$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: PjPkeQ07eUWkTtQxOIeakAcWqcaIUmAubCLejaoLyRk= Subject key identifier: 62:82:6C:67:81:11:74:EA:3B:7E:2E:88:0C:43:0C:6E:38:51:53:98 Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 0832 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 082A Signing time: Sat 04 Apr 2026 20:45:58 +0000 Manifest this update: Sat 04 Apr 2026 20:45:58 +0000 Manifest next update: Sat 11 Apr 2026 20:45:58 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: OmOrxBqJP9cTc6JharR0wnGk1AWb3/D9j8O1C+8dXL4=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: Ca1sU4x07vR9ic014MfkvHriHHtFXo0Z6p1sbkhlP4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Apr 4 20:45:58 2026 GMT Not After : Apr 11 20:45:58 2026 GMT Subject: CN=69d17886-6c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:30:fe:3a:13:99:77:b5:56:f0:13:3b:33:0e: 90:3a:59:59:b8:b0:5b:90:89:d0:06:aa:fe:d5:de: c4:49:01:52:c6:b4:33:43:2b:7b:b0:87:96:03:ec: 5f:e9:01:ac:84:77:d1:aa:38:82:cf:08:4e:83:f2: 67:38:62:32:f3:54:e6:13:dd:5c:25:b9:19:c6:78: d4:65:03:e8:9c:9b:63:11:ac:b3:9c:8b:30:6c:f5: 66:25:2c:dc:ed:0b:fc:3a:ef:06:a6:52:23:07:4c: 4e:53:29:8c:d8:30:77:bc:be:a7:76:e4:8d:f8:35: bd:d9:f2:f5:43:11:d3:17:fb:3e:ef:3c:1c:7a:d8: a2:cc:d9:f9:a6:8d:5f:e4:d8:8b:a5:76:f4:6f:27: 5e:6a:ba:98:ce:cd:86:f7:5e:59:c9:79:a4:ba:dd: b7:64:87:4d:b8:4a:31:42:2f:a2:59:d1:76:44:13: e0:00:2e:5b:b9:76:27:0c:63:b2:f1:9e:4d:c0:9c: 41:17:5e:53:75:e0:81:e1:fc:a6:5c:34:62:85:1c: 65:0c:7d:fa:18:92:fa:9a:ca:65:88:8e:3b:e2:56: 20:a5:1c:3b:a3:94:e4:5a:0a:20:9d:8d:27:31:ea: e7:51:92:9d:b7:13:c3:3d:19:a6:9e:17:fe:16:65: 43:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:82:6C:67:81:11:74:EA:3B:7E:2E:88:0C:43:0C:6E:38:51:53:98 X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:65:41:aa:48:20:cb:a5:85:19:57:90:59:25:d9:f5:c9:70: 12:da:6d:61:c4:e2:5a:46:8f:5f:b3:52:b9:60:99:3e:24:21: a8:01:d5:9e:50:97:cc:71:70:af:b2:fe:d7:f0:23:6a:e6:54: 89:a1:76:d2:77:d8:b6:d2:87:dc:fa:30:b8:d3:26:fe:dc:f1: 46:2a:db:6f:9d:28:ce:f4:68:e2:d5:69:cb:0b:9a:9c:5d:5d: 26:4a:a1:58:fd:7b:73:75:49:4c:6d:7e:3c:ae:4f:83:79:21: c6:d8:9d:d7:3f:60:d0:2c:ce:77:aa:3e:72:2c:3f:16:7c:1d: ea:56:32:dd:46:bf:7e:96:1d:19:e7:ba:e4:c0:25:66:49:56: 00:72:ba:62:8a:b5:e6:05:e9:86:43:06:42:13:72:41:fc:55: 01:87:a9:b8:4e:1f:1a:af:d6:b2:00:aa:2c:5f:7e:1f:02:dc: 61:09:ba:44:64:0b:c2:a9:4b:a4:15:86:5c:2c:aa:b0:44:3b: 5f:10:22:b1:e6:1f:ba:c1:22:e9:44:a1:4f:4c:2e:ae:83:36: dd:56:dd:fc:87:8c:b8:23:9f:22:f6:08:44:17:ad:dc:3a:de: 59:a2:bc:4a:14:b3:2c:e9:37:41:3c:e4:79:5d:7d:95:87:85: 61:99:d8:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjYwNDA0MjA0NTU4WhcNMjYwNDExMjA0NTU4WjAYMRYwFAYD VQQDEw02OWQxNzg4Ni02YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDD+OhOZd7VW8BM7Mw6QOllZuLBbkInQBqr+1d7ESQFSxrQzQyt7sIeWA+xf 6QGshHfRqjiCzwhOg/JnOGIy81TmE91cJbkZxnjUZQPonJtjEayznIswbPVmJSzc 7Qv8Ou8GplIjB0xOUymM2DB3vL6nduSN+DW92fL1QxHTF/s+7zwcetiizNn5po1f 5NiLpXb0bydearqYzs2G915ZyXmkut23ZIdNuEoxQi+iWdF2RBPgAC5buXYnDGOy 8Z5NwJxBF15TdeCB4fymXDRihRxlDH36GJL6mspliI474lYgpRw7o5TkWgognY0n MernUZKdtxPDPRmmnhf+FmVDewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGKCbGeB EXTqO34uiAxDDG44UVOYMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACWVBqkggy6WFGVeQWSXZ9clwEtptYcTiWkaPX7NSuWCZPiQhqAHVnlCXzHFw r7L+1/AjauZUiaF20nfYttKH3PowuNMm/tzxRirbb50ozvRo4tVpywuanF1dJkqh WP17c3VJTG1+PK5Pg3khxtid1z9g0CzOd6o+ciw/Fnwd6lYy3Ua/fpYdGee65MAl ZklWAHK6Yoq15gXphkMGQhNyQfxVAYepuE4fGq/WsgCqLF9+HwLcYQm6RGQLwqlL pBWGXCyqsEQ7XxAiseYfusEi6UShT0wuroM23Vbd/IeMuCOfIvYIRBet3DreWaK8 ShSzLOk3QTzkeV19lYeFYZnYQw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:22:57 2026 by rpki-client