$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft File: sRd7K0wt-LMG0UpkMAcob4nWnMA.mft (raw, json) Hash identifier: g2+lDRO4BZtHK8sDEtNGjG5c4VkBdoWB5FY0ZnZB12Q= Subject key identifier: F2:8D:E3:ED:34:E6:B8:C0:88:53:27:C4:46:08:E6:C1:59:B7:8F:B1 Authority key identifier: B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 Certificate issuer: /CN=A915DA5A/serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Certificate serial: 0D19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft Manifest number: 0D01 Signing time: Sat 04 Apr 2026 18:03:09 +0000 Manifest this update: Sat 04 Apr 2026 18:03:08 +0000 Manifest next update: Sat 11 Apr 2026 18:03:08 +0000 Files and hashes: 1: sRd7K0wt-LMG0UpkMAcob4nWnMA.crl (hash: OyYT+pZKR1Hrg7R+1yOfk8BWbdkRhjbN1HiXk59oFhU=) 2: A869B800367611F088B7726AC4F9AE02.roa (hash: h0vzLBO9AmONx7Qad7DB4zJWcKBNkWxmiiTY+i7XavM=) 3: 5952728A100E11F18DCC78E3113D8C67.roa (hash: 4DhZatB6LL4lAu55O0tTy0XQ+dQbCozW4+CmbLY+jDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3353 (0xd19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA5A, serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Validity Not Before: Apr 4 18:03:08 2026 GMT Not After : Apr 11 18:03:08 2026 GMT Subject: CN=69d1525c-1940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d5:ef:11:f6:76:1e:cc:c2:a1:42:6b:be:0d: c4:3c:83:2b:5a:8c:da:8d:2b:4a:90:74:79:42:b4: 98:95:c7:4a:41:5a:9f:83:55:e6:be:0a:8f:aa:0d: 9d:7e:57:18:5c:29:b9:8b:9d:a0:c1:c9:73:d7:bd: 3d:7c:c1:e9:b0:95:77:9a:96:7a:e8:4a:d8:dd:31: 41:a4:c4:4e:4a:74:12:4f:4e:36:76:20:52:78:d7: d9:fb:cf:73:ab:37:cb:94:cb:e9:b8:ad:95:07:db: fb:84:f1:74:ae:82:49:35:93:91:20:26:ab:1c:c8: 3d:2f:23:33:d6:d2:9f:a3:74:0a:2f:51:e8:2e:23: fe:39:3a:f8:b5:9f:3b:d4:d5:1e:ec:a6:ab:ce:7e: c5:6a:37:50:f1:d7:d9:21:c1:69:ad:8a:dc:cd:3e: b3:c7:98:29:d0:58:e5:07:4d:6c:67:66:46:14:3e: bc:e7:cf:3c:e3:fd:ae:70:0a:e5:5e:91:cc:53:c8: e4:a6:2e:cf:9d:12:b8:ef:c2:c0:2b:34:40:61:22: b2:8b:2d:33:75:d9:9b:e4:f0:07:98:a7:90:4b:0b: 66:ed:56:4b:c6:92:be:92:3e:73:f2:58:28:03:64: 98:bf:0c:c7:c7:97:8f:44:58:d8:a7:50:7b:0e:3a: de:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:8D:E3:ED:34:E6:B8:C0:88:53:27:C4:46:08:E6:C1:59:B7:8F:B1 X509v3 Authority Key Identifier: keyid:B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:c1:71:af:8d:4b:5f:53:0e:9c:05:98:d1:4c:c9:30:ae:13: c0:dd:af:44:74:cd:f9:f0:21:d1:ed:78:04:91:64:52:9f:2e: 69:bd:50:ae:06:55:2c:32:89:37:db:57:fc:4a:03:24:f9:6e: a1:b8:64:63:bd:48:9f:05:1f:6d:fe:82:a9:88:89:23:ba:a6: a9:58:4f:ae:c4:9b:ce:7e:80:a7:73:ed:05:dd:9a:d0:c6:9c: e2:3b:35:46:90:3e:7b:da:f6:b7:31:4a:a4:23:af:08:fe:dc: 63:fb:e4:56:6d:ae:76:db:da:98:91:64:7a:bf:21:87:40:73: 81:a3:aa:3b:7a:e1:22:5e:3b:2a:76:29:0e:7a:ff:c6:3b:bd: cf:9b:14:63:55:d4:af:53:9a:61:ad:85:8d:b9:54:32:55:7b: a6:61:cd:49:43:05:12:de:82:61:c8:e3:a7:ed:8f:de:c7:e8: 25:32:be:0f:7c:87:3d:a3:66:f7:1e:b7:bd:05:40:42:62:db: 8d:40:74:12:b2:19:87:dd:9f:e9:89:2f:b4:3e:0c:fc:8a:73: bf:f0:09:b0:45:25:9c:43:5a:51:29:d5:50:02:02:cd:a9:cd: ee:85:62:3c:c5:63:aa:23:e2:a8:89:b4:31:a0:e8:1a:16:50: a1:a3:b7:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNUExMTAvBgNVBAUTKEIxMTc3QjJCNEMyREY4QjMwNkQxNEE2NDMwMDcyODZG ODlENjlDQzAwHhcNMjYwNDA0MTgwMzA4WhcNMjYwNDExMTgwMzA4WjAYMRYwFAYD VQQDEw02OWQxNTI1Yy0xOTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAltXvEfZ2HszCoUJrvg3EPIMrWozajStKkHR5QrSYlcdKQVqfg1XmvgqPqg2d flcYXCm5i52gwclz1709fMHpsJV3mpZ66ErY3TFBpMROSnQST042diBSeNfZ+89z qzfLlMvpuK2VB9v7hPF0roJJNZORICarHMg9LyMz1tKfo3QKL1HoLiP+OTr4tZ87 1NUe7Karzn7FajdQ8dfZIcFprYrczT6zx5gp0FjlB01sZ2ZGFD6858884/2ucArl XpHMU8jkpi7PnRK478LAKzRAYSKyiy0zddmb5PAHmKeQSwtm7VZLxpK+kj5z8lgo A2SYvwzHx5ePRFjYp1B7DjreoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPKN4+00 5rjAiFMnxEYI5sFZt4+xMB8GA1UdIwQYMBaAFLEXeytMLfizBtFKZDAHKG+J1pzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE1QS80NEU3NzBCMjAz RUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1MTUcwVXBrTUFjb2I0bldu TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NSZDdLMHd0LUxNRzBVcGtNQWNvYjRuV25NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REE1QS80NEU3NzBCMjAzRUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1M TUcwVXBrTUFjb2I0blduTUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc8Fxr41LX1MOnAWY0UzJMK4TwN2vRHTN+fAh0e14BJFkUp8uab1QrgZVLDKJ N9tX/EoDJPluobhkY71InwUfbf6CqYiJI7qmqVhPrsSbzn6Ap3PtBd2a0Mac4js1 RpA+e9r2tzFKpCOvCP7cY/vkVm2udtvamJFker8hh0BzgaOqO3rhIl47KnYpDnr/ xju9z5sUY1XUr1OaYa2FjblUMlV7pmHNSUMFEt6CYcjjp+2P3sfoJTK+D3yHPaNm 9x63vQVAQmLbjUB0ErIZh92f6YkvtD4M/Ipzv/AJsEUlnENaUSnVUAICzanN7oVi PMVjqiPiqIm0MaDoGhZQoaO3jA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:58 2026 by rpki-client