$ rpki-client -vvf rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft File: I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft (raw, json) Hash identifier: E5hNp3D8tjsTvEuby1LtOBEYoMJhrAjhFD+fxzF3148= Subject key identifier: 27:37:1B:E5:8D:CA:44:99:02:C9:C3:CD:D0:3E:C9:45:71:6C:1C:2C Authority key identifier: 23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28 Certificate issuer: /CN=A919DB08/serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft Manifest number: 28 Signing time: Fri 17 Apr 2026 08:33:01 +0000 Manifest this update: Fri 17 Apr 2026 08:33:00 +0000 Manifest next update: Fri 24 Apr 2026 08:33:00 +0000 Files and hashes: 1: I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl (hash: kH8OrzWsw2kNRpkZkVqN7m0n3zTspV8BJFkuBmuUyRA=) 2: 3F7E724808FA11F1B69E3FD3313D8C67.roa (hash: NZDM0P5b400zVrhyd2jzSLfxw/qGeaxR3jXe0NSn67o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DB08, serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828 Validity Not Before: Apr 17 08:33:00 2026 GMT Not After : Apr 24 08:33:00 2026 GMT Subject: CN=69e1f03c-ec09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:af:29:0f:0c:54:38:05:41:3c:ba:62:d9:af: 4d:48:3d:10:b7:21:cb:2f:95:3e:cd:ec:e3:06:80: 01:7b:c7:13:c4:58:01:ec:f0:96:e0:7c:2d:91:ef: ca:78:69:5a:05:6c:12:4c:7a:be:1d:b0:95:43:9c: fc:5b:54:b9:a6:9f:84:5d:2a:a8:cf:cb:bd:22:36: 6c:a5:90:35:4f:8a:a0:f0:12:de:95:26:09:30:3c: 60:a8:a6:06:1d:26:76:f3:cc:cc:2b:0d:56:20:c7: 78:79:11:37:8a:88:3e:75:00:ec:3c:7d:2a:bb:1a: ff:4d:8a:81:99:2e:8a:c6:94:e0:40:7e:9c:1e:e4: 4a:c0:f6:06:7f:78:45:f3:ce:e3:5b:20:27:a3:b2: 3d:a8:32:cc:a1:19:f5:dc:65:d5:d9:e9:c0:78:ba: 9f:c3:dd:9c:31:43:4d:35:89:68:dc:d1:08:a8:46: 7f:6a:11:ae:d3:52:6c:0b:7f:79:b2:41:f5:70:2a: fb:9e:f5:14:a9:9b:42:5c:e1:6f:ac:57:95:bc:75: 11:11:20:b7:e7:c8:d8:1c:70:27:f7:f3:87:f3:8c: 34:ed:6a:78:51:5a:6b:d1:f1:65:9a:c3:7a:12:d0: ba:cd:4b:e6:51:b3:3a:cb:a5:ef:05:67:12:ce:3e: 46:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:37:1B:E5:8D:CA:44:99:02:C9:C3:CD:D0:3E:C9:45:71:6C:1C:2C X509v3 Authority Key Identifier: keyid:23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d3:94:01:2f:2c:a8:07:fb:68:4b:28:1e:f9:79:87:e8:85: 60:9c:9d:f6:88:3e:93:a0:9b:49:be:e7:9e:1f:2b:c2:44:43: b3:30:56:bc:ad:bc:40:db:c2:de:43:94:0b:64:e8:16:9d:e3: a7:dc:58:a1:a5:2f:d9:8b:cb:63:4c:81:d0:1f:8a:1d:e0:dc: bc:6d:e7:68:db:a3:41:61:85:e5:02:a7:67:05:d0:5d:d8:40: 1f:86:f9:f4:2f:42:a2:02:9b:3a:34:d3:61:ed:79:6d:a0:f9: 9f:93:09:eb:6b:07:15:f9:13:99:d2:75:bd:7f:c2:77:99:95: b3:dd:cf:71:c3:8d:f2:05:a6:d7:78:a1:71:d8:1e:f7:1d:fe: 3d:fd:fc:d9:dd:52:40:26:bf:80:89:51:61:dc:e0:26:64:4d: 9a:7e:5d:9b:13:35:26:dd:3d:f0:64:95:2b:04:ab:52:6e:0a: 05:3b:7e:32:03:6c:b1:74:8e:30:d9:a1:40:1c:ca:6a:d7:e3: 66:9c:18:9a:11:e4:d3:56:2d:62:a6:ef:e8:69:38:53:2c:d8: 59:ff:7e:a0:f2:a1:08:1b:e6:a4:da:8d:45:40:92:ac:d7:b0: 94:8f:54:34:98:94:ab:ee:01:bf:92:c7:a1:a9:1d:57:04:6d: 6e:ff:3e:f0 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 REIwODExMC8GA1UEBRMoMjM5MUZCNEQ5QUVENDRBQjgwRTZBRkQ4RDgyMEExQzA2 NDQzOTgyODAeFw0yNjA0MTcwODMzMDBaFw0yNjA0MjQwODMzMDBaMBgxFjAUBgNV BAMTDTY5ZTFmMDNjLWVjMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5rykPDFQ4BUE8umLZr01IPRC3IcsvlT7N7OMGgAF7xxPEWAHs8JbgfC2R78p4 aVoFbBJMer4dsJVDnPxbVLmmn4RdKqjPy70iNmylkDVPiqDwEt6VJgkwPGCopgYd JnbzzMwrDVYgx3h5ETeKiD51AOw8fSq7Gv9NioGZLorGlOBAfpwe5ErA9gZ/eEXz zuNbICejsj2oMsyhGfXcZdXZ6cB4up/D3ZwxQ001iWjc0QioRn9qEa7TUmwLf3my QfVwKvue9RSpm0Jc4W+sV5W8dRERILfnyNgccCf384fzjDTtanhRWmvR8WWaw3oS 0LrNS+ZRszrLpe8FZxLOPkZdAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUJzcb5Y3K RJkCycPN0D7JRXFsHCwwHwYDVR0jBBgwFoAUI5H7TZrtRKuA5q/Y2CChwGRDmCgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEQjA4LzM4ODZFOEI4MDhG OTExRjE4MDg0RDA4NjMxM0Q4QzY3L0k1SDdUWnJ0Ukt1QTVxX1kyQ0Nod0dSRG1D Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSTVIN1RacnRSS3VBNXFfWTJDQ2h3R1JEbUNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE QjA4LzM4ODZFOEI4MDhGOTExRjE4MDg0RDA4NjMxM0Q4QzY3L0k1SDdUWnJ0Ukt1 QTVxX1kyQ0Nod0dSRG1DZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB/05QBLyyoB/toSyge+XmH6IVgnJ32iD6ToJtJvueeHyvCREOzMFa8rbxA28Le Q5QLZOgWneOn3FihpS/Zi8tjTIHQH4od4Ny8bedo26NBYYXlAqdnBdBd2EAfhvn0 L0KiAps6NNNh7XltoPmfkwnrawcV+ROZ0nW9f8J3mZWz3c9xw43yBabXeKFx2B73 Hf49/fzZ3VJAJr+AiVFh3OAmZE2afl2bEzUm3T3wZJUrBKtSbgoFO34yA2yxdI4w 2aFAHMpq1+NmnBiaEeTTVi1ipu/oaThTLNhZ/36g8qEIG+ak2o1FQJKs17CUj1Q0 mJSr7gG/ksehqR1XBG1u/z7w -----END CERTIFICATE-----Generated at Sat Apr 18 21:06:58 2026 by rpki-client