$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: BX7rJYwsFS2SbkK+ZP8r6oG929yzk+iNLds/jGtmlks= Subject key identifier: FE:01:F1:43:BB:DF:70:D5:E9:34:04:88:F6:74:BC:C6:1B:C2:46:52 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 0215 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 0210 Signing time: Sun 05 Apr 2026 02:29:43 +0000 Manifest this update: Sun 05 Apr 2026 02:29:43 +0000 Manifest next update: Sun 12 Apr 2026 02:29:43 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: smv+27vp/M5s2b2bv2pF+YBEd5Km4/iG8twdv5YBnPE=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: wcyOVBW/tGd3skqw30jqZPA6tqviwDkxNlXM49SoLAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Apr 5 02:29:43 2026 GMT Not After : Apr 12 02:29:43 2026 GMT Subject: CN=69d1c917-b85b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c2:ff:6f:a8:be:b0:63:a1:69:f8:4e:41:ab: 10:96:dc:5a:b6:44:f7:67:a1:ea:2c:a7:84:aa:43: f1:90:34:d7:ff:96:ed:9b:97:e1:56:35:4b:d7:27: ef:75:72:11:a3:5c:26:95:88:55:16:c9:fe:12:db: ff:9b:4a:54:06:97:61:9f:5e:76:d5:69:f9:9c:23: 64:0a:1d:d1:e8:8a:ae:73:ac:38:93:9e:9b:77:9b: e1:fe:86:95:94:a6:79:b5:f0:5a:8d:1d:15:8c:99: 21:77:1f:ef:8e:c9:27:57:03:98:ad:2c:04:da:9c: 13:02:2c:15:23:00:a7:44:0a:b7:68:6e:b0:8e:4d: 5d:b3:d8:f4:12:66:ec:d1:e8:9c:63:16:c9:f8:37: a6:c3:06:6b:b8:66:38:de:2e:55:f4:ee:5b:a4:fc: 83:ea:4f:1f:de:01:7e:a2:d4:cc:af:2f:10:86:ae: bd:9f:0c:25:3f:95:06:dc:8a:df:a2:88:02:35:2c: af:bd:85:03:db:14:80:85:02:01:59:6e:22:63:24: e5:bb:fc:6c:d7:3a:0b:8e:5d:9d:28:67:0e:29:6c: 3c:49:c4:c9:c6:bc:24:d3:ea:23:f1:53:4e:fe:03: d5:28:8d:47:fb:f6:12:93:9c:f3:e3:5e:27:85:f9: bc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:01:F1:43:BB:DF:70:D5:E9:34:04:88:F6:74:BC:C6:1B:C2:46:52 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:4a:9f:0f:d8:08:12:57:dc:c9:01:ed:84:85:ba:d0:ec:30: 21:c2:9e:de:aa:1f:43:a1:27:cb:4a:0a:03:54:d3:a2:fa:10: fe:4f:2d:f8:af:6b:f7:79:79:25:18:1a:95:df:04:d4:74:da: 64:04:92:66:5f:40:1b:00:d9:91:7b:a7:71:fa:bd:7d:4a:f7: e5:5d:99:ea:3f:e8:1c:89:6d:a7:53:c8:3b:ef:8d:e2:7d:f2: 47:3e:6f:df:71:19:09:92:94:bd:64:db:17:c5:8a:17:53:a4: e1:bd:de:68:09:a7:63:aa:e6:1b:ab:61:fe:69:34:4c:f1:2f: af:b1:23:0e:69:a0:7c:19:86:86:1d:3d:e6:75:9d:be:5a:0c: 2f:0f:2e:5c:3b:f1:b1:38:63:a1:aa:f7:39:57:db:5e:93:e6: 8a:56:33:a6:4d:b2:de:24:4b:93:c5:2b:34:7a:d0:06:9b:b1: 32:89:83:96:68:0c:38:c1:38:2b:5c:ea:89:b0:29:b9:27:46: cf:32:66:da:0e:ce:19:aa:14:84:c7:ae:bd:83:c0:08:31:e7: 99:e3:74:52:cc:87:74:fb:c0:46:c5:f7:00:e4:d1:e4:93:be: d0:d8:1f:48:ab:22:00:0f:83:b4:d2:8e:b7:64:58:a1:69:b1: f5:fe:07:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjYwNDA1MDIyOTQzWhcNMjYwNDEyMDIyOTQzWjAYMRYwFAYD VQQDEw02OWQxYzkxNy1iODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvML/b6i+sGOhafhOQasQltxatkT3Z6HqLKeEqkPxkDTX/5btm5fhVjVL1yfv dXIRo1wmlYhVFsn+Etv/m0pUBpdhn1521Wn5nCNkCh3R6Iquc6w4k56bd5vh/oaV lKZ5tfBajR0VjJkhdx/vjsknVwOYrSwE2pwTAiwVIwCnRAq3aG6wjk1ds9j0Embs 0eicYxbJ+DemwwZruGY43i5V9O5bpPyD6k8f3gF+otTMry8Qhq69nwwlP5UG3Irf oogCNSyvvYUD2xSAhQIBWW4iYyTlu/xs1zoLjl2dKGcOKWw8ScTJxrwk0+oj8VNO /gPVKI1H+/YSk5zz414nhfm8iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP4B8UO7 33DV6TQEiPZ0vMYbwkZSMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh0qfD9gIElfcyQHthIW60OwwIcKe3qofQ6Eny0oKA1TTovoQ/k8t+K9r93l5 JRgald8E1HTaZASSZl9AGwDZkXuncfq9fUr35V2Z6j/oHIltp1PIO++N4n3yRz5v 33EZCZKUvWTbF8WKF1Ok4b3eaAmnY6rmG6th/mk0TPEvr7EjDmmgfBmGhh095nWd vloMLw8uXDvxsThjoar3OVfbXpPmilYzpk2y3iRLk8UrNHrQBpuxMomDlmgMOME4 K1zqibApuSdGzzJm2g7OGaoUhMeuvYPACDHnmeN0UsyHdPvARsX3AOTR5JO+0Ngf SKsiAA+DtNKOt2RYoWmx9f4HvA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:54 2026 by rpki-client