$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: I1SsAybKZk5uVP+iDR568wo2FsEvL0gkHXEsm2HCwjs= Subject key identifier: ED:A8:0D:D1:64:43:BE:DE:4A:CE:96:FD:94:14:8C:02:39:42:AA:AE Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 044A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0438 Signing time: Sun 05 Apr 2026 00:03:23 +0000 Manifest this update: Sun 05 Apr 2026 00:03:22 +0000 Manifest next update: Sun 12 Apr 2026 00:03:22 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: gR0tiJ0x/m+b0vwP+u1PhaK0ZgqC789h3p7PL1XJi40=) 2: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: 8IoFb/TuJGa8f+hLPDSGTarCT7mkVKZq9W7cRCzmXZc=) 3: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: wPvXbMRDdeZ16YQAsG5yxXC1oVke0Is094fp9Wnssro=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: X5PDT1MbgloBsVHEEErT26cO3WdhXztNkcjjEpdBJNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Apr 5 00:03:22 2026 GMT Not After : Apr 12 00:03:22 2026 GMT Subject: CN=69d1a6cb-c8ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a8:9c:6d:5b:7a:5c:46:93:c8:8d:6a:1b:f1: b1:9c:c3:2e:b0:69:19:94:46:52:ff:b8:2e:3c:e3: 45:29:22:50:cf:62:b8:91:e0:73:e9:01:0f:41:24: e2:c1:04:69:93:54:65:c2:38:76:ad:e7:a9:4b:c3: a3:04:82:57:ad:19:f4:6b:75:ec:46:8d:30:4b:68: cd:f1:61:cc:5a:13:99:ca:4f:8a:15:42:28:7e:a6: ca:4b:72:89:52:c1:af:ca:1e:eb:da:98:ba:55:c1: 9d:5e:fe:93:3a:db:e0:9b:5a:53:a6:7b:ad:91:01: 96:e2:f3:2d:9e:8a:bc:3d:58:9e:96:ac:62:83:7d: d9:dd:28:5d:cb:23:79:f4:70:9f:46:81:16:1f:5b: c1:76:1e:56:79:e0:ac:d5:08:69:be:f3:4c:38:e2: 66:1e:43:a6:39:c3:0d:23:5b:38:e8:8f:24:b6:6a: 3c:f5:59:49:4f:51:4b:07:b0:e7:3a:85:b5:fe:5c: 60:4d:55:d3:0e:0c:39:74:75:9a:b6:5c:89:4d:78: ee:32:cc:93:ba:4c:08:f9:83:8a:d1:99:67:16:4f: 48:5c:76:68:d6:ef:98:eb:e0:70:0d:c8:af:e6:1f: b8:59:9b:50:86:68:c8:d5:51:5d:a8:26:5c:be:6e: 0f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A8:0D:D1:64:43:BE:DE:4A:CE:96:FD:94:14:8C:02:39:42:AA:AE X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:78:54:6f:33:46:a2:46:c2:ef:a8:56:17:92:fd:6d:d2:f7: 8d:ce:af:59:8c:f6:6d:b0:d1:1d:70:6f:61:4e:28:8a:8e:76: 08:66:1a:77:cd:08:63:f1:f0:d4:87:1b:88:38:48:48:5e:de: 4c:76:1b:06:88:9a:6c:34:8f:c9:33:4b:7a:f9:7d:c1:20:b3: 76:39:65:b4:28:17:1e:7c:3e:14:ef:90:19:37:48:43:d6:0a: 2f:7a:83:ae:2a:61:d5:05:88:e2:2f:d2:a0:fb:ce:7e:d2:17: 32:2c:0e:00:5b:c3:21:ca:a6:3e:7b:7a:40:39:e7:29:4c:cc: ad:4b:8c:c9:6e:3b:e5:3b:6e:72:01:be:bb:05:ac:b6:2c:e9: 8a:98:bf:bd:74:92:3d:26:54:96:ed:53:5e:05:bf:27:3c:d8: e8:b9:de:e7:11:6e:7e:22:2c:45:d5:c7:01:ac:b2:6b:1f:39: 58:2a:69:59:d0:68:b6:52:5f:28:5e:1f:7e:d4:9d:bc:a4:70: 3d:d2:39:3c:4a:9f:8c:51:b1:ec:43:57:88:6d:f3:66:0b:dd: d5:ec:07:28:bf:a1:80:1e:5d:03:35:61:d7:16:3f:ed:c4:de: 7f:98:79:3a:8f:3a:2d:3c:4a:fd:73:7d:2b:c6:61:56:4b:e3: 88:1f:cd:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjYwNDA1MDAwMzIyWhcNMjYwNDEyMDAwMzIyWjAYMRYwFAYD VQQDEw02OWQxYTZjYi1jOGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqicbVt6XEaTyI1qG/GxnMMusGkZlEZS/7guPONFKSJQz2K4keBz6QEPQSTi wQRpk1Rlwjh2reepS8OjBIJXrRn0a3XsRo0wS2jN8WHMWhOZyk+KFUIofqbKS3KJ UsGvyh7r2pi6VcGdXv6TOtvgm1pTpnutkQGW4vMtnoq8PVielqxig33Z3ShdyyN5 9HCfRoEWH1vBdh5WeeCs1QhpvvNMOOJmHkOmOcMNI1s46I8ktmo89VlJT1FLB7Dn OoW1/lxgTVXTDgw5dHWatlyJTXjuMsyTukwI+YOK0ZlnFk9IXHZo1u+Y6+BwDciv 5h+4WZtQhmjI1VFdqCZcvm4PeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO2oDdFk Q77eSs6W/ZQUjAI5QqquMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACHhUbzNGokbC76hWF5L9bdL3jc6vWYz2bbDRHXBvYU4oio52CGYad80IY/Hw 1IcbiDhISF7eTHYbBoiabDSPyTNLevl9wSCzdjlltCgXHnw+FO+QGTdIQ9YKL3qD riph1QWI4i/SoPvOftIXMiwOAFvDIcqmPnt6QDnnKUzMrUuMyW475TtucgG+uwWs tizpipi/vXSSPSZUlu1TXgW/JzzY6Lne5xFufiIsRdXHAayyax85WCppWdBotlJf KF4fftSdvKRwPdI5PEqfjFGx7ENXiG3zZgvd1ewHKL+hgB5dAzVh1xY/7cTef5h5 Oo86LTxK/XN9K8ZhVkvjiB/N+g== -----END CERTIFICATE-----Generated at Sun Apr 5 19:46:08 2026 by rpki-client