$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: wxms9UgigtaypdLEpUvkaNWs+XwQF9ym0+T08Yt6+HY= Subject key identifier: 81:1D:15:1D:75:B7:C1:FA:04:B8:A8:7B:C1:74:65:FF:1B:83:96:2B Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 35A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 355F Signing time: Sat 04 Apr 2026 14:22:45 +0000 Manifest this update: Sat 04 Apr 2026 14:22:44 +0000 Manifest next update: Sat 11 Apr 2026 14:22:44 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: NyffABVfmKY3wsiQK7gCv5b0uU2yYkwbKCi/O6OF/FI=) 2: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: CWD+yCy6yNtHR/CgsSdRActZ6Gz+ygW0qqlW1BWQfN0=) 3: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: ledywzn44AtfNdf65irkSbejoe2qe67kQVSrxPSpLj8=) 4: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: XdRb/RACDNGwlvNZO7BeLxx7KPhxjnZegADMOdEoBPs=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: izVvMKnosN85WDCwiZeSTea3usmMiFXGuieIuV+2wlI=) 6: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: c5BWjsV+5qy4Czn1fNB7N39xouqCRvW12ZZgXgS4ZDQ=) 7: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: qiT/GVvRCXwwQO5czxfwtuP70nIiPr4STQfaVH+7UL0=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: Im+A1kygYXCcmKM1N88CQpYfMfI1pkZXcprVNJAgc7Y=) 9: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: VXO5/U8cHHCFaikukuqO1qnp6nbKhmKzeuFoVz0LqaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13736 (0x35a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Apr 4 14:22:44 2026 GMT Not After : Apr 11 14:22:44 2026 GMT Subject: CN=69d11eb4-f869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f8:7e:73:2d:9f:dd:cf:bf:12:9c:3c:e2:7e: ea:2b:e3:17:bb:f0:54:10:8f:c2:d3:ce:d9:d0:2d: c3:b3:e5:68:ea:0e:05:8a:27:94:cf:74:5a:e3:c0: 9d:02:5a:6c:90:98:27:25:2b:64:62:b8:4a:ad:56: 76:e7:b1:c8:8c:a0:ca:83:8a:35:97:73:7c:6b:94: 43:55:0d:78:89:8e:81:d2:a4:ce:5d:e6:53:e8:3b: d5:33:e5:dd:f7:a0:c8:71:68:80:86:16:11:41:17: e8:d8:98:13:21:5f:d8:98:f2:4a:0d:df:87:2b:e0: ed:16:a1:54:1f:a6:eb:e2:7c:4d:b4:09:2d:09:dc: 67:9e:57:b2:fb:5a:cd:fb:50:76:bc:01:fc:d1:77: 61:31:0c:8e:97:8a:c2:ab:19:fd:e4:5c:df:8c:82: d4:3d:bb:00:d5:e4:b7:1a:a7:db:77:b4:25:ee:0b: be:d6:20:c2:0f:88:3c:6a:00:94:2a:02:ef:ee:9b: 34:af:49:46:30:ef:de:ce:aa:1b:a1:ff:04:1b:3b: b7:d7:e1:31:21:a9:59:2c:e7:b3:5b:21:27:76:35: 88:75:ad:dd:6c:9a:bc:04:57:41:72:94:4d:a1:0c: f3:c4:c9:18:f5:a1:e5:e9:2f:87:ea:3a:3d:a1:ba: 67:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1D:15:1D:75:B7:C1:FA:04:B8:A8:7B:C1:74:65:FF:1B:83:96:2B X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:97:b3:c6:02:eb:c0:6c:19:b7:04:0d:ca:81:70:53:8d:aa: 1d:be:a7:3b:1a:c8:7a:22:46:98:ce:d1:96:31:fe:ff:33:8c: 4f:4a:ba:42:b2:ad:86:e8:87:2f:0a:13:53:aa:3e:30:1d:3d: 54:83:0d:d7:20:79:c8:ae:9c:96:72:b1:25:c3:66:c7:ca:3a: 3d:e5:0d:84:1c:7f:33:59:c1:18:40:9c:78:43:70:50:c1:a5: fe:98:10:92:3e:55:3f:00:88:bf:03:36:83:66:56:3d:f7:96: 5c:9c:80:d8:32:fc:28:58:0b:26:e2:08:a1:48:9f:2d:dc:55: b1:d6:12:4e:6b:5d:b6:fc:7c:73:7a:e1:ae:0e:69:96:41:92: e0:54:2d:4a:a9:a7:ba:1c:c1:27:fa:0e:87:d2:85:ca:a6:e7: e5:6e:bf:6e:1e:1c:4c:1d:87:95:50:8f:25:be:09:28:04:2c: 40:15:99:bc:15:75:db:6f:c4:f6:b3:66:39:27:e5:3e:10:b9: ce:6e:5b:00:ff:a0:99:87:48:84:f1:0b:c3:f8:2e:e4:01:c4: c5:7d:03:1d:34:49:3a:cf:11:c0:4e:05:8a:99:2b:16:c7:d3: 2c:c4:fd:e0:e5:94:a4:b3:fd:e7:72:2f:fe:b3:52:56:45:78: fa:ef:68:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjYwNDA0MTQyMjQ0WhcNMjYwNDExMTQyMjQ0WjAYMRYwFAYD VQQDEw02OWQxMWViNC1mODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPh+cy2f3c+/Epw84n7qK+MXu/BUEI/C087Z0C3Ds+Vo6g4FiieUz3Ra48Cd AlpskJgnJStkYrhKrVZ257HIjKDKg4o1l3N8a5RDVQ14iY6B0qTOXeZT6DvVM+Xd 96DIcWiAhhYRQRfo2JgTIV/YmPJKDd+HK+DtFqFUH6br4nxNtAktCdxnnley+1rN +1B2vAH80XdhMQyOl4rCqxn95FzfjILUPbsA1eS3Gqfbd7Ql7gu+1iDCD4g8agCU KgLv7ps0r0lGMO/ezqobof8EGzu31+ExIalZLOezWyEndjWIda3dbJq8BFdBcpRN oQzzxMkY9aHl6S+H6jo9obpn5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIEdFR11 t8H6BLioe8F0Zf8bg5YrMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR5ezxgLrwGwZtwQNyoFwU42qHb6nOxrIeiJGmM7RljH+/zOMT0q6QrKthuiH LwoTU6o+MB09VIMN1yB5yK6clnKxJcNmx8o6PeUNhBx/M1nBGECceENwUMGl/pgQ kj5VPwCIvwM2g2ZWPfeWXJyA2DL8KFgLJuIIoUifLdxVsdYSTmtdtvx8c3rhrg5p lkGS4FQtSqmnuhzBJ/oOh9KFyqbn5W6/bh4cTB2HlVCPJb4JKAQsQBWZvBV122/E 9rNmOSflPhC5zm5bAP+gmYdIhPELw/gu5AHExX0DHTRJOs8RwE4FipkrFsfTLMT9 4OWUpLP953Iv/rNSVkV4+u9oDg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:48 2026 by rpki-client