$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json) Hash identifier: Dn7CyWqO+IXBojzY+OQBrVDDBiwu75pQ67E4CxaAamI= Subject key identifier: 37:42:1E:30:13:67:C0:2C:11:FF:E6:7E:0D:2B:39:A6:73:42:A1:F9 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft Manifest number: 0BD6 Signing time: Sat 04 Apr 2026 19:25:28 +0000 Manifest this update: Sat 04 Apr 2026 19:25:28 +0000 Manifest next update: Sat 11 Apr 2026 19:25:28 +0000 Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: OegZoBmveTbsuk3hMwKMUSG4Nl3plVSJbCg9/Q/ogX4=) 2: DC2FC844C39F11F0B36A6414C4F9AE02.roa (hash: V2qlmV4XkoxlRoXJX3GJoP5zWEsqS91ZCQdcyts5qHo=) 3: 9E173D98C3A011F09FB4B135C4F9AE02.roa (hash: ga9qUIHplz9Q0itJMVESTFTdU82A0oFqh3RAfSw4h6M=) 4: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: Uvg+BnkN8k4fglRUul1hQWU8OMx515TnEmaoTVsiH3Q=) 5: 305F24342A0811EE9D810010C4F9AE02.roa (hash: xTnjKFEkhv3ieLQOrP9C6yTVSU56UseqdjRyAJkV7Io=) 6: 50448A72911411EF9CAF3E55C4F9AE02.roa (hash: PUCwcVB7mOMKNLxgaPflJNHZ7wfZlaCCwrgkjtHbLlA=) 7: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: 0+4o+E6SOsFpjtUX15g9YSzD9JvjowUL7y6x/I96FSg=) 8: FC895C72C39F11F095CC9914C4F9AE02.roa (hash: oeoqWRtwQTgBkvjilvWPRZDpoi0Ors8C695fBl0ectw=) 9: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: llpJTFb5gbR6BmRuVyy4JWW+914NmVxABUKSPBGS9YM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: Apr 4 19:25:28 2026 GMT Not After : Apr 11 19:25:28 2026 GMT Subject: CN=69d165a8-accf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1e:3c:77:1b:e9:0e:c0:ac:7b:26:4d:d4:dc: c9:c7:17:0c:00:07:d2:0e:8c:7e:59:64:a3:7d:49: 66:5a:3a:e9:06:03:a7:3a:2d:67:85:ef:2a:a5:3e: a3:e4:82:89:65:7f:74:51:10:2d:26:24:a2:25:6b: 1f:85:b4:5c:a2:90:72:f1:49:e2:d5:16:f7:7d:b6: a9:e3:51:9b:fc:56:c6:00:6e:20:1c:18:23:ac:27: 3a:c8:d4:89:42:b9:66:a9:68:f2:61:63:39:d7:83: a3:16:be:83:38:4f:31:4d:45:62:30:60:89:4c:02: 2b:7e:43:07:5a:55:62:23:a2:e1:37:47:3e:96:cf: fe:45:e4:f0:62:f4:5d:b9:41:84:d6:5d:ee:58:9c: b9:50:71:86:2e:29:88:62:f5:5a:53:07:98:e9:25: f9:69:a6:43:fe:25:51:22:08:9c:e3:a9:8b:96:e9: 77:49:9f:5e:d0:a5:a1:64:b6:bc:0b:5c:a1:41:da: 02:19:be:d2:6b:0c:a1:b5:ed:35:75:6f:03:2f:61: 02:9b:e7:1b:6a:d1:07:da:54:b1:14:bd:dc:3d:a9: 1e:ab:4c:d2:94:af:a7:8e:e9:31:f2:20:f6:50:14: 4b:77:e3:39:b7:3b:40:6d:b4:c8:a6:e0:f6:a9:15: 92:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:42:1E:30:13:67:C0:2C:11:FF:E6:7E:0D:2B:39:A6:73:42:A1:F9 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b0:e8:69:d7:65:1b:50:02:46:09:54:d3:ed:28:93:58:91: 20:9f:31:7f:9f:ae:e6:5f:b9:5a:f9:45:4c:bf:30:3d:ad:c8: ec:3c:07:db:ef:58:3d:cd:21:94:e6:70:9f:cb:cb:29:02:3a: c0:1a:21:3c:b8:16:43:8d:33:46:7e:a0:ec:99:58:4b:62:7e: e0:60:56:35:04:da:6b:8e:c5:28:e6:8f:af:84:8b:77:de:40: 21:3e:54:aa:36:15:2a:4e:9b:2e:6c:c8:e6:75:07:bf:b7:df: 77:db:34:30:7c:31:bc:c5:33:71:02:3a:05:0c:53:c4:28:fd: 34:2a:e8:0a:18:6b:97:79:c0:ac:6a:0a:18:80:70:4b:86:ed: e1:5e:2e:5c:95:cc:05:8d:ab:ca:25:ab:f1:98:7e:8b:77:83: 87:ce:3f:39:08:52:d9:60:40:0f:51:32:33:53:22:30:f7:74: 3d:e4:8c:9f:7c:47:bd:ed:5a:c0:bb:01:2a:fd:d6:56:f3:2f: 7c:79:19:91:d9:c3:be:e7:14:35:41:9c:0c:78:be:77:db:4f: 60:be:87:92:d3:01:30:32:d6:ca:82:3e:b8:46:0a:8b:fc:01: 96:bf:ae:6f:be:2b:1a:e3:f6:37:5e:ee:db:7f:43:e4:93:fe: 5a:4b:eb:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjYwNDA0MTkyNTI4WhcNMjYwNDExMTkyNTI4WjAYMRYwFAYD VQQDEw02OWQxNjVhOC1hY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuh48dxvpDsCseyZN1NzJxxcMAAfSDox+WWSjfUlmWjrpBgOnOi1nhe8qpT6j 5IKJZX90URAtJiSiJWsfhbRcopBy8Uni1Rb3fbap41Gb/FbGAG4gHBgjrCc6yNSJ QrlmqWjyYWM514OjFr6DOE8xTUViMGCJTAIrfkMHWlViI6LhN0c+ls/+ReTwYvRd uUGE1l3uWJy5UHGGLimIYvVaUweY6SX5aaZD/iVRIgic46mLlul3SZ9e0KWhZLa8 C1yhQdoCGb7Sawyhte01dW8DL2ECm+cbatEH2lSxFL3cPakeq0zSlK+njukx8iD2 UBRLd+M5tztAbbTIpuD2qRWSXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDdCHjAT Z8AsEf/mfg0rOaZzQqH5MB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeLDoaddlG1ACRglU0+0ok1iRIJ8xf5+u5l+5WvlFTL8wPa3I7DwH2+9YPc0h lOZwn8vLKQI6wBohPLgWQ40zRn6g7JlYS2J+4GBWNQTaa47FKOaPr4SLd95AIT5U qjYVKk6bLmzI5nUHv7ffd9s0MHwxvMUzcQI6BQxTxCj9NCroChhrl3nArGoKGIBw S4bt4V4uXJXMBY2ryiWr8Zh+i3eDh84/OQhS2WBAD1EyM1MiMPd0PeSMn3xHve1a wLsBKv3WVvMvfHkZkdnDvucUNUGcDHi+d9tPYL6HktMBMDLWyoI+uEYKi/wBlr+u b74rGuP2N17u239D5JP+WkvrbQ== -----END CERTIFICATE-----Generated at Sun Apr 5 22:24:31 2026 by rpki-client