$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json) Hash identifier: aLfGKIchsRw8sxB1xwckXG+z0d4C4e2fuFsTofqjxNw= Subject key identifier: 3B:63:04:DE:FD:DA:12:7D:BB:9F:25:96:D0:A8:F2:37:65:33:54:0B Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Certificate serial: 10C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft Manifest number: 10BB Signing time: Sun 26 Apr 2026 17:15:06 +0000 Manifest this update: Sun 26 Apr 2026 17:15:06 +0000 Manifest next update: Sun 03 May 2026 17:15:06 +0000 Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: vpCJZKDTp6Ead7Q+8NjuSq8fnyi6S8ouE/8RwyBKCU8=) 2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: geAH95kNtBUqAghRAhDpu6+bO8JNHhHtwzkMrvfTHUI=) 3: 608836D046B111E98B793856C4F9AE02.roa (hash: j/7cfI/0+SrAI6zJ8aTltm4c8iKanonzyycpVr5NLNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 17:15:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4297 (0x10c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Validity Not Before: Apr 26 17:15:06 2026 GMT Not After : May 3 17:15:06 2026 GMT Subject: CN=69ee481a-fe37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:c3:fe:0d:b1:f3:c9:90:d4:7a:c2:0d:df:a9: 00:eb:32:fd:a3:5c:1f:9f:6b:64:5c:d6:4a:87:e2: 1c:db:b9:9f:63:e0:6c:0d:ab:60:be:81:bd:96:3d: f2:4d:e2:b8:8b:83:ea:eb:b8:ea:7a:7d:d5:48:a3: 34:63:34:2f:73:85:80:88:5b:c1:4c:5c:f2:ae:c2: 69:85:dc:1c:73:e3:e5:71:50:80:5b:78:44:f4:9e: e5:49:a0:a8:0b:74:23:f3:7e:f2:d4:b6:90:e0:19: 73:c0:e1:48:85:6b:bd:80:a8:4a:d0:43:4b:28:c9: b6:20:75:b4:29:b4:56:0b:3f:b6:17:a9:16:b1:de: ea:38:15:bd:7e:9c:19:47:da:59:b6:d2:5a:57:7e: f2:30:a5:86:34:41:33:bd:5b:60:2c:ff:fa:bc:d6: 2f:a7:6f:42:21:35:6c:48:a0:23:78:79:62:7d:ef: e5:09:80:3d:32:79:85:ee:57:5f:ac:36:d3:4a:27: 95:a2:cb:7a:6e:0e:46:4a:3d:0f:d4:76:66:d3:91: 8e:82:47:1c:71:b4:de:5b:39:48:4c:c2:6a:ff:3b: 4c:3b:26:f3:9a:63:c1:d7:4a:48:e1:21:1c:87:d5: 19:e7:86:b3:b3:9a:66:05:a1:cb:c8:20:56:67:cc: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:63:04:DE:FD:DA:12:7D:BB:9F:25:96:D0:A8:F2:37:65:33:54:0B X509v3 Authority Key Identifier: keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ae:0f:c4:22:f1:ef:0a:63:cf:73:c9:b2:ae:b8:79:47:28: 8f:f8:85:5b:9c:c8:49:14:2b:b9:3a:27:43:6c:2c:89:7e:87: 76:ff:f0:08:af:c0:67:c3:2b:95:7d:b1:33:fc:be:d2:f4:55: c8:33:8a:f2:33:21:a8:9d:c7:a5:eb:46:74:c0:21:21:54:42: 5d:88:9b:5f:60:d9:db:93:32:0d:6a:28:39:14:da:fa:10:ea: 70:b2:fe:60:67:65:fe:6d:de:7b:70:f9:09:aa:02:cb:09:4a: ec:54:92:54:9b:cb:51:ff:40:7c:a7:1e:c9:8f:4b:cb:1a:84: 7e:bd:c8:76:b4:60:e8:d9:80:e0:18:6e:01:7a:b3:01:26:c7: ff:2e:2e:17:57:63:ce:07:34:01:e9:f6:89:7e:b6:6a:63:4b: 8b:9a:c9:34:a1:3a:f5:90:67:20:6f:73:98:96:c9:94:bb:89: de:33:ca:0e:26:67:58:a9:09:cb:c0:0e:56:4d:66:c9:d3:a5: 4d:f0:ec:b9:3e:b7:5a:12:31:32:f6:b4:bc:c8:b8:67:4f:c4: 69:03:4e:c5:ec:36:aa:1c:43:23:13:34:99:ce:78:b9:d1:51: 0c:85:9f:61:00:15:e3:e0:65:37:0f:0a:78:1a:3f:c9:c0:1a: 44:87:e8:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKDIyM0JFMTk4OTJFNkU2Q0I0MDZFNUZBOTk1NkREQkNF QTk1Q0JCNDYwHhcNMjYwNDI2MTcxNTA2WhcNMjYwNTAzMTcxNTA2WjAYMRYwFAYD VQQDEw02OWVlNDgxYS1mZTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhcP+DbHzyZDUesIN36kA6zL9o1wfn2tkXNZKh+Ic27mfY+BsDatgvoG9lj3y TeK4i4Pq67jqen3VSKM0YzQvc4WAiFvBTFzyrsJphdwcc+PlcVCAW3hE9J7lSaCo C3Qj837y1LaQ4BlzwOFIhWu9gKhK0ENLKMm2IHW0KbRWCz+2F6kWsd7qOBW9fpwZ R9pZttJaV37yMKWGNEEzvVtgLP/6vNYvp29CITVsSKAjeHlife/lCYA9MnmF7ldf rDbTSieVost6bg5GSj0P1HZm05GOgkcccbTeWzlITMJq/ztMOybzmmPB10pI4SEc h9UZ54azs5pmBaHLyCBWZ8zvjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDtjBN79 2hJ9u58lltCo8jdlM1QLMB8GA1UdIwQYMBaAFCI74ZiS5ubLQG5fqZVt286pXLtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9CNkE5RjI2MDQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVzdEFibC1wbFczYnpxbGN1 MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lqdmhtSkxtNXN0QWJsLXBsVzNienFsY3UwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTZCNy9CNkE5RjI2MDQ2QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVz dEFibC1wbFczYnpxbGN1MFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHq4PxCLx7wpjz3PJsq64eUcoj/iFW5zISRQruTonQ2wsiX6Hdv/wCK/AZ8Mr lX2xM/y+0vRVyDOK8jMhqJ3HpetGdMAhIVRCXYibX2DZ25MyDWooORTa+hDqcLL+ YGdl/m3ee3D5CaoCywlK7FSSVJvLUf9AfKceyY9LyxqEfr3IdrRg6NmA4BhuAXqz ASbH/y4uF1djzgc0Aen2iX62amNLi5rJNKE69ZBnIG9zmJbJlLuJ3jPKDiZnWKkJ y8AOVk1mydOlTfDsuT63WhIxMva0vMi4Z0/EaQNOxew2qhxDIxM0mc54udFRDIWf YQAV4+BlNw8KeBo/ycAaRIfoQA== -----END CERTIFICATE-----Generated at Tue Apr 28 05:11:19 2026 by rpki-client