$ rpki-client -vvf rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft File: 4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft (raw, json) Hash identifier: Q7YaMWFAZLACbzLgn+QnQYMvqMw0bm43NJwuWJgQof0= Subject key identifier: 6C:21:33:5B:5B:1B:4D:22:9A:1C:5B:49:B0:E0:D2:BD:47:06:D5:44 Authority key identifier: E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62 Certificate issuer: /CN=A917F854/serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft Manifest number: 012B Signing time: Tue 07 Apr 2026 05:09:08 +0000 Manifest this update: Tue 07 Apr 2026 05:09:08 +0000 Manifest next update: Tue 14 Apr 2026 05:09:08 +0000 Files and hashes: 1: 4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl (hash: lKUoVeAOCfqHcyWz9Co7i1pEqq4gDjuA1Mkhq2stK68=) 2: DA21D1C8DF0711EFA13DFF77C4F9AE02.roa (hash: 1lIzFQEALQy8v+QadRa7FoXrMcnKcVBzKsOnfc22ih8=) 3: 3CE9A810799D11EF9547461CC4F9AE02.roa (hash: jyhxOeVpH0OFLETq5nPbqtVCOCG8G/oOvurrxR+iOB4=) 4: 3C74C0E0799D11EF9547461CC4F9AE02.roa (hash: 2lh0VekensC1iCGtapEG4/oWVTugB2CUNEuEgGTMM4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 05:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F854, serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762 Validity Not Before: Apr 7 05:09:08 2026 GMT Not After : Apr 14 05:09:08 2026 GMT Subject: CN=69d49174-674d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:57:e4:16:fa:e2:ce:c4:c8:b4:47:84:3c:11: ed:f5:3c:e0:d9:70:5d:8f:5a:09:25:68:ba:31:8a: 88:45:be:c7:8b:e7:74:f7:db:be:b3:bd:7c:37:70: 0f:f9:de:ac:dd:f2:e9:eb:7c:d4:ed:4d:a1:de:ce: 0f:fb:85:95:4a:6c:9a:47:0d:d1:1e:de:ae:14:07: 1f:a1:7f:d8:db:75:96:1a:fe:02:78:c7:5f:45:f8: 4a:84:28:e0:70:60:3a:56:7e:e0:3b:dc:b3:d1:3d: 6e:7e:68:b5:d1:a4:36:92:36:07:b1:d4:82:e5:12: 13:c6:2e:7d:36:e0:4c:3e:b4:42:31:03:1e:d5:74: 83:3a:b5:d5:0b:74:72:18:c9:d2:6e:ef:68:98:4f: ee:ca:c8:b2:03:53:e7:85:33:cd:aa:51:16:f9:cc: cc:89:59:96:d6:39:4d:c7:5c:45:b4:92:68:63:ad: 72:e9:78:2b:f9:c1:0d:c6:10:a6:70:b8:d7:19:2c: 18:3b:0d:2d:a5:57:aa:cb:ac:33:f9:ce:88:06:20: 3e:b6:f6:1e:ee:5a:72:86:18:bf:d4:3b:c5:b5:36: 0b:f9:a1:c0:c0:38:2d:f3:a6:f3:5d:f2:41:67:8b: 34:41:36:76:3d:4b:52:27:f0:98:be:34:a1:a5:50: 69:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:21:33:5B:5B:1B:4D:22:9A:1C:5B:49:B0:E0:D2:BD:47:06:D5:44 X509v3 Authority Key Identifier: keyid:E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:aa:03:bb:7b:a6:fc:50:67:a0:c8:79:92:2b:b4:53:67:04: 