$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: CMySqiL/KcanDo465nCrm5e2WhP9/oiN0KK/LIq7BMM= Subject key identifier: 3B:BA:8B:B2:10:B2:9A:F8:4B:01:14:DA:59:1F:E7:76:0E:53:3A:11 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 0468 Signing time: Tue 21 Apr 2026 00:04:16 +0000 Manifest this update: Tue 21 Apr 2026 00:04:15 +0000 Manifest next update: Tue 28 Apr 2026 00:04:15 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: 7hF2crmDs9CDyO78RJX2tFm+ZHpZPtNAjfK4sGNTChY=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: HavGxilFCXPwJZ5ysPf3ohVQv79l6ZGEb7A58aULo/M=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: OS+MMRRjQluFNuI+98G/Gv/Ff4t99hp6Izi7LUhaJJQ=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: JVO8JZCfYqp3N9h+hRdEkwlagsjOuD7MM+G3/8q05pI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Apr 21 00:04:15 2026 GMT Not After : Apr 28 00:04:15 2026 GMT Subject: CN=69e6bf00-9fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:e7:7a:2c:97:97:f0:52:ba:0a:9a:d7:4e:4c: bc:df:6a:01:be:fb:9a:7f:41:50:d2:82:55:c2:3f: ad:ce:0a:a7:81:98:f5:78:15:f6:28:37:ae:79:67: 99:0a:f5:6f:70:35:ce:ff:43:17:ff:5c:79:dd:23: 6f:cd:0b:1f:32:68:68:ba:34:27:48:bf:4a:b5:c1: 06:08:ed:0e:8c:fc:aa:a4:cd:58:09:8b:59:c7:3e: 42:d3:fe:ea:20:d8:86:15:e5:d9:2e:7e:24:a0:6c: 14:44:f7:28:64:36:ed:54:d0:ea:4c:ed:87:d9:7b: 25:33:36:d0:36:fc:4e:ba:e3:80:ac:9e:47:e7:03: f7:af:c6:c9:1c:aa:80:9c:1b:37:93:7f:0d:c7:2f: 95:0a:7c:0d:95:ad:3b:f2:ac:8d:11:84:27:21:fe: 75:9f:ef:74:43:45:8b:e3:cc:e8:9a:f6:fa:88:d8: 2a:3e:ab:c8:49:2e:a9:6b:e7:79:08:88:f3:fc:1b: 86:22:88:b5:a7:ed:24:94:88:fa:1a:14:68:63:63: df:fe:ac:59:a9:50:04:5f:27:24:66:00:1d:6c:cc: 55:dc:03:b8:b0:6b:1a:fc:3e:15:d9:71:e3:1e:ba: 2d:a3:c9:86:cf:eb:7f:35:19:d0:db:b6:e1:ce:73: ed:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BA:8B:B2:10:B2:9A:F8:4B:01:14:DA:59:1F:E7:76:0E:53:3A:11 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:a8:20:68:2a:63:83:c5:0e:11:75:59:1b:eb:68:01:f6:22: 0c:a9:cc:dc:f3:98:e8:e7:df:ac:6c:d0:d9:70:2f:c7:df:0e: 13:d9:62:1b:94:9b:cb:68:33:f3:be:2a:3f:56:a3:71:1c:74: 44:7e:86:3e:62:ac:fc:c6:f2:f6:c7:f5:8d:f4:8e:9a:92:24: f2:41:02:92:be:d3:d5:e7:9a:d3:10:3c:b6:c1:2f:34:36:b3: 8a:c4:de:da:5a:c9:ff:5f:62:fd:bf:83:c5:ad:c1:9d:6f:51: 48:5e:46:d6:36:8c:98:5c:44:c1:89:60:74:d2:39:f2:a3:f0: e4:0a:6f:4e:19:fc:a6:51:d2:3e:6d:18:d2:45:0c:42:5a:57: d9:d4:e6:53:ac:e9:19:81:71:4e:ee:41:45:0b:dc:fc:24:7c: 99:df:ad:39:0e:21:8e:cc:2d:98:cc:3f:be:81:50:60:97:a6: 54:3a:e1:ef:ec:d1:f3:52:67:5f:58:83:94:d1:16:84:6f:1e: 0f:20:b4:e3:8b:21:ae:26:e3:89:04:2c:24:00:da:49:e0:24: e2:d9:9f:48:92:87:db:bf:e3:f0:e5:88:1f:41:52:ca:3f:db: a6:52:79:f5:d0:43:8a:2c:83:ca:bd:6a:64:13:d5:30:d3:b7: bc:4b:7f:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjYwNDIxMDAwNDE1WhcNMjYwNDI4MDAwNDE1WjAYMRYwFAYD VQQDEw02OWU2YmYwMC05ZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjOd6LJeX8FK6CprXTky832oBvvuaf0FQ0oJVwj+tzgqngZj1eBX2KDeueWeZ CvVvcDXO/0MX/1x53SNvzQsfMmhoujQnSL9KtcEGCO0OjPyqpM1YCYtZxz5C0/7q INiGFeXZLn4koGwURPcoZDbtVNDqTO2H2XslMzbQNvxOuuOArJ5H5wP3r8bJHKqA nBs3k38Nxy+VCnwNla078qyNEYQnIf51n+90Q0WL48zomvb6iNgqPqvISS6pa+d5 CIjz/BuGIoi1p+0klIj6GhRoY2Pf/qxZqVAEXyckZgAdbMxV3AO4sGsa/D4V2XHj Hroto8mGz+t/NRnQ27bhznPtyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDu6i7IQ spr4SwEU2lkf53YOUzoRMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb6ggaCpjg8UOEXVZG+toAfYiDKnM3POY6OffrGzQ2XAvx98OE9liG5Sby2gz 874qP1ajcRx0RH6GPmKs/Mby9sf1jfSOmpIk8kECkr7T1eea0xA8tsEvNDazisTe 2lrJ/19i/b+Dxa3BnW9RSF5G1jaMmFxEwYlgdNI58qPw5ApvThn8plHSPm0Y0kUM QlpX2dTmU6zpGYFxTu5BRQvc/CR8md+tOQ4hjswtmMw/voFQYJemVDrh7+zR81Jn X1iDlNEWhG8eDyC044shribjiQQsJADaSeAk4tmfSJKH27/j8OWIH0FSyj/bplJ5 9dBDiiyDyr1qZBPVMNO3vEt/qw== -----END CERTIFICATE-----Generated at Wed Apr 22 01:41:56 2026 by rpki-client