$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: VlpYLf/w8vMqaNj+cvZmcitMl75rbKKwgx9HAaju/sk= Subject key identifier: 1C:0D:CC:3C:45:66:2D:14:95:67:7E:38:C1:8F:3D:DA:B1:82:1E:D2 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0567 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 0555 Signing time: Sat 04 Apr 2026 23:12:42 +0000 Manifest this update: Sat 04 Apr 2026 23:12:41 +0000 Manifest next update: Sat 11 Apr 2026 23:12:41 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: 252tfaxf8iV/cUxsup1oQMiEW8DQwc7Qw4Fx5Ptnubk=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: MUl/v1p+vm1Iz1fhfXWdiu0rlYEkwrSBTJH5GlDUE7w=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: kvqSrwpHPLZJw/K+1ltO2ek3REXXe9HMAbW/Edna9+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1383 (0x567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Apr 4 23:12:41 2026 GMT Not After : Apr 11 23:12:41 2026 GMT Subject: CN=69d19aea-3eb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:39:66:54:fd:81:cd:fd:74:7f:df:77:ab:c6: 8f:49:8c:3f:93:67:f0:99:2d:92:8b:31:06:d7:db: ab:d5:20:b2:bf:6e:46:9c:c2:79:9f:f3:40:84:7e: fd:a6:a9:8a:27:64:7e:aa:3f:20:1f:33:17:43:6b: ef:dc:31:63:d8:83:81:6d:2f:0e:94:2d:d2:09:b0: ea:a3:75:61:4d:72:8c:86:ef:a9:b6:c3:07:43:52: 4d:d0:02:bd:5c:ec:9f:1a:b9:e4:71:0d:69:4d:bb: e9:87:4d:26:1f:7c:a3:2a:8c:73:88:3a:f3:a5:60: e0:34:53:62:18:fc:94:5b:d9:82:3d:00:41:b0:4d: 8e:a4:39:21:f6:31:75:aa:31:78:11:20:37:fa:d3: 66:13:3c:bc:5b:32:a3:4b:f1:aa:f2:b0:5a:46:79: 33:d0:97:e1:af:b0:55:9e:71:42:4c:17:17:1c:dc: 35:df:7c:5d:88:8b:8c:58:9b:d0:26:28:bd:97:2b: 65:c9:c4:82:e3:e8:b9:0f:85:e6:22:fc:82:09:b5: c9:f6:93:ed:41:40:68:d1:b1:ce:90:9c:b6:aa:ac: 3b:3f:73:4a:e4:40:80:a3:29:55:fe:62:35:0c:35: eb:b9:e7:5d:d8:96:45:b8:22:eb:bd:37:0c:de:2f: ec:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:0D:CC:3C:45:66:2D:14:95:67:7E:38:C1:8F:3D:DA:B1:82:1E:D2 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:ad:3a:56:62:4a:ea:3b:72:ba:d2:66:4b:47:dc:37:db:1d: 12:71:c2:6f:9c:e0:73:98:f7:a4:81:e6:62:03:85:35:77:e2: 4f:18:2c:bb:57:2a:98:1d:8e:da:b4:aa:53:d3:8c:ad:2e:25: ef:e3:82:7f:4a:6d:d0:12:7d:1f:d2:0c:d5:96:7b:75:6c:70: 6b:6b:68:4b:73:a4:6f:75:b2:1e:7f:ef:0a:4b:af:a4:ce:f3: 15:68:d7:1b:b6:b4:34:cd:c8:74:30:78:e2:46:f6:4c:52:5d: 39:d5:82:cd:23:82:b2:ca:d9:85:0e:21:1a:4c:f3:10:f2:4e: c5:ef:eb:87:f5:33:78:fb:6c:cd:e8:ed:02:fa:55:52:4f:6d: 36:d9:c9:17:0c:69:3a:68:d1:7c:92:c2:23:37:2e:e4:4f:ae: 4e:3d:d7:e0:a3:76:aa:cb:fa:e0:4d:23:73:cf:04:d5:f0:66: cb:fc:aa:9b:9c:fe:22:58:a5:9f:ff:0e:f1:02:5c:36:56:1c: af:c8:8b:83:87:10:a6:3c:f3:6f:56:af:2a:cb:fb:a5:02:eb: fc:84:4f:fb:89:df:15:ed:4d:c0:80:b0:a2:17:ca:37:e5:c2: ea:a0:5e:e9:19:9b:bc:ff:ad:cf:59:c9:9e:73:56:27:bc:b6: 7f:3c:16:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjYwNDA0MjMxMjQxWhcNMjYwNDExMjMxMjQxWjAYMRYwFAYD VQQDEw02OWQxOWFlYS0zZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzlmVP2Bzf10f993q8aPSYw/k2fwmS2SizEG19ur1SCyv25GnMJ5n/NAhH79 pqmKJ2R+qj8gHzMXQ2vv3DFj2IOBbS8OlC3SCbDqo3VhTXKMhu+ptsMHQ1JN0AK9 XOyfGrnkcQ1pTbvph00mH3yjKoxziDrzpWDgNFNiGPyUW9mCPQBBsE2OpDkh9jF1 qjF4ESA3+tNmEzy8WzKjS/Gq8rBaRnkz0Jfhr7BVnnFCTBcXHNw133xdiIuMWJvQ Jii9lytlycSC4+i5D4XmIvyCCbXJ9pPtQUBo0bHOkJy2qqw7P3NK5ECAoylV/mI1 DDXruedd2JZFuCLrvTcM3i/sNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBwNzDxF Zi0UlWd+OMGPPdqxgh7SMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhK06VmJK6jtyutJmS0fcN9sdEnHCb5zgc5j3pIHmYgOFNXfiTxgsu1cqmB2O 2rSqU9OMrS4l7+OCf0pt0BJ9H9IM1ZZ7dWxwa2toS3Okb3WyHn/vCkuvpM7zFWjX G7a0NM3IdDB44kb2TFJdOdWCzSOCssrZhQ4hGkzzEPJOxe/rh/UzePtszejtAvpV Uk9tNtnJFwxpOmjRfJLCIzcu5E+uTj3X4KN2qsv64E0jc88E1fBmy/yqm5z+Ilil n/8O8QJcNlYcr8iLg4cQpjzzb1avKsv7pQLr/IRP+4nfFe1NwICwohfKN+XC6qBe 6RmbvP+tz1nJnnNWJ7y2fzwWJA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:33:57 2026 by rpki-client