3c:4e:52:64:bb:28:95:4e:e8:03:4f:d2:e4:69:cf:07:1b:0d: 81:82:46:2a:4b:d7:73:61:2d:f0:19:77:7a:1d:ab:c5:27:be: 0b:6b:55:ec:4a:95:8d:8d:a2:46:27:56:6e:11:6d:6d:00:8c: db:89:dd:fa:01:fa:af:82:55:a7:f5:27:8d:d2:da:d8:b9:a4: 0e:9d:46:d8:1f:6d:8e:df:b8:07:1a:c3:ff:22:8f:10:21:b0: 49:7c:f6:07:9c:ee:d5:28:50:0a:a2:20:85:9f:69:b4:5b:4f: e6:32:08:dc:cd:57:1e:8f:46:9a:97:21:24:55:fb:b0:14:c5: 1a:4c:4a:42:a2:3e:b6:d0:72:d3:37:63:d7:1c:8d:27:b5:a6: d6:04:f1:76:f3:3a:47:99:23:48:11:51:a2:be:e9:46:34:ce: 23:d3:5d:48:eb:c8:05:26:44:0d:25:17:2c:62:2a:99:ad:dc: e9:02:23:f9:7d:fb:21:1b:ad:15:37:27:02:23:78:c6:72:7d: 4e:66:46:34:5c:18:c7:eb:e0:3c:36:75:b4:fa:9f:02:fc:b1: 21:bd:ff:bc:c5:e0:13:a1:79:e9:08:d4:70:0b:a4:59:b7:a9: 89:87:ca:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NTQxMTAvBgNVBAUTKEUxMUE0NzJGODQ5RkEzRDY2M0NBODdDQTY2MzNFQ0U3 RDhEMDA3NjIwHhcNMjYwNDA3MDUwOTA4WhcNMjYwNDE0MDUwOTA4WjAYMRYwFAYD VQQDEw02OWQ0OTE3NC02NzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFfkFvrizsTItEeEPBHt9Tzg2XBdj1oJJWi6MYqIRb7Hi+d099u+s718N3AP +d6s3fLp63zU7U2h3s4P+4WVSmyaRw3RHt6uFAcfoX/Y23WWGv4CeMdfRfhKhCjg cGA6Vn7gO9yz0T1ufmi10aQ2kjYHsdSC5RITxi59NuBMPrRCMQMe1XSDOrXVC3Ry GMnSbu9omE/uysiyA1PnhTPNqlEW+czMiVmW1jlNx1xFtJJoY61y6Xgr+cENxhCm cLjXGSwYOw0tpVeqy6wz+c6IBiA+tvYe7lpyhhi/1DvFtTYL+aHAwDgt86bzXfJB Z4s0QTZ2PUtSJ/CYvjShpVBpIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGwhM1tb G00imhxbSbDg0r1HBtVEMB8GA1UdIwQYMBaAFOEaRy+En6PWY8qHymYz7OfY0Adi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg1NC9BODk2NDY2MDc5 OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85Wmp5b2ZLWmpQczU5alFC MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRScEhMNFNmbzlaanlvZktaalBzNTlqUUIySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Rjg1NC9BODk2NDY2MDc5OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85 Wmp5b2ZLWmpQczU5alFCMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnKoDu3um/FBnoMh5kiu0U2cEPE5SZLsolU7oA0/S5GnPBxsNgYJGKkvXc2Et 8Bl3eh2rxSe+C2tV7EqVjY2iRidWbhFtbQCM24nd+gH6r4JVp/UnjdLa2LmkDp1G 2B9tjt+4BxrD/yKPECGwSXz2B5zu1ShQCqIghZ9ptFtP5jII3M1XHo9GmpchJFX7 sBTFGkxKQqI+ttBy0zdj1xyNJ7Wm1gTxdvM6R5kjSBFRor7pRjTOI9NdSOvIBSZE DSUXLGIqma3c6QIj+X37IRutFTcnAiN4xnJ9TmZGNFwYx+vgPDZ1tPqfAvyxIb3/ vMXgE6F56QjUcAukWbepiYfKmQ== -----END CERTIFICATE-----Generated at Tue Apr 7 13:32:31 2026 by rpki-client