$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: IAVISBQd6TOHZ3mEc5uBi7J9YUeb75rq03JnXoZPvWA= Subject key identifier: E2:59:B9:B9:EA:4E:47:09:A0:79:C2:0C:D3:42:F0:7A:FB:10:E5:8C Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0893 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 087C Signing time: Tue 28 Apr 2026 20:58:00 +0000 Manifest this update: Tue 28 Apr 2026 20:58:00 +0000 Manifest next update: Tue 05 May 2026 20:58:00 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: 3koq0VWzJw26fXuVfqCu1Wu+dJNgbGnfJbVCNSiwsLI=) 2: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: yYK7V7dW/D0eC17jG/LycZEBlM7X3W0O8v5bUzFm2dA=) 3: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: xE0G8jy0x1aFTqJiiedpm0HY07HDA+9aAMGkr13aJlo=) 4: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: X+7xi8ucS3fgs8IMY8mWHVyiqI68xFhirEd+62e8Rek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 20:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2195 (0x893) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Apr 28 20:58:00 2026 GMT Not After : May 5 20:58:00 2026 GMT Subject: CN=69f11f58-30d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f0:79:98:77:37:db:a4:4a:f2:43:33:bc:b7: 65:72:c7:14:4d:63:87:dc:bc:1e:fc:51:52:70:9d: 76:1b:a4:fd:c2:e0:c0:a5:78:15:79:3c:3b:88:71: c1:c9:7a:d7:11:c9:a3:89:46:70:d2:54:f1:c3:52: 48:37:48:03:2f:ef:0b:38:57:8f:9d:64:da:aa:73: d3:e0:d2:ca:c6:66:19:e0:1e:8c:31:6b:11:2a:08: 3b:48:da:3f:c2:f7:5a:a4:d7:a9:2d:89:9c:1e:a0: 48:42:ac:53:51:5a:78:67:6a:e8:96:29:0f:04:1d: 3d:1c:1e:13:a9:50:b1:8b:9f:d7:67:60:9f:97:31: f6:e2:6d:4d:04:5f:e1:7b:80:44:e5:aa:36:88:e2: 6a:d2:48:51:9b:e7:2b:9c:4f:ad:c8:c3:83:9c:89: 55:55:f0:72:4c:47:a4:65:de:61:a0:d4:02:50:4c: 37:ee:26:d7:25:e1:d6:91:20:3b:25:92:d3:d3:66: 23:ed:ef:25:b6:7d:75:cd:c3:eb:c3:75:4d:02:b6: e5:01:cf:87:e1:e7:8c:02:ad:d1:ba:42:58:07:06: 52:81:20:05:50:dc:f4:9a:50:0f:3f:fb:6d:73:ae: 9a:6c:09:66:80:9f:6f:0f:e7:8b:15:1b:e4:cc:a2: 9e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:59:B9:B9:EA:4E:47:09:A0:79:C2:0C:D3:42:F0:7A:FB:10:E5:8C X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:b0:d0:e9:bb:d2:d7:6e:df:92:82:da:cb:47:33:94:bb:5d: 4c:1a:fe:af:26:e8:86:e6:f9:c2:f4:77:d4:5b:a9:b8:c3:6f: 6a:84:f7:b1:5b:c0:74:84:64:5b:20:5a:07:a3:c7:61:3b:f8: 2b:43:a9:93:7d:26:df:c0:e0:bd:a8:c5:fd:d1:e7:e6:67:3d: 3e:54:7f:7a:9c:46:13:94:bd:6c:88:06:83:c2:6e:37:1b:fe: 4d:b4:9f:bf:94:2c:0e:9a:da:c9:56:3a:39:26:b9:1c:2a:59: 6f:21:5a:b2:79:6d:b8:77:3d:d6:63:70:2a:e4:cb:80:28:a4: 4c:23:01:80:ce:6a:31:71:8c:eb:83:83:26:85:47:ab:22:eb: 10:51:d7:28:63:87:92:3d:1f:08:64:07:4d:f7:55:1d:67:bd: 60:1b:0b:a1:3e:1a:ef:c9:91:62:31:5f:6f:94:09:5f:46:6b: 96:89:b0:b6:d3:cb:98:8c:22:d4:8f:23:7a:81:48:95:bc:c4: 71:22:2c:21:52:3e:d5:1c:46:85:86:ff:29:c6:80:d5:f5:10: 1a:bf:e3:97:62:68:2d:12:42:ea:2b:29:66:ed:c2:f9:b0:6f: ac:87:2c:1e:38:4d:48:3f:dd:02:cc:b0:4e:7f:e7:b6:83:54: 03:10:c2:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjYwNDI4MjA1ODAwWhcNMjYwNTA1MjA1ODAwWjAYMRYwFAYD VQQDEw02OWYxMWY1OC0zMGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmfB5mHc326RK8kMzvLdlcscUTWOH3Lwe/FFScJ12G6T9wuDApXgVeTw7iHHB yXrXEcmjiUZw0lTxw1JIN0gDL+8LOFePnWTaqnPT4NLKxmYZ4B6MMWsRKgg7SNo/ wvdapNepLYmcHqBIQqxTUVp4Z2rolikPBB09HB4TqVCxi5/XZ2CflzH24m1NBF/h e4BE5ao2iOJq0khRm+crnE+tyMODnIlVVfByTEekZd5hoNQCUEw37ibXJeHWkSA7 JZLT02Yj7e8ltn11zcPrw3VNArblAc+H4eeMAq3RukJYBwZSgSAFUNz0mlAPP/tt c66abAlmgJ9vD+eLFRvkzKKekwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOJZubnq TkcJoHnCDNNC8Hr7EOWMMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP7DQ6bvS127fkoLay0czlLtdTBr+rybohub5wvR31FupuMNvaoT3sVvAdIRk WyBaB6PHYTv4K0Opk30m38DgvajF/dHn5mc9PlR/epxGE5S9bIgGg8JuNxv+TbSf v5QsDprayVY6OSa5HCpZbyFasnltuHc91mNwKuTLgCikTCMBgM5qMXGM64ODJoVH qyLrEFHXKGOHkj0fCGQHTfdVHWe9YBsLoT4a78mRYjFfb5QJX0ZrlomwttPLmIwi 1I8jeoFIlbzEcSIsIVI+1RxGhYb/KcaA1fUQGr/jl2JoLRJC6ispZu3C+bBvrIcs HjhNSD/dAsywTn/ntoNUAxDCRw== -----END CERTIFICATE-----Generated at Tue Apr 28 22:16:41 2026 by rpki-client