$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: f6FXsgzE8TdrnlKdnzDVEQlegfbdSUjEBgYfjZOUbl0= Subject key identifier: D6:09:D3:1A:B4:97:8E:DC:33:14:86:DA:11:6D:10:25:DD:FD:D0:02 Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 05D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 05AC Signing time: Sat 04 Apr 2026 22:59:32 +0000 Manifest this update: Sat 04 Apr 2026 22:59:31 +0000 Manifest next update: Sat 11 Apr 2026 22:59:31 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: bHoRe+IS8Hd65Do6zfPlYG0DeXEMsBzQIjzENYSTZzI=) 2: 3A549A1EB00211F0A3A86535C4F9AE02.roa (hash: wN2IZ9Tp9dRoIakSTTLA1uLNoPM2YPK4OBU3DnTtTPk=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: xIAIlJ7v8ECTIXnt1C8XuSoM0aGHLELefgFDc8efrDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1494 (0x5d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Apr 4 22:59:31 2026 GMT Not After : Apr 11 22:59:31 2026 GMT Subject: CN=69d197d4-5442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:45:ec:67:4a:1a:7f:4a:ca:ea:3a:98:3c:09: 2e:ad:1e:64:34:fd:c2:b2:7c:42:67:ba:80:80:23: f0:60:f7:46:98:ea:e2:0b:0a:fb:8a:8d:51:37:27: a7:2a:bc:e7:ef:73:37:cd:24:de:86:fb:8a:cf:fb: 6e:d7:7f:ff:57:df:90:f5:28:fc:29:05:99:e7:d5: 7b:79:aa:b6:c2:07:14:c3:c5:45:ca:8f:6d:28:3f: 08:4c:4d:5f:ac:9f:2a:a3:42:28:1b:76:e0:98:28: d9:e8:a0:c0:4d:b9:8c:32:9a:ff:4f:0d:89:26:cc: fe:f6:9b:08:18:42:b6:7d:80:b7:25:db:a2:b9:1e: ce:92:ff:60:d6:1f:46:f4:3a:34:d8:b0:89:b1:6e: 98:d1:06:f3:8b:cc:26:2f:69:30:d2:fd:ed:17:d1: ee:04:c3:2e:a0:18:09:53:b2:13:05:a8:f4:b0:65: 1c:e0:d2:39:24:3e:55:03:29:c6:09:68:d1:78:92: 16:b6:72:43:fa:ae:1d:2c:d3:5c:63:11:66:38:98: 71:9f:e3:20:30:cf:81:03:98:a5:d4:dd:b5:36:e9: d8:9e:2a:b5:ca:08:12:52:77:38:4b:dd:ea:54:2e: c8:4d:cc:79:02:dd:f1:bb:43:ae:18:70:58:f0:4e: fc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:09:D3:1A:B4:97:8E:DC:33:14:86:DA:11:6D:10:25:DD:FD:D0:02 X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:f3:8f:ab:06:4f:89:cf:fb:b2:94:79:ef:4d:92:4f:1b:0d: 19:fb:1b:10:a5:15:90:de:a8:b6:6e:65:d0:ae:7d:96:48:7d: c5:72:58:61:5d:35:db:00:71:81:e5:7e:0c:a7:ef:85:bc:2c: 82:a6:75:b5:26:0d:c8:ac:f6:c7:d7:a0:9a:c4:3d:d9:0a:9b: 36:04:f1:53:ec:f7:c5:c6:9d:98:b6:ac:cc:f6:ea:30:02:40: 04:8f:63:c0:7b:ef:ca:26:f5:bf:1c:35:47:86:99:0d:86:42: 21:e5:40:9b:e7:be:c7:28:8c:9c:5c:d1:c8:a5:75:04:7d:24: 5b:ad:66:f8:38:28:9a:3a:33:7a:a0:af:71:71:72:49:4a:9a: 56:86:fc:69:d5:a1:37:59:e6:37:8a:c7:00:23:bf:ba:d9:c2: 99:ad:ec:73:88:57:4e:30:b0:7c:1d:cf:b4:9f:e3:d3:9e:cb: bf:67:75:b2:45:92:a7:e6:e1:6e:15:33:18:d7:a2:31:23:ed: 85:54:d5:bb:18:7e:a8:9e:fb:09:47:5a:c9:f3:c7:25:cc:38: 8e:1c:3c:10:e6:7b:06:94:8a:3a:62:d3:ac:b7:2f:45:a9:ac: fd:91:2c:3d:50:01:e7:97:bb:03:98:ca:81:42:4f:21:0e:95: e6:77:37:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjYwNDA0MjI1OTMxWhcNMjYwNDExMjI1OTMxWjAYMRYwFAYD VQQDEw02OWQxOTdkNC01NDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0XsZ0oaf0rK6jqYPAkurR5kNP3CsnxCZ7qAgCPwYPdGmOriCwr7io1RNyen Krzn73M3zSTehvuKz/tu13//V9+Q9Sj8KQWZ59V7eaq2wgcUw8VFyo9tKD8ITE1f rJ8qo0IoG3bgmCjZ6KDATbmMMpr/Tw2JJsz+9psIGEK2fYC3JduiuR7Okv9g1h9G 9Do02LCJsW6Y0Qbzi8wmL2kw0v3tF9HuBMMuoBgJU7ITBaj0sGUc4NI5JD5VAynG CWjReJIWtnJD+q4dLNNcYxFmOJhxn+MgMM+BA5il1N21NunYniq1yggSUnc4S93q VC7ITcx5At3xu0OuGHBY8E784QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNYJ0xq0 l47cMxSG2hFtECXd/dACMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArPOPqwZPic/7spR5702STxsNGfsbEKUVkN6otm5l0K59lkh9xXJYYV012wBx geV+DKfvhbwsgqZ1tSYNyKz2x9egmsQ92QqbNgTxU+z3xcadmLaszPbqMAJABI9j wHvvyib1vxw1R4aZDYZCIeVAm+e+xyiMnFzRyKV1BH0kW61m+DgomjozeqCvcXFy SUqaVob8adWhN1nmN4rHACO/utnCma3sc4hXTjCwfB3PtJ/j057Lv2d1skWSp+bh bhUzGNeiMSPthVTVuxh+qJ77CUdayfPHJcw4jhw8EOZ7BpSKOmLTrLcvRams/ZEs PVAB55e7A5jKgUJPIQ6V5nc3lQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:11 2026 by rpki-client