvTFSwZP 1Akatr1WOwCESCqeT0J3XEkX3Sth98Zxn+21b2sP5dW2hKWtf9Rg3147mE/6wcMM ttd2dMAqlBtadJ6iUnkgiCUes/kZ8RtnHZn9KdNqbiQdspDL+RmtC60ig7vgCIiv ObjV1P734awIecvZvwo6BuwtzrExwKrC+y9D12tLTTQRSN+qfwDo9KB1IxWK97FD /hAvG3baRc/03dlux+A+wrNbgDqraLSPErfzsGGbqXTuy0KKJHxd8VqOUKo2yG+L XUmrutk67GN8JL4LnV2lXRpHvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAk+Y8Bp HTXcVBaEYFrv5CTckT9SMB8GA1UdIwQYMBaAFAlYhhQ4chDotprTwxpzYZ11XtDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0IyMi82NjAyRTk3ODhD RDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVPaTJtdFBER25OaG5YVmUw TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0IyMi82NjAyRTk3ODhDRDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVP aTJtdFBER25OaG5YVmUwTUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmbYi1OT3Mn0fotywc3O8bQtl0VbrbUmnd4qLWJzLzgfoY+btNYNx9uaj7SAu /0OTuJJF+s8JbQDgzyfcu5tf+p6cxJkE4qezrCo4U6lEJgmIzDcrFLWHg8/+L6o2 nYszcuscmhvfT3z57XefNHIl9OuVJbwjFPFeZAajqM4gSI8v5gO1DRufPsje/ZRM UPR6sM0FxTFA8RLbWQ9qCC/+PVdnSDxxlKaH2qRX31kn/KAW4ikIJaQi16807Zre BnhQwuHgm2mBDme9haPgoDJ1kyH2QwvOMvPNDbBQNNnLxzV19tFsiiQbqr8qLwaR osvHn+lqc5Feq5ITvqaBFAmX7w== -----END CERTIFICATE-----Generated at Mon Apr 6 09:53:48 2026 by rpki-client