$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: 86WdoGH3h6kHJGBctGITdNz2j6ksSJa3uo7O0JK91eA= Subject key identifier: 95:12:09:45:E2:AF:7C:70:9A:DD:CF:B4:29:01:B1:2F:93:63:7D:CF Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 029C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 0285 Signing time: Sun 05 Apr 2026 01:25:10 +0000 Manifest this update: Sun 05 Apr 2026 01:25:10 +0000 Manifest next update: Sun 12 Apr 2026 01:25:10 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: PYfrQgs7QAuDAxK0UYVF7So7wzyYtIvj0JlYut8Hn4g=) 2: 349D4A7AB90A11EF97D24653C4F9AE02.roa (hash: gj01DmJfEaGsSpp5tjGsusN7Thz10FKLT4wU37QzljM=) 3: 34386BAAB90A11EF97D24653C4F9AE02.roa (hash: 8a9pl0B9WRoV/I8zbYuLrKWiJVi0iu0Y5myQD63MtCk=) 4: 35ADE898B90A11EF97D24653C4F9AE02.roa (hash: j4HW8v+J9rL2PkNopASjMuegUlrtdhRwhQv/dAW6LJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 668 (0x29c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61, serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: Apr 5 01:25:10 2026 GMT Not After : Apr 12 01:25:10 2026 GMT Subject: CN=69d1b9f6-f8c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:02:e8:b9:ac:d2:8e:d1:c1:92:d1:56:f1: 50:59:9c:21:e5:ec:eb:31:25:bc:03:93:9f:4a:eb: 1f:92:4b:f6:54:f6:56:c0:00:8d:7f:fa:6f:c8:8e: a6:ff:dd:1f:8c:0f:69:6e:b0:34:26:93:1b:4a:f9: e6:f0:5e:94:22:24:26:b0:56:e7:d9:ae:1c:c8:c0: de:3b:87:26:7c:2c:52:83:7c:1a:9a:d4:39:c2:22: f8:e0:19:a0:39:75:26:d4:f6:11:3b:5e:55:1b:1c: 5a:23:ac:ff:cd:b1:4b:39:aa:c3:e4:91:0a:99:d1: 92:b3:a4:0b:ed:43:7e:c6:15:6f:66:de:98:ce:7d: ee:e8:be:dc:29:0c:23:b9:e7:f2:86:c3:93:aa:a0: 30:8c:77:3b:dd:fb:c3:18:09:0e:21:ff:1c:6b:26: 58:b3:5e:f2:68:79:e1:73:a3:42:46:60:37:e8:3e: 96:5f:7b:49:17:c5:db:20:5e:b3:50:6e:b0:9a:63: 47:64:fc:04:61:a1:b9:e0:cc:95:ea:90:a9:c3:18: f3:35:97:1e:07:82:03:aa:c3:c6:13:df:4d:f6:08: a3:f6:d7:4b:74:74:dc:b3:72:25:00:ad:58:46:3a: ea:f3:ad:ca:bd:39:b0:f1:d7:05:41:4b:9d:70:d2: d3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:12:09:45:E2:AF:7C:70:9A:DD:CF:B4:29:01:B1:2F:93:63:7D:CF X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:11:1e:df:2e:b0:4b:02:6d:2e:b0:f8:28:69:31:7d:75:51: de:52:cb:d6:85:5c:1d:ba:3c:31:8b:05:9b:a2:55:e7:d1:e0: 53:f4:6f:c7:61:55:c2:73:3e:b6:fd:1f:44:91:47:b8:11:0f: 4e:03:2f:9a:66:e4:17:86:66:19:2d:f6:aa:a0:9e:bd:0b:5a: 7f:82:03:f6:24:c7:64:25:b8:51:a6:e3:e8:29:3c:8b:02:f1: 21:b4:b9:4e:f3:57:28:d1:42:af:5c:54:ea:81:fb:a1:f0:07: 73:a3:a0:b0:ff:67:e1:b9:92:e4:70:98:fe:d0:0f:c6:fb:8e: 61:61:9b:d7:eb:0a:f8:85:11:7f:13:87:f5:3c:52:61:91:45: b4:e0:d1:38:ca:fc:e0:e9:96:51:57:80:a4:cd:9b:46:d2:71: ea:90:59:21:aa:35:16:98:91:49:5f:51:cd:8c:f6:25:d4:3d: 54:e6:ec:b7:34:35:0c:40:17:d0:70:47:f8:b9:53:7c:96:64: d4:6d:0c:71:25:43:57:16:2f:09:4e:ef:2b:be:46:64:3c:1e: 8b:8c:bd:fa:f5:67:19:b8:d6:2a:a2:66:50:76:2a:42:3a:9b: b6:bb:6a:7b:38:39:33:30:fe:11:26:1b:f8:8d:12:8d:ce:ec: b8:a7:32:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjYwNDA1MDEyNTEwWhcNMjYwNDEyMDEyNTEwWjAYMRYwFAYD VQQDEw02OWQxYjlmNi1mOGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAte8C6Lms0o7RwZLRVvFQWZwh5ezrMSW8A5OfSusfkkv2VPZWwACNf/pvyI6m /90fjA9pbrA0JpMbSvnm8F6UIiQmsFbn2a4cyMDeO4cmfCxSg3wamtQ5wiL44Bmg OXUm1PYRO15VGxxaI6z/zbFLOarD5JEKmdGSs6QL7UN+xhVvZt6Yzn3u6L7cKQwj uefyhsOTqqAwjHc73fvDGAkOIf8cayZYs17yaHnhc6NCRmA36D6WX3tJF8XbIF6z UG6wmmNHZPwEYaG54MyV6pCpwxjzNZceB4IDqsPGE99N9gij9tdLdHTcs3IlAK1Y Rjrq863KvTmw8dcFQUudcNLTPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUSCUXi r3xwmt3PtCkBsS+TY33PMB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHREe3y6wSwJtLrD4KGkxfXVR3lLL1oVcHbo8MYsFm6JV59HgU/Rvx2FVwnM+ tv0fRJFHuBEPTgMvmmbkF4ZmGS32qqCevQtaf4ID9iTHZCW4Uabj6Ck8iwLxIbS5 TvNXKNFCr1xU6oH7ofAHc6OgsP9n4bmS5HCY/tAPxvuOYWGb1+sK+IURfxOH9TxS YZFFtODROMr84OmWUVeApM2bRtJx6pBZIao1FpiRSV9RzYz2JdQ9VObstzQ1DEAX 0HBH+LlTfJZk1G0McSVDVxYvCU7vK75GZDwei4y9+vVnGbjWKqJmUHYqQjqbtrtq ezg5MzD+ESYb+I0Sjc7suKcy1w== -----END CERTIFICATE-----Generated at Mon Apr 6 16:59:56 2026 by rpki-client