$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: WzwMXDRQHwW4m8rq5ClofaKBZjXUMUeTi+zjaqAegec= Subject key identifier: 1E:A8:DB:AE:93:B9:A6:54:BB:1A:BF:C5:57:C7:40:4B:42:2E:A8:5E Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0DCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0DBF Signing time: Sat 04 Apr 2026 17:46:02 +0000 Manifest this update: Sat 04 Apr 2026 17:46:01 +0000 Manifest next update: Sat 11 Apr 2026 17:46:01 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: 0NcwjjZT/cc40sAcQtBELs9eZL+Hj7Ps2LwQH8qSxjY=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: DwDMBzTdLVQ0ELyjY5S8is56cxQg9X2S+eZse3Y+xqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3531 (0xdcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Apr 4 17:46:01 2026 GMT Not After : Apr 11 17:46:01 2026 GMT Subject: CN=69d14e5a-52cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:75:d7:39:d0:67:09:2c:0e:f7:81:18:78:13: d3:26:4b:90:65:3f:c1:d0:ba:c5:c5:e7:07:c8:36: 63:af:07:9e:4c:d4:85:91:f7:a5:91:0a:71:3b:02: bc:38:6f:67:a7:ec:d0:b2:89:15:3f:ba:7c:b3:b1: 2c:de:a5:69:7e:4c:21:ad:9e:e9:89:32:45:9c:f0: 8b:c3:b3:82:f4:3b:f2:44:e5:66:9f:ce:75:ea:11: 8f:fd:49:0a:78:be:1a:41:81:ac:6a:88:c2:76:ca: 5b:49:72:be:cb:15:7a:e2:ab:b4:32:54:13:ad:01: 53:9d:76:ee:79:84:b6:5d:30:1b:48:d5:91:46:fb: 20:7c:2d:e2:c5:94:51:d2:eb:94:31:66:16:4b:59: 59:8b:31:e1:2b:8d:0b:08:5f:82:a8:bc:da:ec:a7: d5:c7:8d:1e:39:4f:bc:70:38:a4:88:56:11:4d:7f: 53:a2:65:d1:60:8b:90:f9:49:93:fb:96:e4:38:7b: 30:91:0f:1a:00:67:6d:ee:87:95:12:2e:ff:71:da: 96:db:8c:68:8c:4c:ff:01:a5:28:0e:2d:c8:6f:0d: cc:69:46:23:db:ce:18:02:b9:92:ac:51:08:df:01: 96:b9:91:ba:61:e9:52:c7:80:1c:61:8b:ea:88:90: f9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A8:DB:AE:93:B9:A6:54:BB:1A:BF:C5:57:C7:40:4B:42:2E:A8:5E X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:7e:c9:9e:f9:1c:75:4c:63:82:0f:36:94:81:c8:88:a3:7b: 5a:b3:19:ad:9e:a5:ae:71:75:a6:1a:3e:27:2f:e7:fb:c5:25: 92:cb:2d:da:c7:f5:28:e9:4f:6f:c6:59:58:5b:9e:bc:42:3d: 0b:9c:bb:46:13:2a:b2:3d:a0:ba:d7:09:0e:85:0f:0d:63:da: 98:d8:4d:87:cd:16:eb:37:56:41:b2:13:c4:72:a0:a0:53:4c: 53:72:05:b0:dc:02:38:f0:4f:47:69:c1:3e:e5:da:26:80:c9: 00:81:8f:e7:7c:f2:b5:9b:b0:b4:ad:49:cb:f7:51:5f:a2:30: cb:af:e8:e7:3c:fc:89:30:08:5f:94:e5:9b:3b:ce:f4:f5:28: 1f:2d:e4:b7:b5:a4:b7:d8:74:1b:1b:70:92:09:14:a2:19:ad: 42:6e:06:37:86:bd:37:cd:26:bf:49:51:ef:d7:32:47:38:a1: 00:7c:14:b3:c8:02:f8:37:54:44:49:68:43:b7:b4:27:1d:be: 45:ed:8b:44:81:7b:84:68:94:16:1b:20:b5:81:f0:b9:7b:d2: c7:e2:1c:c5:36:03:86:52:1c:19:63:28:bc:07:9d:a0:ff:9b: 81:8d:8e:dd:29:01:14:29:db:b5:62:32:22:f3:aa:f3:47:79: b3:8e:e1:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjYwNDA0MTc0NjAxWhcNMjYwNDExMTc0NjAxWjAYMRYwFAYD VQQDEw02OWQxNGU1YS01MmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXXXOdBnCSwO94EYeBPTJkuQZT/B0LrFxecHyDZjrweeTNSFkfelkQpxOwK8 OG9np+zQsokVP7p8s7Es3qVpfkwhrZ7piTJFnPCLw7OC9DvyROVmn8516hGP/UkK eL4aQYGsaojCdspbSXK+yxV64qu0MlQTrQFTnXbueYS2XTAbSNWRRvsgfC3ixZRR 0uuUMWYWS1lZizHhK40LCF+CqLza7KfVx40eOU+8cDikiFYRTX9TomXRYIuQ+UmT +5bkOHswkQ8aAGdt7oeVEi7/cdqW24xojEz/AaUoDi3Ibw3MaUYj284YArmSrFEI 3wGWuZG6YelSx4AcYYvqiJD56QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB6o266T uaZUuxq/xVfHQEtCLqheMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYn7JnvkcdUxjgg82lIHIiKN7WrMZrZ6lrnF1pho+Jy/n+8Ulksst2sf1KOlP b8ZZWFuevEI9C5y7RhMqsj2gutcJDoUPDWPamNhNh80W6zdWQbITxHKgoFNMU3IF sNwCOPBPR2nBPuXaJoDJAIGP53zytZuwtK1Jy/dRX6Iwy6/o5zz8iTAIX5TlmzvO 9PUoHy3kt7Wkt9h0GxtwkgkUohmtQm4GN4a9N80mv0lR79cyRzihAHwUs8gC+DdU REloQ7e0Jx2+Re2LRIF7hGiUFhsgtYHwuXvSx+IcxTYDhlIcGWMovAedoP+bgY2O 3SkBFCnbtWIyIvOq80d5s47hcQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:29:05 2026 by rpki-client