$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft File: h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft (raw, json) Hash identifier: Utl00yAI2HePZOgknLk458OHmkmbwRK+cFcjA2fc5+Y= Subject key identifier: 59:50:E9:AF:47:44:43:8A:93:5D:E5:D0:E3:57:8D:05:DB:7D:83:43 Authority key identifier: 87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C Certificate issuer: /CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Certificate serial: 12E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft Manifest number: 12C3 Signing time: Sat 18 Apr 2026 16:58:57 +0000 Manifest this update: Sat 18 Apr 2026 16:58:56 +0000 Manifest next update: Sat 25 Apr 2026 16:58:56 +0000 Files and hashes: 1: h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl (hash: zFLjUoLd3SCMWxetJJwsR8Go8AIT9G1AOMp/2IsLY14=) 2: 3BA64F0AF22611F094D5D2AE526F56BC.roa (hash: gjQ8EjTh4YTn2TSGcxeqBGmNj2WHRb5bDlBbyu/0FTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4839 (0x12e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF, serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Validity Not Before: Apr 18 16:58:56 2026 GMT Not After : Apr 25 16:58:56 2026 GMT Subject: CN=69e3b851-56bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:17:be:a1:0d:99:b4:de:82:ef:77:8d:e3:5a: ff:5e:a3:59:7a:c5:4d:d9:15:e8:33:1d:ff:5b:e3: ba:ec:2d:3b:e9:d8:67:8e:56:f6:02:9a:41:58:38: d5:4e:b1:96:93:00:97:33:51:b1:1d:87:e2:20:f4: 25:07:70:e9:5a:8a:35:e2:a0:d1:e2:a3:a8:35:60: 84:51:b0:da:c5:24:54:d9:9d:8b:ed:fa:38:a1:03: 8d:fc:89:7d:6d:cd:f3:30:f9:55:e6:58:e9:6f:c2: eb:c3:42:ed:b6:6c:29:79:11:28:9e:f3:c7:14:1a: e2:0a:7e:e9:1a:11:a0:9b:ab:1f:a5:af:18:3a:29: b7:e8:01:9b:6e:18:5b:20:96:68:4f:a1:78:81:d1: 10:69:3b:b9:5b:49:e4:90:5e:7a:bf:4d:e2:9c:76: 6f:ca:c2:af:f0:1e:5f:ef:b7:11:e0:7c:32:66:ea: 85:43:72:aa:24:9e:51:ac:d1:ed:22:d7:b9:1c:6b: 68:ae:10:83:69:f9:22:41:1b:66:b7:48:d8:16:aa: c1:0b:c6:b1:70:16:5c:3d:a6:eb:06:1b:cf:30:e9: 5d:f1:82:bd:d6:b3:e4:68:38:c5:41:47:ec:94:43: 55:58:d7:a8:f5:be:d4:dc:2d:2c:dc:bb:09:10:88: 43:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:50:E9:AF:47:44:43:8A:93:5D:E5:D0:E3:57:8D:05:DB:7D:83:43 X509v3 Authority Key Identifier: keyid:87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e0:53:4c:21:d9:dc:ed:37:d4:91:83:8f:79:80:b0:32:5f: ef:16:73:76:24:60:8c:ca:b8:10:53:7a:c9:aa:ab:63:d7:5b: 0c:fc:0c:ac:77:7d:44:12:6e:ff:f6:c2:58:0e:03:2d:a8:28: 3f:e6:7c:c8:62:17:f9:c6:01:a8:07:24:65:11:c0:ef:00:b5: e4:58:7e:ac:2a:ab:fb:b0:9e:8f:e4:82:14:81:f5:7b:07:18: 87:19:61:4a:fb:af:f7:0f:4b:78:75:d3:bf:5d:85:8c:f4:8b: 60:26:0e:a0:47:64:70:46:ec:08:85:df:cd:6e:b3:ad:38:10: 48:27:f6:c3:bc:4a:ca:d6:87:af:5a:9d:a6:58:55:9e:ff:cf: 3b:71:53:f0:d9:56:da:f2:f4:84:9a:9b:7f:0a:ac:5a:97:8a: e1:b9:0a:f3:d0:4d:8a:8c:e4:fd:3f:1d:dd:45:95:3f:40:c9: 5f:86:f4:41:a3:5a:be:c4:9c:e9:5b:8d:6b:21:02:23:68:a5: 84:3a:4f:a2:c3:c3:51:3d:b2:42:59:85:6a:fb:cd:f0:7a:c3: 76:da:3c:66:69:5a:c1:04:4d:c6:12:36:ce:7c:3e:bc:e0:12: 98:6a:71:a9:78:ed:c2:6f:d2:ca:84:fa:70:c0:2d:23:6e:cb: 2f:91:b0:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDg3OTU0QzAyMzFDQUFDQjJCRTJERkRCNTY3Qzc0QUY1 RUNCNzVCMEMwHhcNMjYwNDE4MTY1ODU2WhcNMjYwNDI1MTY1ODU2WjAYMRYwFAYD VQQDEw02OWUzYjg1MS01NmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBe+oQ2ZtN6C73eN41r/XqNZesVN2RXoMx3/W+O67C076dhnjlb2AppBWDjV TrGWkwCXM1GxHYfiIPQlB3DpWoo14qDR4qOoNWCEUbDaxSRU2Z2L7fo4oQON/Il9 bc3zMPlV5ljpb8Lrw0LttmwpeREonvPHFBriCn7pGhGgm6sfpa8YOim36AGbbhhb IJZoT6F4gdEQaTu5W0nkkF56v03inHZvysKv8B5f77cR4HwyZuqFQ3KqJJ5RrNHt Ite5HGtorhCDafkiQRtmt0jYFqrBC8axcBZcPabrBhvPMOld8YK91rPkaDjFQUfs lENVWNeo9b7U3C0s3LsJEIhDAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFlQ6a9H REOKk13l0ONXjQXbfYNDMB8GA1UdIwQYMBaAFIeVTAIxyqyyvi39tWfHSvXst1sM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9FQ0UwRkJFNkUz NkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JMSy1MZjIxWjhkSzlleTNX d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2g1Vk1BakhLckxLLUxmMjFaOGRLOWV5M1d3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9FQ0UwRkJFNkUzNkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JM Sy1MZjIxWjhkSzlleTNXd3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOuBTTCHZ3O031JGDj3mAsDJf7xZzdiRgjMq4EFN6yaqrY9dbDPwMrHd9RBJu //bCWA4DLagoP+Z8yGIX+cYBqAckZRHA7wC15Fh+rCqr+7Cej+SCFIH1ewcYhxlh Svuv9w9LeHXTv12FjPSLYCYOoEdkcEbsCIXfzW6zrTgQSCf2w7xKytaHr1qdplhV nv/PO3FT8NlW2vL0hJqbfwqsWpeK4bkK89BNiozk/T8d3UWVP0DJX4b0QaNavsSc 6VuNayECI2ilhDpPosPDUT2yQlmFavvN8HrDdto8ZmlawQRNxhI2znw+vOASmGpx qXjtwm/SyoT6cMAtI27LL5GwNQ== -----END CERTIFICATE-----Generated at Sat Apr 18 21:07:34 2026 by rpki-client