$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: UQF3altGBi3yVzC+2ATfIYQ0PlhDDlDcu52khzdMmps= Subject key identifier: 55:53:80:50:3E:AA:99:F5:9C:09:59:E9:5A:0C:AD:AD:10:CB:54:53 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2E4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2DCA Signing time: Sat 04 Apr 2026 15:27:44 +0000 Manifest this update: Sat 04 Apr 2026 15:27:44 +0000 Manifest next update: Sat 11 Apr 2026 15:27:44 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: lbVFbmGjeBTvOnItfMuvx1RyIGxm19NJp8Iw/ocLuVk=) 2: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 98d7Szz1xVrKOjRtTK04BwOwzNCfjc24NwJ5XcHSo3Y=) 3: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: I9utLoQOo+FgrMzcmZ+nktkwChduEwkgHWKAKFKVei8=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: WjyM3KD8j7LYktjGDYnf9TzfHp76S+j3QqZZ2zALeh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11850 (0x2e4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Apr 4 15:27:44 2026 GMT Not After : Apr 11 15:27:44 2026 GMT Subject: CN=69d12df0-a4f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f2:e3:d8:8b:95:56:25:24:cf:fe:43:87:2a: 3b:06:19:1a:64:6a:9d:61:69:22:aa:37:7e:74:0f: 6d:f4:f3:08:a3:80:5f:3d:bc:10:f0:9b:83:de:1f: 11:51:d5:57:06:1d:b6:92:c9:ed:f2:38:8e:ac:c2: 33:cc:07:b8:01:04:47:78:11:54:d1:f5:a2:ea:34: 0d:fb:16:87:2d:1d:c3:62:75:b3:f6:34:fa:21:a5: 9e:40:5d:e3:9e:0b:c0:0a:d5:20:1d:13:52:9b:a7: 95:73:3a:a3:ce:16:cc:7d:b6:c8:37:db:e3:08:53: 9c:a0:41:42:cf:0a:bb:3f:dd:a4:b2:7f:c9:59:c4: 0b:fe:78:a0:6f:1f:ff:a3:cd:e3:9e:e3:fe:12:27: 3e:48:a1:0e:8e:81:2e:e1:d0:81:c2:7f:e6:16:b7: fa:64:61:00:88:46:e8:fa:19:f1:de:ff:5c:cb:5a: ec:7d:55:2a:82:82:c5:04:8b:41:6f:24:c7:44:74: 46:ec:43:64:5f:38:b0:f1:4b:a5:4a:21:8a:3f:0c: 1d:f1:24:3a:52:95:5e:7a:f5:5e:35:43:db:1b:e0: 3c:87:e1:25:3b:cf:2d:0c:8d:d5:3d:00:e0:86:31: 34:da:c7:68:13:ee:2e:33:7d:4a:86:2d:38:51:85: 5a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:53:80:50:3E:AA:99:F5:9C:09:59:E9:5A:0C:AD:AD:10:CB:54:53 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:4a:17:65:84:19:7c:0f:86:31:28:ac:9b:86:de:ab:e6:a6: 28:84:e1:1c:94:d7:8f:12:fc:08:7f:1a:1d:af:d0:3f:2d:29: 5c:97:93:b8:69:66:da:0a:46:b8:cf:5b:0d:7f:1e:01:f0:fe: 66:19:63:8f:86:7e:47:4f:c1:5c:8b:af:98:a9:e8:36:42:9e: 56:6d:dd:ce:53:ba:22:e6:4f:67:8b:22:a3:74:f9:88:59:39: 22:83:0a:cf:72:63:fc:16:74:af:69:a4:dc:2c:85:61:a2:0a: 47:3f:7c:a7:14:e2:7e:61:8c:6c:81:6d:ad:42:97:fc:88:61: 4c:78:3b:a3:80:8e:fd:cd:b5:22:15:b2:b1:d8:5c:dc:dd:bf: df:35:67:f7:0b:01:dd:92:3c:33:b8:9e:c5:4f:e9:3b:46:1b: 83:2f:d9:bd:d6:43:37:04:27:6d:ac:70:89:b0:0c:96:76:b1: 48:9e:aa:eb:3d:ce:e6:bf:97:7b:e3:9b:ae:3c:f2:ab:7d:03: f3:28:12:71:0b:0f:42:4d:84:51:be:98:b7:53:3d:e6:1b:6d: 5a:d9:df:e2:23:a7:22:8c:66:39:ee:c6:61:3e:bc:97:4a:e7: 8e:0d:18:6f:19:46:97:00:81:9e:00:df:85:73:bb:86:2e:c3: 03:95:e8:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjYwNDA0MTUyNzQ0WhcNMjYwNDExMTUyNzQ0WjAYMRYwFAYD VQQDEw02OWQxMmRmMC1hNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPLj2IuVViUkz/5Dhyo7BhkaZGqdYWkiqjd+dA9t9PMIo4BfPbwQ8JuD3h8R UdVXBh22ksnt8jiOrMIzzAe4AQRHeBFU0fWi6jQN+xaHLR3DYnWz9jT6IaWeQF3j ngvACtUgHRNSm6eVczqjzhbMfbbIN9vjCFOcoEFCzwq7P92ksn/JWcQL/nigbx// o83jnuP+Eic+SKEOjoEu4dCBwn/mFrf6ZGEAiEbo+hnx3v9cy1rsfVUqgoLFBItB byTHRHRG7ENkXziw8UulSiGKPwwd8SQ6UpVeevVeNUPbG+A8h+ElO88tDI3VPQDg hjE02sdoE+4uM31Khi04UYVa8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFVTgFA+ qpn1nAlZ6VoMra0Qy1RTMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlkoXZYQZfA+GMSism4beq+amKIThHJTXjxL8CH8aHa/QPy0pXJeTuGlm2gpG uM9bDX8eAfD+Zhljj4Z+R0/BXIuvmKnoNkKeVm3dzlO6IuZPZ4sio3T5iFk5IoMK z3Jj/BZ0r2mk3CyFYaIKRz98pxTifmGMbIFtrUKX/IhhTHg7o4CO/c21IhWysdhc 3N2/3zVn9wsB3ZI8M7iexU/pO0Ybgy/ZvdZDNwQnbaxwibAMlnaxSJ6q6z3O5r+X e+Obrjzyq30D8ygScQsPQk2EUb6Yt1M95httWtnf4iOnIoxmOe7GYT68l0rnjg0Y bxlGlwCBngDfhXO7hi7DA5Xo3g== -----END CERTIFICATE-----Generated at Mon Apr 6 08:42:08 2026 by rpki-client