$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft File: Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft (raw, json) Hash identifier: JKnsYRBDd8UAsChDf/wwH0Ay7Lr3JXLThJQTf1Olz9I= Subject key identifier: 61:E2:2C:3C:E0:75:47:61:84:F9:53:2B:C3:71:DE:75:4F:9F:F6:4A Authority key identifier: 17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A Certificate issuer: /CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Certificate serial: 3536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft Manifest number: 352D Signing time: Sat 04 Apr 2026 14:48:37 +0000 Manifest this update: Sat 04 Apr 2026 14:48:37 +0000 Manifest next update: Sat 11 Apr 2026 14:48:37 +0000 Files and hashes: 1: Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl (hash: JzZlPgDdh4CQO0D8yhQlH63xeseGtdm1VlwUBqR/yI4=) 2: E68E0FD4077B11EB98CA5D1CC4F9AE02.roa (hash: rIwXuVAKzTQeQgdJujiwbvj/r919Ii7m2oS5MI0eTgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13622 (0x3536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFB8, serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Validity Not Before: Apr 4 14:48:37 2026 GMT Not After : Apr 11 14:48:37 2026 GMT Subject: CN=69d124c5-ba4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6f:fe:7c:78:7e:eb:25:28:df:62:fc:c8:89: 9c:38:40:9a:ad:2f:57:ee:86:5a:a6:81:09:db:2f: b4:aa:be:03:f3:cf:c0:0c:da:fe:2c:fe:de:75:f8: ec:f8:eb:a4:84:a7:ac:c7:10:a2:eb:30:7b:11:ed: be:66:0e:44:e3:3c:ab:db:9d:b4:59:7d:89:4e:88: a5:98:7e:b7:0b:bc:05:f1:87:21:44:c9:a0:b9:a7: 78:33:35:d9:ab:32:be:6b:8f:70:e3:4b:49:36:6d: a7:0b:52:fd:b9:48:16:de:6a:f5:10:ca:56:ec:f5: 6d:06:bc:69:54:f0:70:09:87:6d:f6:5a:f0:ca:9a: 8f:69:3a:74:d4:fc:5b:5b:f8:bf:3d:53:3b:1c:60: aa:12:dd:42:bc:0d:81:f3:dd:d5:b0:4c:4a:a4:18: 84:6a:f7:8c:b9:24:48:a9:cc:f7:68:0c:61:6e:8d: 45:9f:0d:8a:9b:c5:89:80:bc:da:97:57:31:b1:17: bb:34:3c:80:47:c6:2e:c9:0c:3c:fa:f5:b8:fe:44: b1:4e:fc:95:5b:52:42:06:0d:e4:40:10:b8:b0:96: 2a:aa:9d:19:fa:1e:9e:0f:b3:18:f9:a0:50:29:a4: 81:79:91:48:d8:91:43:3e:dd:a5:8e:89:f8:dd:f4: 8d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E2:2C:3C:E0:75:47:61:84:F9:53:2B:C3:71:DE:75:4F:9F:F6:4A X509v3 Authority Key Identifier: keyid:17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:8e:f2:22:cd:ba:7f:59:10:9b:9c:26:a1:aa:46:69:f5:03: c1:06:fc:80:7d:bd:92:c2:ee:f3:22:34:94:74:6a:6e:d3:15: fb:52:aa:cf:2a:d8:38:67:a0:e4:be:23:c2:08:89:50:b4:be: 32:f9:5e:96:28:d2:46:1d:fb:e7:4b:f1:d6:87:fa:e3:4f:1e: c8:19:df:0c:b7:a5:1e:60:8e:02:44:89:8c:db:a3:2b:36:29: a1:f9:59:b4:a1:b2:a3:49:df:c9:b3:b2:52:71:23:ce:00:eb: fd:9c:5f:ed:0f:9a:72:7e:82:34:aa:c5:24:86:a9:76:ce:a7: 50:d9:f3:0c:7e:95:36:4b:d6:66:d3:df:2f:3e:d8:5e:8a:8b: c2:f2:3e:c8:83:5f:a4:42:22:ed:80:ae:82:ba:66:25:18:3c: 88:e9:f3:0d:19:0a:91:29:e9:0f:df:97:c5:89:d0:13:30:1d: 4e:fe:c3:7b:ea:8a:20:eb:81:76:45:38:bc:c8:ca:47:02:ff: 3e:b9:aa:24:94:20:c5:1a:46:d1:26:9a:9d:14:43:5c:bc:a9: 9e:0e:24:31:58:84:06:6b:f3:74:4b:50:f1:c9:5f:16:98:5f: 0c:86:2c:7e:5d:8c:bd:bc:30:0b:7a:13:73:8b:88:23:fd:64: 91:30:92:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGQjgxMTAvBgNVBAUTKDE3MEU5Qzc2NzY0M0MzQzFGNjA1Nzk0MDg2NDhBM0Yw REE4NDA0NUEwHhcNMjYwNDA0MTQ0ODM3WhcNMjYwNDExMTQ0ODM3WjAYMRYwFAYD VQQDEw02OWQxMjRjNS1iYTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsm/+fHh+6yUo32L8yImcOECarS9X7oZapoEJ2y+0qr4D88/ADNr+LP7edfjs +OukhKesxxCi6zB7Ee2+Zg5E4zyr2520WX2JToilmH63C7wF8YchRMmguad4MzXZ qzK+a49w40tJNm2nC1L9uUgW3mr1EMpW7PVtBrxpVPBwCYdt9lrwypqPaTp01Pxb W/i/PVM7HGCqEt1CvA2B893VsExKpBiEaveMuSRIqcz3aAxhbo1Fnw2Km8WJgLza l1cxsRe7NDyAR8YuyQw8+vW4/kSxTvyVW1JCBg3kQBC4sJYqqp0Z+h6eD7MY+aBQ KaSBeZFI2JFDPt2ljon43fSN+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGHiLDzg dUdhhPlTK8Nx3nVPn/ZKMB8GA1UdIwQYMBaAFBcOnHZ2Q8PB9gV5QIZIo/DahARa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUZCOC9EOTgwQTE3MjFE OTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4SDJCWGxBaGtpajhOcUVC Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z3NmNkblpEdzhIMkJYbEFoa2lqOE5xRUJGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUZCOC9EOTgwQTE3MjFEOTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4 SDJCWGxBaGtpajhOcUVCRm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJo7yIs26f1kQm5wmoapGafUDwQb8gH29ksLu8yI0lHRqbtMV+1KqzyrYOGeg 5L4jwgiJULS+MvlelijSRh3750vx1of6408eyBnfDLelHmCOAkSJjNujKzYpoflZ tKGyo0nfybOyUnEjzgDr/Zxf7Q+acn6CNKrFJIapds6nUNnzDH6VNkvWZtPfLz7Y XoqLwvI+yINfpEIi7YCugrpmJRg8iOnzDRkKkSnpD9+XxYnQEzAdTv7De+qKIOuB dkU4vMjKRwL/PrmqJJQgxRpG0SaanRRDXLypng4kMViEBmvzdEtQ8clfFphfDIYs fl2MvbwwC3oTc4uII/1kkTCSgQ== -----END CERTIFICATE-----Generated at Sun Apr 5 20:00:09 2026 by rpki-client