$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: WqmHkUFOZqFextW7ZlpQn3P9NIcBJ75q/ug47xPVSGk= Subject key identifier: 1F:33:B2:AB:64:6B:38:AF:96:EB:29:2A:CA:14:B3:CA:EB:0B:38:F8 Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 0101 Signing time: Sun 05 Apr 2026 05:35:42 +0000 Manifest this update: Sun 05 Apr 2026 05:35:41 +0000 Manifest next update: Sun 12 Apr 2026 05:35:41 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: 5EzF1StCyc/yTJCPu1l0Pd5qIXZIYWep6rh86/SlIn4=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: oDbq8aHQpmwpTVbKMN5yg6duwCoRhyPVojQ6jr19VtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Apr 5 05:35:41 2026 GMT Not After : Apr 12 05:35:41 2026 GMT Subject: CN=69d1f4ae-ace0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a4:c9:d5:d1:5e:4d:c7:76:0d:78:76:d7:b7: 7d:a8:48:9c:23:74:cb:ee:c6:98:0b:89:6a:e5:21: 87:3d:d2:5e:5d:21:37:b0:1a:c0:50:e0:58:08:31: 07:72:1c:10:06:99:f6:7c:ef:ae:78:19:bb:07:77: ca:b2:75:30:f7:b9:06:ca:fb:d0:61:46:29:8b:7f: 1a:11:d7:b4:ae:60:68:78:1f:7e:d9:00:1e:68:f5: 50:b4:67:6b:13:8c:d0:bb:a9:9b:bc:5c:74:0c:22: 37:56:e2:8e:f1:ce:29:f0:3b:83:30:e9:cd:98:07: 61:0e:39:c5:7f:d8:2c:58:78:21:90:c4:f9:90:01: 65:10:ca:f7:cf:c9:44:57:e7:7d:47:d6:fd:5c:f6: 0c:41:c8:8e:6d:b7:bc:a6:6e:8c:4c:f5:4b:2c:fc: 93:8d:f5:72:75:52:b0:1f:3b:e4:d5:ce:3c:84:e6: 61:02:ab:9f:5d:4c:54:28:d8:ef:07:ee:b4:cd:dc: 12:d0:c1:4f:37:80:93:c2:12:09:6f:99:69:de:7c: e2:da:1a:17:35:64:81:dc:48:9f:fb:7e:b5:c8:9d: 79:19:a8:0e:77:87:3f:04:39:d1:5e:e5:18:91:f9: 38:9c:3e:da:90:15:d0:6c:45:7d:c5:5f:bf:d7:c4: 95:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:33:B2:AB:64:6B:38:AF:96:EB:29:2A:CA:14:B3:CA:EB:0B:38:F8 X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:f4:af:b5:3d:27:fe:a6:60:5f:4c:f2:8b:72:a1:ee:cc:8f: c9:3f:40:d6:c1:82:2e:3e:59:7f:2c:8c:f9:d0:6f:d0:92:60: 45:81:3c:d9:84:86:41:99:f2:a9:81:7e:e1:f5:45:ea:ae:b7: b0:af:2f:e6:38:ef:b9:f3:30:27:c4:a2:11:f0:ab:94:b4:a7: 6e:3c:fe:08:46:e8:2e:6d:0e:7a:79:81:10:de:c2:de:90:88: 50:11:16:ac:03:67:e0:84:de:ca:c1:20:b5:67:25:67:c0:b2: 18:f3:73:19:50:58:3f:2a:b7:ee:d3:95:00:10:42:b9:74:31: c6:8a:20:2d:3a:90:db:d3:14:ae:a8:49:f2:ae:53:84:8d:e7: b5:71:e7:86:48:05:51:35:c8:d8:c1:b5:f2:8c:b8:21:f8:cf: 52:5a:dc:1f:6e:1c:fe:38:20:c0:3b:3f:27:b4:b8:cf:cb:33: 2f:54:e3:53:85:2b:3f:70:14:3a:96:0b:70:0e:2b:79:bb:75: 8b:fb:8f:2a:f1:a1:6f:33:4c:b7:31:fc:d6:a6:52:ae:2b:79: 78:4d:1c:a1:a6:1a:04:b6:36:9a:55:9b:6d:f3:7f:21:88:27: 66:6d:a6:63:02:39:31:31:36:fc:53:de:66:55:fa:8b:17:2b: 0c:0a:74:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjYwNDA1MDUzNTQxWhcNMjYwNDEyMDUzNTQxWjAYMRYwFAYD VQQDEw02OWQxZjRhZS1hY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKTJ1dFeTcd2DXh217d9qEicI3TL7saYC4lq5SGHPdJeXSE3sBrAUOBYCDEH chwQBpn2fO+ueBm7B3fKsnUw97kGyvvQYUYpi38aEde0rmBoeB9+2QAeaPVQtGdr E4zQu6mbvFx0DCI3VuKO8c4p8DuDMOnNmAdhDjnFf9gsWHghkMT5kAFlEMr3z8lE V+d9R9b9XPYMQciObbe8pm6MTPVLLPyTjfVydVKwHzvk1c48hOZhAqufXUxUKNjv B+60zdwS0MFPN4CTwhIJb5lp3nzi2hoXNWSB3Eif+361yJ15GagOd4c/BDnRXuUY kfk4nD7akBXQbEV9xV+/18SVawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB8zsqtk azivluspKsoUs8rrCzj4MB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVfSvtT0n/qZgX0zyi3Kh7syPyT9A1sGCLj5ZfyyM+dBv0JJgRYE82YSGQZny qYF+4fVF6q63sK8v5jjvufMwJ8SiEfCrlLSnbjz+CEboLm0OenmBEN7C3pCIUBEW rANn4ITeysEgtWclZ8CyGPNzGVBYPyq37tOVABBCuXQxxoogLTqQ29MUrqhJ8q5T hI3ntXHnhkgFUTXI2MG18oy4IfjPUlrcH24c/jggwDs/J7S4z8szL1TjU4UrP3AU OpYLcA4rebt1i/uPKvGhbzNMtzH81qZSrit5eE0coaYaBLY2mlWbbfN/IYgnZm2m YwI5MTE2/FPeZlX6ixcrDAp0bQ== -----END CERTIFICATE-----Generated at Mon Apr 6 13:36:53 2026 by rpki-client