$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: RDT2D4GvYtnJ7D3YTt5X3YAAAAk7awbeSXiyrTSQW14= Subject key identifier: 85:6B:DD:D3:89:E8:6E:8A:3E:B9:75:83:92:EA:CF:16:D3:84:F6:4B Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 085A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 084C Signing time: Sat 04 Apr 2026 20:38:51 +0000 Manifest this update: Sat 04 Apr 2026 20:38:51 +0000 Manifest next update: Sat 11 Apr 2026 20:38:51 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: w4abFABWHyrUGcZSkwcjpT64cm0K8QmmiD2N9iNI770=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: rCKXyCh+EMd4ulOOsHCpQ92EvtiU4kyrN3RmnguBNlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2138 (0x85a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Apr 4 20:38:51 2026 GMT Not After : Apr 11 20:38:51 2026 GMT Subject: CN=69d176db-20db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a0:93:df:b5:51:c3:67:74:4a:80:0b:b9:52: 79:4f:c9:46:a2:ad:03:05:7e:cb:61:76:c4:d6:72: 22:45:37:e2:48:b8:87:c0:8d:6b:a4:78:45:15:28: 61:11:61:91:37:fb:2c:3e:0f:e4:11:d1:3f:d6:e6: 0f:61:2b:44:2f:9c:18:18:20:79:41:50:9f:14:07: f0:da:8a:43:b0:56:d3:5f:68:ad:6c:e9:79:84:fc: 0a:3a:d3:49:e8:5e:14:14:54:f8:ca:70:99:45:a3: 92:ce:d0:87:cd:ee:6b:6d:f6:54:75:7d:03:79:b2: c4:5c:7b:18:af:00:22:97:5f:5a:9a:b7:c1:34:b2: e2:9f:7d:9f:47:f6:5e:3d:a5:3f:ec:64:e5:cb:98: 12:98:25:7a:08:24:81:f6:65:ff:14:dd:42:52:38: 29:ce:a8:de:e7:2d:37:5b:5e:65:ee:d5:d2:7c:1d: 24:cf:80:42:96:a8:12:33:f0:6f:d7:8a:21:d3:a4: 6f:86:41:c6:55:d4:0d:c0:83:37:d5:c2:33:29:29: 25:c9:8b:af:40:a6:67:00:ce:c2:cf:f7:30:ab:11: 11:55:31:15:9b:a6:74:a7:86:42:8c:78:ff:d3:1a: 68:03:c5:0f:eb:30:b8:b4:12:a8:13:f9:5e:f2:65: c7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:6B:DD:D3:89:E8:6E:8A:3E:B9:75:83:92:EA:CF:16:D3:84:F6:4B X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:0c:7a:89:8e:80:10:fb:c1:af:b4:c9:d0:22:e4:fd:65:0f: 61:e0:bc:ad:13:ef:64:8b:01:1a:96:bf:69:bd:4e:4a:0e:63: f8:43:3e:5c:ab:87:ea:0d:57:9c:b3:76:f9:c7:fb:05:36:5b: 8f:12:31:2f:bd:31:7b:41:ad:55:3c:d7:b8:80:19:f4:11:25: a4:39:57:ea:ae:9c:ef:fc:dc:10:be:2c:48:ba:2f:85:37:3f: ff:3f:79:4d:e8:9a:bb:52:92:1b:8a:a5:ba:1a:ca:cb:75:cc: 9e:43:41:36:a4:96:ed:f2:30:91:19:2b:76:8f:f9:44:fd:88: 68:49:be:66:b2:b4:18:c5:2b:98:1c:11:fd:b5:4f:66:6a:6e: 4e:02:08:64:c8:8b:84:d5:6e:1d:f8:11:28:95:61:70:01:7a: d8:11:6a:33:d0:e6:c3:fe:ec:05:a2:4a:88:b2:60:d0:25:8d: a5:88:ba:f3:e4:d5:13:99:54:ce:c3:1d:ba:92:1c:e5:73:12: c9:a4:59:42:b9:7b:b8:d2:16:c2:f2:8d:22:6e:3f:ef:d7:20: f6:0a:d1:ab:13:a5:57:77:9a:5c:07:7a:d9:be:ee:ce:16:ff: 08:55:31:14:5b:1e:e0:c4:fa:c8:10:21:06:f5:a8:5e:05:80: 28:e2:b8:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjYwNDA0MjAzODUxWhcNMjYwNDExMjAzODUxWjAYMRYwFAYD VQQDEw02OWQxNzZkYi0yMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraCT37VRw2d0SoALuVJ5T8lGoq0DBX7LYXbE1nIiRTfiSLiHwI1rpHhFFShh EWGRN/ssPg/kEdE/1uYPYStEL5wYGCB5QVCfFAfw2opDsFbTX2itbOl5hPwKOtNJ 6F4UFFT4ynCZRaOSztCHze5rbfZUdX0DebLEXHsYrwAil19amrfBNLLin32fR/Ze PaU/7GTly5gSmCV6CCSB9mX/FN1CUjgpzqje5y03W15l7tXSfB0kz4BClqgSM/Bv 14oh06RvhkHGVdQNwIM31cIzKSklyYuvQKZnAM7Cz/cwqxERVTEVm6Z0p4ZCjHj/ 0xpoA8UP6zC4tBKoE/le8mXHjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIVr3dOJ 6G6KPrl1g5LqzxbThPZLMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAgx6iY6AEPvBr7TJ0CLk/WUPYeC8rRPvZIsBGpa/ab1OSg5j+EM+XKuH6g1X nLN2+cf7BTZbjxIxL70xe0GtVTzXuIAZ9BElpDlX6q6c7/zcEL4sSLovhTc//z95 Teiau1KSG4qluhrKy3XMnkNBNqSW7fIwkRkrdo/5RP2IaEm+ZrK0GMUrmBwR/bVP ZmpuTgIIZMiLhNVuHfgRKJVhcAF62BFqM9Dmw/7sBaJKiLJg0CWNpYi68+TVE5lU zsMdupIc5XMSyaRZQrl7uNIWwvKNIm4/79cg9grRqxOlV3eaXAd62b7uzhb/CFUx FFse4MT6yBAhBvWoXgWAKOK4Zw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:29:38 2026 by rpki-client