$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: FE8A+owB8R/TIP1Fqmeq9g2cGVwW5NZi6jASIfvyQFU= Subject key identifier: B9:D9:CD:19:C1:BE:9A:40:5E:F6:45:84:10:ED:BB:2A:D6:5A:29:D6 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 10F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 10AE Signing time: Sat 04 Apr 2026 17:16:39 +0000 Manifest this update: Sat 04 Apr 2026 17:16:38 +0000 Manifest next update: Sat 11 Apr 2026 17:16:38 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: 9fQsMsSKVHlM/0jKDPil+6R7DOSxFodFQEQgYvhQh3I=) 2: 2E680D2AC99911F0BDA2F55CC4F9AE02.roa (hash: Nvtm5zPUTLfKMfwQNw1RkItbZZ/wblgNOEK3hvT7oKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4336 (0x10f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Apr 4 17:16:38 2026 GMT Not After : Apr 11 17:16:38 2026 GMT Subject: CN=69d14777-10c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:14:ae:11:d7:f1:b6:e2:11:92:a4:e0:8d:ad: ee:92:32:8a:0e:e9:00:e2:90:42:b9:14:01:42:72: 11:3b:8a:f7:52:7a:f2:63:33:55:19:38:66:80:b3: 96:af:76:fc:72:5f:13:c8:2b:e1:15:df:10:b1:c2: c7:9d:a8:8d:4f:ff:e4:f7:b9:b9:c9:6f:ae:84:ed: 7b:fc:ed:e4:ab:d9:95:cc:c1:71:79:22:2c:40:f9: 5b:46:c6:c7:3c:f4:12:4d:c4:d3:86:73:61:62:3b: 53:f9:d4:e9:c9:78:a7:65:e8:24:48:77:60:ca:b0: 45:61:29:15:43:7d:85:78:cd:45:ac:91:3c:e2:c4: 82:bf:f5:a3:91:51:b2:a1:e0:d4:87:a4:27:5a:ff: 26:ac:09:02:ef:4b:c2:7e:5c:d6:6c:29:c4:51:4f: 0e:34:09:50:d7:b5:45:9e:50:2b:59:22:71:e2:79: 59:c0:9f:e2:c8:23:85:8d:5d:b3:74:40:05:6f:d4: d3:2e:84:a6:28:9f:29:d3:fa:81:11:7d:5a:1d:88: 5b:30:86:de:11:1d:d4:bb:c8:bf:2f:d2:b6:e2:0a: ce:7f:c4:b5:7d:02:fc:7f:62:6c:4b:60:61:a5:f8: d7:ed:d4:c5:85:a2:86:81:94:13:22:63:04:e7:38: f9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D9:CD:19:C1:BE:9A:40:5E:F6:45:84:10:ED:BB:2A:D6:5A:29:D6 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:77:8e:b3:c1:2d:d5:6b:7d:be:cb:54:3c:76:dd:6b:cf:79: 34:ea:58:4e:81:74:69:7e:07:90:3c:4b:f7:96:59:3d:9a:b0: 3f:f7:79:0f:9d:6a:27:47:f0:ed:20:32:50:ba:ca:e9:72:ca: a7:34:3f:20:8e:c4:5e:50:29:48:f6:d4:09:a4:ed:1d:5a:cb: b7:98:df:a7:45:5c:77:2f:ec:0c:10:84:97:9f:67:73:a2:25: 04:20:4d:16:91:6c:78:a4:2d:0b:2e:65:4f:51:36:b3:1f:2b: 13:73:3f:88:9d:1e:b4:20:29:1e:76:26:6a:34:0f:9f:7d:3a: 99:bb:90:50:aa:97:c5:6a:13:6c:fa:3c:82:b2:94:06:46:4c: 38:b8:32:2e:9a:7c:73:3e:35:60:c6:09:6e:f5:33:e1:2e:db: f0:b5:8d:8e:91:b4:81:09:cd:67:ee:d4:8c:84:5c:5e:47:2b: f9:4c:c5:a8:cc:36:be:48:f1:f6:9b:c5:ad:ed:0f:49:69:99: 0a:d1:1c:ef:80:d5:3c:76:d1:d8:66:76:64:0d:9a:05:34:83: 68:89:28:7c:9f:1d:05:cd:20:9c:50:2a:42:42:43:30:f9:4c: 6b:20:14:34:e3:6e:5b:1a:33:4c:4e:d5:0c:a5:2e:46:32:6f: 9b:1e:3e:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjYwNDA0MTcxNjM4WhcNMjYwNDExMTcxNjM4WjAYMRYwFAYD VQQDEw02OWQxNDc3Ny0xMGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRSuEdfxtuIRkqTgja3ukjKKDukA4pBCuRQBQnIRO4r3UnryYzNVGThmgLOW r3b8cl8TyCvhFd8QscLHnaiNT//k97m5yW+uhO17/O3kq9mVzMFxeSIsQPlbRsbH PPQSTcTThnNhYjtT+dTpyXinZegkSHdgyrBFYSkVQ32FeM1FrJE84sSCv/WjkVGy oeDUh6QnWv8mrAkC70vCflzWbCnEUU8ONAlQ17VFnlArWSJx4nlZwJ/iyCOFjV2z dEAFb9TTLoSmKJ8p0/qBEX1aHYhbMIbeER3Uu8i/L9K24grOf8S1fQL8f2JsS2Bh pfjX7dTFhaKGgZQTImME5zj5VwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLnZzRnB vppAXvZFhBDtuyrWWinWMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASXeOs8Et1Wt9vstUPHbda895NOpYToF0aX4HkDxL95ZZPZqwP/d5D51qJ0fw 7SAyULrK6XLKpzQ/II7EXlApSPbUCaTtHVrLt5jfp0Vcdy/sDBCEl59nc6IlBCBN FpFseKQtCy5lT1E2sx8rE3M/iJ0etCApHnYmajQPn306mbuQUKqXxWoTbPo8grKU BkZMOLgyLpp8cz41YMYJbvUz4S7b8LWNjpG0gQnNZ+7UjIRcXkcr+UzFqMw2vkjx 9pvFre0PSWmZCtEc74DVPHbR2GZ2ZA2aBTSDaIkofJ8dBc0gnFAqQkJDMPlMayAU NONuWxozTE7VDKUuRjJvmx4+cw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:59 2026 by rpki-client