$ rpki-client -vvf rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft File: 433E2CR2A-hIwAZsRFuc2NpzUNY.mft (raw, json) Hash identifier: 03PRRhyXhvg0Mx4hap+G7dtk3or9g/5HngPAgtHA/V0= Subject key identifier: 35:3C:30:96:16:A8:7B:8E:9D:D3:91:E6:C1:F2:9B:B0:BB:D5:10:EE Authority key identifier: E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6 Certificate issuer: /CN=A916C8F2/serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft Manifest number: 94 Signing time: Sun 05 Apr 2026 06:50:56 +0000 Manifest this update: Sun 05 Apr 2026 06:50:56 +0000 Manifest next update: Sun 12 Apr 2026 06:50:56 +0000 Files and hashes: 1: 433E2CR2A-hIwAZsRFuc2NpzUNY.crl (hash: xgC9E29Y1IRI0si4Wq+kJEfa35OjKaJZyDqbufsxgEU=) 2: 730C503A56C611F096620043C4F9AE02.roa (hash: 0O+T5p2u9RjCzYCInOpadN0gyJxBbnecFtZNvwYOPBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C8F2, serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6 Validity Not Before: Apr 5 06:50:56 2026 GMT Not After : Apr 12 06:50:56 2026 GMT Subject: CN=69d20650-b90d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a0:26:82:df:c1:8d:6c:86:99:03:29:89:ae: 57:4a:9e:5a:09:a6:33:bd:ab:0d:23:2e:6e:83:68: bd:dd:0b:56:dd:32:66:5c:46:7c:32:6d:78:51:1e: 66:3a:b7:4f:2b:53:4e:6b:42:90:2f:68:5f:92:62: 08:cb:ee:73:fc:eb:6a:7b:9d:41:9e:c6:68:e7:85: 18:35:08:41:d7:de:3d:ef:4f:dd:58:c3:96:7e:19: 6a:56:80:a7:43:69:eb:23:da:71:d6:41:eb:eb:c0: bb:66:e0:89:d8:95:82:a6:9a:ac:ab:ae:6a:64:68: 25:e1:4b:e1:d2:93:a1:95:87:49:e2:22:e2:d9:90: 6b:30:f0:31:9b:6e:94:c9:64:3e:16:e5:a2:c7:3d: 58:14:e1:f7:0f:33:02:bb:fa:eb:82:e9:6c:c4:9f: d6:6c:64:e2:17:de:e9:c9:6a:57:0d:2b:96:c1:1b: 90:a1:4e:a2:ec:ae:92:51:10:49:be:77:c9:8f:16: 94:ca:b1:20:9f:b3:d2:00:40:e7:61:e1:37:c6:c3: aa:d2:33:7b:09:6c:6e:57:29:51:21:26:d0:f0:1d: 2a:96:d5:7a:11:ec:4d:ff:35:29:8e:01:87:36:31: 54:cb:a4:bf:ca:2d:9d:26:4d:92:92:d9:9a:c2:4c: 27:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3C:30:96:16:A8:7B:8E:9D:D3:91:E6:C1:F2:9B:B0:BB:D5:10:EE X509v3 Authority Key Identifier: keyid:E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:06:84:da:bf:90:64:af:79:0d:f3:f7:39:fa:dd:4e:ba:9d: 62:48:8e:ea:3b:a4:1a:d9:6f:eb:71:c4:5e:63:97:f8:3b:69: c5:a9:0b:6c:13:ac:55:fd:44:e5:75:6b:a5:14:bb:36:6d:80: 0d:7d:da:02:50:d7:3e:34:25:44:be:e2:1a:33:d3:69:1e:5c: d6:db:bb:6e:3a:10:5b:84:0c:3d:c5:e6:e8:53:5a:d6:64:db: 71:66:66:8a:db:18:61:bf:18:72:f1:3d:c9:0a:f7:f7:9f:c0: f8:4b:a8:ff:2a:69:49:06:4d:1a:ad:71:29:f9:05:72:b8:9e: cc:2e:eb:4b:5c:0e:44:a0:87:92:a5:4b:d5:b4:37:87:0a:8c: 72:64:78:d9:60:e2:02:3a:b2:ea:6e:19:e4:bb:07:20:62:2f: 25:e2:0f:4f:01:a5:72:eb:e6:b7:5c:5d:f5:df:1c:2e:89:f7: 28:91:88:d5:d5:83:76:79:67:1f:7b:6a:87:e1:4b:6a:69:72: cc:1f:6c:39:a2:4c:4e:d0:1d:96:16:43:bc:e7:dd:c4:f9:d8: 06:9f:74:81:4b:32:a7:5d:ca:fc:d2:48:5c:34:29:11:ae:f4: ac:a6:7b:8d:9b:63:a7:18:c1:1f:53:f3:ef:4b:93:01:36:fb: 07:15:5c:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4RjIxMTAvBgNVBAUTKEUzN0RDNEQ4MjQ3NjAzRTg0OEMwMDY2QzQ0NUI5Q0Q4 REE3MzUwRDYwHhcNMjYwNDA1MDY1MDU2WhcNMjYwNDEyMDY1MDU2WjAYMRYwFAYD VQQDEw02OWQyMDY1MC1iOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaAmgt/BjWyGmQMpia5XSp5aCaYzvasNIy5ug2i93QtW3TJmXEZ8Mm14UR5m OrdPK1NOa0KQL2hfkmIIy+5z/Otqe51BnsZo54UYNQhB194970/dWMOWfhlqVoCn Q2nrI9px1kHr68C7ZuCJ2JWCppqsq65qZGgl4Uvh0pOhlYdJ4iLi2ZBrMPAxm26U yWQ+FuWixz1YFOH3DzMCu/rrgulsxJ/WbGTiF97pyWpXDSuWwRuQoU6i7K6SURBJ vnfJjxaUyrEgn7PSAEDnYeE3xsOq0jN7CWxuVylRISbQ8B0qltV6EexN/zUpjgGH NjFUy6S/yi2dJk2SktmawkwnqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDU8MJYW qHuOndOR5sHym7C71RDuMB8GA1UdIwQYMBaAFON9xNgkdgPoSMAGbERbnNjac1DW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzhGMi8yODdERTczNjU2 QzYxMUYwOTJCREEwNDJDNEY5QUUwMi80MzNFMkNSMkEtaEl3QVpzUkZ1YzJOcHpV TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQzM0UyQ1IyQS1oSXdBWnNSRnVjMk5welVOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzhGMi8yODdERTczNjU2QzYxMUYwOTJCREEwNDJDNEY5QUUwMi80MzNFMkNSMkEt aEl3QVpzUkZ1YzJOcHpVTlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHAaE2r+QZK95DfP3OfrdTrqdYkiO6jukGtlv63HEXmOX+DtpxakLbBOsVf1E 5XVrpRS7Nm2ADX3aAlDXPjQlRL7iGjPTaR5c1tu7bjoQW4QMPcXm6FNa1mTbcWZm itsYYb8YcvE9yQr395/A+Euo/yppSQZNGq1xKfkFcriezC7rS1wORKCHkqVL1bQ3 hwqMcmR42WDiAjqy6m4Z5LsHIGIvJeIPTwGlcuvmt1xd9d8cLon3KJGI1dWDdnln H3tqh+FLamlyzB9sOaJMTtAdlhZDvOfdxPnYBp90gUsyp13K/NJIXDQpEa70rKZ7 jZtjpxjBH1Pz70uTATb7BxVcTQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:28:56 2026 by rpki-client