$ rpki-client -vvf rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft File: DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft (raw, json) Hash identifier: bp8gN96xm91/MGkag6xVOUFJPDeaqi3yJAHJF9+5y5A= Subject key identifier: D2:E5:1A:CA:85:8E:85:72:76:9B:FD:34:8C:F0:B5:B3:87:9F:A4:1E Authority key identifier: 0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E Certificate issuer: /CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Certificate serial: 0AAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft Manifest number: 0AA2 Signing time: Sun 26 Apr 2026 19:25:38 +0000 Manifest this update: Sun 26 Apr 2026 19:25:37 +0000 Manifest next update: Sun 03 May 2026 19:25:37 +0000 Files and hashes: 1: DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl (hash: OfHfXmG2XZrr5tO1KaekKV3793BLgmIkicSirgvuzfo=) 2: A42489D8799211EAA230E17FC4F9AE02.roa (hash: ISmZrMAJhwcmsro9bEaqHnNsjBknpoO3JY21muedtdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 19:25:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2733 (0xaad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FE31, serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Validity Not Before: Apr 26 19:25:37 2026 GMT Not After : May 3 19:25:37 2026 GMT Subject: CN=69ee66b1-f012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:fd:ae:a0:3b:8c:77:19:35:04:91:12:0e: f4:c5:1f:a8:ed:71:32:03:53:40:af:7f:61:45:86: 64:41:93:da:1f:09:e9:fc:65:b8:90:ca:8d:d7:c5: 7a:c0:f1:51:d3:d7:a2:0a:08:c6:a5:4c:40:57:56: 7b:7d:a6:72:57:4b:19:5f:38:6a:be:da:46:38:df: 5e:7f:b1:6d:93:4b:be:fc:52:38:a2:46:4c:0b:f6: a8:f0:f1:d8:a2:e6:54:58:ca:5a:92:37:62:1d:c4: d2:b0:b8:99:fe:eb:ee:18:cd:0a:c9:42:8c:24:bd: 31:a4:4c:fd:32:7a:34:fd:d4:75:97:56:1c:a2:ca: 9c:11:94:9b:ae:b1:e8:e8:e3:93:14:06:be:15:30: 0c:73:3b:77:ba:bc:18:50:5e:6c:52:bc:d4:fb:63: ee:37:1b:01:d4:c8:3c:9c:2e:11:d1:fe:0b:dd:47: 4f:e1:74:52:a9:78:99:f7:c4:bc:5f:0a:1e:ac:b5: f0:9a:d9:ea:72:e8:1c:c0:5b:fc:e0:95:bb:4b:c0: f6:ff:dd:04:fc:64:0d:ac:a6:c1:8f:26:80:02:8e: 42:73:03:f8:ab:79:d8:dd:7c:af:5e:1b:17:cf:ca: f9:7c:46:f8:1d:af:42:e7:48:1b:a5:01:ce:7b:a4: 01:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E5:1A:CA:85:8E:85:72:76:9B:FD:34:8C:F0:B5:B3:87:9F:A4:1E X509v3 Authority Key Identifier: keyid:0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:de:ef:8f:2f:64:d0:0c:70:20:0d:4f:b9:aa:fe:36:5b:09: b8:ec:5f:71:a2:55:14:3b:a1:f8:1b:dd:a8:87:03:6e:85:57: c2:36:9f:34:98:42:21:af:56:87:07:41:66:54:4d:36:d1:c9: 51:fa:ab:e6:3f:1e:d0:08:ef:6a:cf:f3:b2:55:77:68:77:ac: 28:78:9c:26:d7:5f:7c:6b:ca:2e:3d:64:e7:f6:01:27:be:41: e0:2c:50:cf:02:d8:a3:a3:6c:0f:e0:39:35:b9:91:95:8f:51: 76:57:73:b1:ab:cb:86:8a:5e:59:c2:5f:86:71:f5:ad:c1:a1: 73:2a:a5:b5:bd:52:4e:93:66:f0:0a:1a:f9:7c:89:6b:55:d8: 24:7d:bf:ce:2f:bf:5e:fd:b0:d9:f3:15:f2:4d:14:78:a7:b6: e7:9e:59:65:24:c0:59:dc:ec:06:f0:d5:3e:69:55:3e:8e:db: 07:36:74:70:98:07:3b:74:91:57:da:c8:98:de:02:85:06:f9: 92:25:e6:f9:fd:3a:be:10:ce:49:2e:24:50:40:32:14:35:47: 2c:28:24:70:74:f8:09:b4:3e:43:2e:a3:fc:94:96:dc:b5:e7: 55:37:0b:11:7c:59:63:19:f3:79:99:c8:d6:18:33:62:46:ca: 22:1e:0f:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFMzExMTAvBgNVBAUTKDBFNkE0MzAxOTU2OEY5NzcxMTRFNkQ0NjVCMEE2RjU1 NjlGNTM4M0UwHhcNMjYwNDI2MTkyNTM3WhcNMjYwNTAzMTkyNTM3WjAYMRYwFAYD VQQDEw02OWVlNjZiMS1mMDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5T9rqA7jHcZNQSREg70xR+o7XEyA1NAr39hRYZkQZPaHwnp/GW4kMqN18V6 wPFR09eiCgjGpUxAV1Z7faZyV0sZXzhqvtpGON9ef7Ftk0u+/FI4okZMC/ao8PHY ouZUWMpakjdiHcTSsLiZ/uvuGM0KyUKMJL0xpEz9Mno0/dR1l1YcosqcEZSbrrHo 6OOTFAa+FTAMczt3urwYUF5sUrzU+2PuNxsB1Mg8nC4R0f4L3UdP4XRSqXiZ98S8 XwoerLXwmtnqcugcwFv84JW7S8D2/90E/GQNrKbBjyaAAo5CcwP4q3nY3XyvXhsX z8r5fEb4Ha9C50gbpQHOe6QB3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNLlGsqF joVydpv9NIzwtbOHn6QeMB8GA1UdIwQYMBaAFA5qQwGVaPl3EU5tRlsKb1Vp9Tg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkUzMS9BQjc5NTZENDc5 MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1YY1JUbTFHV3dwdlZXbjFP RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtcERBWlZvLVhjUlRtMUdXd3B2VlduMU9ENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkUzMS9BQjc5NTZENDc5MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1Y Y1JUbTFHV3dwdlZXbjFPRDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcd7vjy9k0AxwIA1Puar+NlsJuOxfcaJVFDuh+BvdqIcDboVXwjafNJhCIa9W hwdBZlRNNtHJUfqr5j8e0Ajvas/zslV3aHesKHicJtdffGvKLj1k5/YBJ75B4CxQ zwLYo6NsD+A5NbmRlY9RdldzsavLhopeWcJfhnH1rcGhcyqltb1STpNm8Aoa+XyJ a1XYJH2/zi+/Xv2w2fMV8k0UeKe2555ZZSTAWdzsBvDVPmlVPo7bBzZ0cJgHO3SR V9rImN4ChQb5kiXm+f06vhDOSS4kUEAyFDVHLCgkcHT4CbQ+Qy6j/JSW3LXnVTcL EXxZYxnzeZnI1hgzYkbKIh4PPg== -----END CERTIFICATE-----Generated at Tue Apr 28 07:27:48 2026 by rpki-client