$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: xXxdo3DMtiN3dKr9oTgyhOZ+RiZ8RflaV0tFBxdOxlw= Subject key identifier: F7:14:30:40:1E:EE:A4:6F:3F:14:91:FF:2B:16:52:DF:1D:B1:F6:AB Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: F3 Signing time: Sat 04 Apr 2026 22:22:43 +0000 Manifest this update: Sat 04 Apr 2026 22:22:43 +0000 Manifest next update: Sat 11 Apr 2026 22:22:43 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: WLKATVY3nLtRn8blr43/lPQcnAMQ+jFrC5JTAIZs0Wk=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: c+4urNgJNXNWBhwpLiUNezIdmF5mlVJxmjpsI9/AkQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Apr 4 22:22:43 2026 GMT Not After : Apr 11 22:22:43 2026 GMT Subject: CN=69d18f33-d5b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0b:aa:3b:4d:65:8e:57:57:9e:27:b8:17:d1: 70:be:35:de:a2:40:2e:30:97:b4:64:fe:e7:5e:82: 6c:58:25:f4:84:31:7e:e9:d7:0e:bd:1a:73:f1:3c: 3d:01:a1:d5:b3:b3:78:a1:f4:be:d0:33:52:3d:75: af:9b:62:e2:17:82:30:1b:4d:b3:84:88:98:e9:63: 97:46:99:f2:ad:02:79:60:48:6d:15:3a:29:ee:32: 70:cc:a0:b2:c6:f0:36:f2:fe:66:e5:45:82:cc:12: 2e:c5:4e:e8:a0:77:dd:5d:2c:6c:4c:45:1b:aa:f0: 05:f2:c8:0d:bb:ba:f9:c1:93:75:5d:12:9b:db:78: fc:26:54:2f:88:49:67:0e:cd:62:ed:14:c5:cf:2d: c5:9d:85:c8:5a:cf:49:5a:d6:6c:ca:39:d4:0c:2e: ff:dd:a4:ed:84:fc:ba:fb:65:b3:82:d6:e7:10:78: 1c:82:9f:bf:64:7d:cc:bf:ca:e8:44:f4:52:86:c5: dd:13:63:aa:93:8a:6b:20:f5:74:06:d2:2b:87:7f: 76:40:eb:fb:53:99:fb:59:62:ad:91:ec:94:e0:44: a1:00:71:23:e7:6a:d2:65:26:f6:b3:93:37:a6:77: 31:10:fe:d1:3b:7e:ed:f8:93:33:54:41:91:50:2c: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:14:30:40:1E:EE:A4:6F:3F:14:91:FF:2B:16:52:DF:1D:B1:F6:AB X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:67:4f:dd:ae:a4:5f:50:c2:35:5a:57:a2:d2:e6:89:6b:00: 89:a6:8a:a9:5d:15:c5:d3:ef:ba:02:5e:74:c3:45:b1:74:f6: 4e:fd:dc:50:65:5f:f9:1e:f6:90:ff:85:a8:9b:a9:e9:02:90: 5e:f4:68:b2:0f:30:74:7b:a2:92:5b:03:10:2a:c0:92:6e:b6: 8a:19:1e:4e:7c:ed:0a:a4:44:d1:ac:4d:1e:7e:cd:f4:1d:e6: b6:da:61:67:c0:56:f2:31:02:1c:a9:83:e6:60:0b:f5:f2:95: 0d:9b:52:a4:cd:66:87:36:c1:b2:d5:14:fa:05:a0:0d:d5:0a: ea:82:e9:b9:7d:e1:36:2b:b5:d3:9b:8c:60:4e:16:b0:06:35: 4f:40:d5:09:97:42:49:4a:14:fd:bb:20:5f:48:4f:21:73:51: 0a:e5:08:85:e9:f8:3e:3e:ac:40:01:ea:3c:2c:44:f0:8b:44: 42:6d:92:35:07:2b:e2:d4:2d:22:bb:03:c3:39:27:be:2d:ca: 43:31:ab:36:35:4a:c2:70:36:51:1e:bc:a0:a0:6d:bc:0b:ac: 1c:19:6e:3b:6f:c2:2e:c2:22:f9:a7:56:b8:5d:dc:12:47:17: 67:f7:22:f5:00:78:70:d3:7c:99:33:1e:ad:09:a5:04:73:81: f3:46:2f:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKDY4NDEzRDQxRjYwMDVFMDMxNkUwRTI1NzZGMjI2QzIx ODhBQTE1NkYwHhcNMjYwNDA0MjIyMjQzWhcNMjYwNDExMjIyMjQzWjAYMRYwFAYD VQQDEw02OWQxOGYzMy1kNWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQuqO01ljldXnie4F9FwvjXeokAuMJe0ZP7nXoJsWCX0hDF+6dcOvRpz8Tw9 AaHVs7N4ofS+0DNSPXWvm2LiF4IwG02zhIiY6WOXRpnyrQJ5YEhtFTop7jJwzKCy xvA28v5m5UWCzBIuxU7ooHfdXSxsTEUbqvAF8sgNu7r5wZN1XRKb23j8JlQviEln Ds1i7RTFzy3FnYXIWs9JWtZsyjnUDC7/3aTthPy6+2WzgtbnEHgcgp+/ZH3Mv8ro RPRShsXdE2Oqk4prIPV0BtIrh392QOv7U5n7WWKtkeyU4EShAHEj52rSZSb2s5M3 pncxEP7RO37t+JMzVEGRUCyi1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPcUMEAe 7qRvPxSR/ysWUt8dsfarMB8GA1UdIwQYMBaAFGhBPUH2AF4DFuDiV28ibCGIqhVv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi9GNjk5RTM1NENG MTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhnTVc0T0pYYnlKc0lZaXFG VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi9GNjk5RTM1NENGMTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhn TVc0T0pYYnlKc0lZaXFGVzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcmdP3a6kX1DCNVpXotLmiWsAiaaKqV0VxdPvugJedMNFsXT2Tv3cUGVf+R72 kP+FqJup6QKQXvRosg8wdHuiklsDECrAkm62ihkeTnztCqRE0axNHn7N9B3mttph Z8BW8jECHKmD5mAL9fKVDZtSpM1mhzbBstUU+gWgDdUK6oLpuX3hNiu105uMYE4W sAY1T0DVCZdCSUoU/bsgX0hPIXNRCuUIhen4Pj6sQAHqPCxE8ItEQm2SNQcr4tQt IrsDwzknvi3KQzGrNjVKwnA2UR68oKBtvAusHBluO2/CLsIi+adWuF3cEkcXZ/ci 9QB4cNN8mTMerQmlBHOB80YvzA== -----END CERTIFICATE-----Generated at Mon Apr 6 15:15:56 2026 by rpki-client