$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: 4Hp+DMNsm2i2sASvmJnmMZmxJ++y+F1Pwt/gWIh3/us= Subject key identifier: 02:A3:AC:FD:23:5E:37:14:B6:77:C8:77:9A:BF:81:18:14:01:96:6A Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 01A0 Signing time: Sun 05 Apr 2026 03:41:59 +0000 Manifest this update: Sun 05 Apr 2026 03:41:59 +0000 Manifest next update: Sun 12 Apr 2026 03:41:59 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: 4xwVFCFHbyZh4GcgfzNJquklyxRe+AWoF52DZe0ZNEw=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: 4Xxfcn9vWAxmFmsir9WaEVwPirqEsxparkquZplonJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Apr 5 03:41:59 2026 GMT Not After : Apr 12 03:41:59 2026 GMT Subject: CN=69d1da07-26de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1d:21:36:5c:fa:3c:bf:1d:5e:5d:d2:b5:71: d4:02:3d:0b:0c:02:74:d1:c7:ad:d7:6c:a0:3b:d0: cf:69:02:0f:87:66:d9:82:eb:4b:60:e9:67:0f:d4: 98:0a:f3:03:d8:71:a6:59:15:e7:48:f5:ae:e8:a2: 0f:c1:10:87:e9:3f:de:96:3d:e2:1b:56:1e:37:2a: 98:70:a8:91:21:ad:35:75:c3:1b:01:87:59:4c:d6: 18:2b:f1:0d:fe:50:34:be:82:82:c6:72:fc:36:14: 68:bd:73:87:fb:43:ef:05:ed:2a:b1:2f:68:6b:b8: 29:e6:1d:20:94:23:c6:2a:52:73:01:b2:4f:54:c8: 03:cd:e1:f4:31:68:41:28:12:10:2e:a2:3d:c5:d9: 64:53:28:69:92:35:e9:7e:b2:8d:af:85:be:fc:63: 31:3c:f3:54:d9:6f:de:c4:e6:b2:0c:f6:a6:0a:d4: 25:1c:18:bf:49:11:d2:6f:df:ad:c8:3b:8a:98:9d: ac:4d:02:23:34:26:97:60:59:ab:98:d2:fb:d7:a4: 62:f3:20:f5:08:5e:58:39:60:c9:03:68:a9:78:5b: ff:0c:84:70:12:bf:a1:c3:03:b8:74:3f:dc:a6:c2: 71:dc:48:9e:de:63:25:55:da:1b:63:db:20:c3:d3: 12:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A3:AC:FD:23:5E:37:14:B6:77:C8:77:9A:BF:81:18:14:01:96:6A X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:19:d7:a9:2b:98:81:f3:6e:92:db:9b:ea:8d:52:d6:82:85: fe:9d:3c:66:e2:91:d2:f3:fe:1d:6a:f0:15:3e:66:8d:11:d2: e7:78:ef:cb:05:aa:b2:86:11:8b:89:26:0c:73:20:4a:d8:8b: fd:17:3c:05:76:f7:6a:ad:9c:30:ab:5c:cb:db:b5:c3:3d:00: 1b:b9:9d:6b:a6:f1:d0:b9:fc:32:bb:23:a9:38:bc:99:11:4a: e2:bc:47:03:ed:b7:75:d2:89:57:cd:60:ca:63:86:7a:91:94: ce:a6:e1:4d:a3:57:2f:b4:e7:b7:4b:f3:2c:7e:4f:e6:9d:5e: 96:87:66:1f:c4:96:a4:25:4f:16:c9:e7:41:d3:86:44:19:be: 35:7b:d8:db:57:95:68:a6:a9:f0:47:93:5a:ba:98:43:e1:30: dd:f3:07:c1:c5:9d:11:ad:14:fa:6b:ed:f3:64:1e:5a:14:81: 2c:6f:64:98:69:e6:7e:56:0c:28:bc:a7:3c:6d:49:cf:55:89: 75:af:f9:09:6d:b0:ad:8f:52:4e:56:ae:bb:5b:87:7c:31:49: df:e4:18:b2:92:fc:8d:a7:ec:89:34:3a:27:b8:47:57:4a:75: 60:67:7b:a8:5d:f9:63:e3:be:68:83:b4:aa:df:dc:5e:92:c5: 6b:d5:68:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjYwNDA1MDM0MTU5WhcNMjYwNDEyMDM0MTU5WjAYMRYwFAYD VQQDEw02OWQxZGEwNy0yNmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3B0hNlz6PL8dXl3StXHUAj0LDAJ00cet12ygO9DPaQIPh2bZgutLYOlnD9SY CvMD2HGmWRXnSPWu6KIPwRCH6T/elj3iG1YeNyqYcKiRIa01dcMbAYdZTNYYK/EN /lA0voKCxnL8NhRovXOH+0PvBe0qsS9oa7gp5h0glCPGKlJzAbJPVMgDzeH0MWhB KBIQLqI9xdlkUyhpkjXpfrKNr4W+/GMxPPNU2W/exOayDPamCtQlHBi/SRHSb9+t yDuKmJ2sTQIjNCaXYFmrmNL716Ri8yD1CF5YOWDJA2ipeFv/DIRwEr+hwwO4dD/c psJx3Eie3mMlVdobY9sgw9MSTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAKjrP0j XjcUtnfId5q/gRgUAZZqMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnBnXqSuYgfNuktub6o1S1oKF/p08ZuKR0vP+HWrwFT5mjRHS53jvywWqsoYR i4kmDHMgStiL/Rc8BXb3aq2cMKtcy9u1wz0AG7mda6bx0Ln8MrsjqTi8mRFK4rxH A+23ddKJV81gymOGepGUzqbhTaNXL7Tnt0vzLH5P5p1elodmH8SWpCVPFsnnQdOG RBm+NXvY21eVaKap8EeTWrqYQ+Ew3fMHwcWdEa0U+mvt82QeWhSBLG9kmGnmflYM KLynPG1Jz1WJda/5CW2wrY9STlauu1uHfDFJ3+QYspL8jafsiTQ6J7hHV0p1YGd7 qF35Y+O+aIO0qt/cXpLFa9Volw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:29 2026 by rpki-client