$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: BpJlmM24hgiUeEzroXvUAWJSUbR3ZwxxhaMeeme4A6Y= Subject key identifier: 72:7F:B0:1A:31:B8:B8:39:6F:3B:E6:F6:A6:9C:D2:F9:39:1D:4D:16 Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 0275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 026F Signing time: Sun 05 Apr 2026 01:36:15 +0000 Manifest this update: Sun 05 Apr 2026 01:36:14 +0000 Manifest next update: Sun 12 Apr 2026 01:36:14 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: raA7MBhxCNdl+/9PmpUDViF+8UO0UXQDTkpAQ3iTEUM=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: yfzx4N8e3wjfsr320pF+EFitreK6BjvCPZ0wmG/4y/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Apr 5 01:36:14 2026 GMT Not After : Apr 12 01:36:14 2026 GMT Subject: CN=69d1bc8f-59f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cb:a6:48:a1:18:13:0c:5c:3b:0d:e7:a2:2e: e9:6f:65:d6:db:e3:ce:ba:d0:57:6e:ee:da:e3:83: 1b:7f:2a:f0:74:ea:5e:e4:c4:85:1b:2b:c7:64:53: 5a:39:54:db:c5:5d:17:fe:9d:c5:69:7e:c9:57:fe: f5:4c:c6:43:58:7f:47:d3:1a:37:a3:20:9b:6c:1b: 0a:29:4e:4b:3b:99:27:e6:b7:37:b0:53:75:29:12: 64:22:ea:0d:e3:89:2c:45:31:3b:bf:95:01:f3:25: 5f:1e:9a:35:6f:0a:96:ad:1f:2c:88:cd:cc:34:5b: 60:a0:9e:a7:c6:c2:16:1c:04:12:4f:d0:80:33:95: 89:0b:4c:93:46:b5:a9:03:f7:b3:61:a3:ec:a5:81: 93:7c:71:8b:c8:d7:04:c7:4d:cc:c4:c8:ae:e3:b3: bb:d9:49:c5:aa:22:e2:1c:c5:dd:36:00:de:a1:11: 89:37:ae:36:6f:c5:88:2b:f5:3a:28:97:69:c6:6f: 6d:41:f1:0e:65:36:ad:77:5a:8f:b3:ec:a3:ba:60: 3e:b3:b8:16:a6:e2:88:4f:9c:be:06:dd:ce:a6:79: 96:a3:69:be:35:36:ce:96:a0:de:72:19:87:eb:bb: 8c:0e:c6:81:9b:5d:51:aa:94:c9:0e:9e:d9:7b:aa: ac:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7F:B0:1A:31:B8:B8:39:6F:3B:E6:F6:A6:9C:D2:F9:39:1D:4D:16 X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:24:92:dc:75:86:12:50:19:11:62:9c:3b:db:1b:2b:56:2b: db:c7:5b:72:76:c2:13:cd:93:18:10:de:eb:83:d7:fd:0d:66: c3:76:95:c6:fe:ba:f9:a0:c8:ff:39:18:91:64:42:2c:53:1a: 2f:99:37:5d:79:21:d2:aa:64:2d:02:dd:17:a3:39:e9:a3:1a: ae:51:ad:18:bf:2d:ff:74:32:03:fa:15:b1:2f:78:b4:5f:98: fd:d4:d2:a4:2f:07:99:b9:dc:01:94:75:00:d9:8c:5f:34:e5: 5c:2a:4a:30:f0:5d:21:a4:25:b9:a1:74:0a:38:31:99:f8:ab: d8:79:72:5c:cc:91:96:25:2d:df:81:b0:2a:af:05:bc:fb:7d: 2b:49:d9:84:9e:51:d8:1f:e8:37:d2:02:86:6f:b7:24:84:45: 45:0a:87:8b:9a:2d:4b:07:ca:1c:3d:fb:a6:ef:cb:fb:88:ae: f4:03:84:7e:f0:53:1f:fa:59:0e:31:bc:fe:35:e2:45:1a:2c: 58:17:7a:1e:49:5e:78:18:13:2a:e9:bd:3e:c1:3e:13:80:21: 21:07:26:79:a1:52:40:86:fd:f4:73:38:2a:4a:96:7e:93:e2: 20:8c:87:a9:32:e0:df:f6:d6:71:7a:09:c4:5f:99:88:99:63: 5b:94:29:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjYwNDA1MDEzNjE0WhcNMjYwNDEyMDEzNjE0WjAYMRYwFAYD VQQDEw02OWQxYmM4Zi01OWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8umSKEYEwxcOw3noi7pb2XW2+POutBXbu7a44MbfyrwdOpe5MSFGyvHZFNa OVTbxV0X/p3FaX7JV/71TMZDWH9H0xo3oyCbbBsKKU5LO5kn5rc3sFN1KRJkIuoN 44ksRTE7v5UB8yVfHpo1bwqWrR8siM3MNFtgoJ6nxsIWHAQST9CAM5WJC0yTRrWp A/ezYaPspYGTfHGLyNcEx03MxMiu47O72UnFqiLiHMXdNgDeoRGJN642b8WIK/U6 KJdpxm9tQfEOZTatd1qPs+yjumA+s7gWpuKIT5y+Bt3OpnmWo2m+NTbOlqDechmH 67uMDsaBm11RqpTJDp7Ze6qsbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHJ/sBox uLg5bzvm9qac0vk5HU0WMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASSSS3HWGElAZEWKcO9sbK1Yr28dbcnbCE82TGBDe64PX/Q1mw3aVxv66+aDI /zkYkWRCLFMaL5k3XXkh0qpkLQLdF6M56aMarlGtGL8t/3QyA/oVsS94tF+Y/dTS pC8HmbncAZR1ANmMXzTlXCpKMPBdIaQluaF0Cjgxmfir2HlyXMyRliUt34GwKq8F vPt9K0nZhJ5R2B/oN9IChm+3JIRFRQqHi5otSwfKHD37pu/L+4iu9AOEfvBTH/pZ DjG8/jXiRRosWBd6HkleeBgTKum9PsE+E4AhIQcmeaFSQIb99HM4KkqWfpPiIIyH qTLg3/bWcXoJxF+ZiJljW5QpAg== -----END CERTIFICATE-----Generated at Sun Apr 5 21:09:21 2026 by rpki-client