$ rpki-client -vvf rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft File: DAmet3to0aLfVJLHMbZNVB9VmwI.mft (raw, json) Hash identifier: mSTgkA3YKKACuJ2k5KQQEztj+wC7u6CxBx9KUsNJCDk= Subject key identifier: 5D:77:9F:0C:89:97:5B:33:09:7F:30:F5:79:D2:77:B2:5E:C4:1B:B4 Authority key identifier: 0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 Certificate issuer: /CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft Manifest number: 039D Signing time: Sun 05 Apr 2026 00:31:08 +0000 Manifest this update: Sun 05 Apr 2026 00:31:08 +0000 Manifest next update: Sun 12 Apr 2026 00:31:08 +0000 Files and hashes: 1: DAmet3to0aLfVJLHMbZNVB9VmwI.crl (hash: gRrhW5k8cuSr8QshmhklETo6hM0CwyN32I7QbxM4aTA=) 2: 32F44056DB1911EC87E56C0DC4F9AE02.roa (hash: DNHpbbH0OLt61W1/5I9yLZt1WIT0NpFfbOWathJ7PW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:31:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509A4, serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Validity Not Before: Apr 5 00:31:08 2026 GMT Not After : Apr 12 00:31:08 2026 GMT Subject: CN=69d1ad4c-6511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2e:64:d7:3e:91:53:47:b5:c6:92:59:b5:33: e4:3b:d0:80:99:07:98:34:6f:17:62:64:3e:b4:b4: 88:df:02:7d:b5:29:ed:2c:b5:e7:f3:e5:a7:31:17: 47:9c:31:9f:d1:62:75:38:f8:ab:63:f6:a5:a2:f1: 9e:7d:a8:2a:33:9e:62:65:e2:8d:f3:1d:56:99:8d: 6f:7a:24:51:66:dd:61:2c:94:3e:a7:ea:b9:53:9c: da:cb:c6:95:7f:78:f7:9c:9f:ed:ae:7a:92:86:e7: 42:81:22:11:11:0b:6c:aa:53:f7:70:a0:81:02:34: 6f:71:d9:19:5e:cc:30:82:9a:69:f3:ad:09:ee:0b: 6f:fb:b6:fc:54:7d:04:40:e9:3c:0d:04:99:70:16: 5c:52:b4:c3:65:09:75:12:98:02:45:9e:96:9a:75: ce:c7:24:ce:89:2b:c5:5f:a0:7e:3e:5b:60:d2:f0: 72:ce:e4:6b:a9:80:7f:b6:0b:5d:24:f3:98:e3:fe: 5c:07:43:1a:0b:98:87:09:b3:25:2a:2c:c5:59:e7: f0:1d:e2:8b:f7:ab:ff:47:99:96:08:49:71:5c:60: d8:1b:8d:b6:bd:27:c2:34:32:23:be:92:26:9d:15: db:f8:dd:5a:dd:42:0d:c7:80:63:7b:80:47:3e:16: e9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:77:9F:0C:89:97:5B:33:09:7F:30:F5:79:D2:77:B2:5E:C4:1B:B4 X509v3 Authority Key Identifier: keyid:0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:bd:80:d1:76:23:3e:02:51:b2:6d:ec:50:8c:cf:fe:16:4b: aa:9a:ff:48:ca:e4:b5:42:61:c2:1e:a7:72:5c:b1:93:9e:84: 17:af:ca:f5:20:66:08:13:24:ff:ea:7d:97:9a:a0:3b:fa:2f: 6c:3d:58:81:cf:75:23:6f:3b:6b:52:0a:e6:a9:48:51:ac:ad: 93:cd:33:95:cc:94:fb:db:a7:e3:f0:f1:7e:42:6b:dc:3f:85: c3:f1:96:c5:46:8d:a5:65:1f:d1:13:07:7e:ff:80:3f:f9:50: 62:74:23:ef:55:a6:c0:ed:37:6c:5d:10:8e:88:eb:5f:3d:20: fe:e7:89:f0:71:8a:2f:75:cc:2b:5b:81:72:2c:27:d8:96:3b: 82:55:e3:e7:dd:04:e0:21:9e:46:08:1b:b2:ac:d9:2b:cd:22: aa:03:7a:16:09:60:27:3b:21:b8:41:28:73:d7:39:f4:1b:3c: 23:29:ef:86:d8:62:4d:76:19:a0:5d:9e:1f:09:82:98:64:51: 3b:79:8f:9c:8a:99:f0:52:f6:34:85:58:9c:56:43:33:39:55: 0e:39:38:25:cf:a6:68:91:34:88:8a:24:7f:cb:02:af:70:b7: 82:d5:51:24:92:5d:99:87:19:77:21:b1:04:45:05:2a:78:d5: 11:0b:8f:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QTQxMTAvBgNVBAUTKDBDMDk5RUI3N0I2OEQxQTJERjU0OTJDNzMxQjY0RDU0 MUY1NTlCMDIwHhcNMjYwNDA1MDAzMTA4WhcNMjYwNDEyMDAzMTA4WjAYMRYwFAYD VQQDEw02OWQxYWQ0Yy02NTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAri5k1z6RU0e1xpJZtTPkO9CAmQeYNG8XYmQ+tLSI3wJ9tSntLLXn8+WnMRdH nDGf0WJ1OPirY/alovGefagqM55iZeKN8x1WmY1veiRRZt1hLJQ+p+q5U5zay8aV f3j3nJ/trnqShudCgSIREQtsqlP3cKCBAjRvcdkZXswwgppp860J7gtv+7b8VH0E QOk8DQSZcBZcUrTDZQl1EpgCRZ6WmnXOxyTOiSvFX6B+Pltg0vByzuRrqYB/tgtd JPOY4/5cB0MaC5iHCbMlKizFWefwHeKL96v/R5mWCElxXGDYG422vSfCNDIjvpIm nRXb+N1a3UINx4Bje4BHPhbpHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF13nwyJ l1szCX8w9XnSd7JexBu0MB8GA1UdIwQYMBaAFAwJnrd7aNGi31SSxzG2TVQfVZsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlBNC9EQkFCOTM2RURB NzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBhTGZWSkxITWJaTlZCOVZt d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBbWV0M3RvMGFMZlZKTEhNYlpOVkI5Vm13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlBNC9EQkFCOTM2RURBNzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBh TGZWSkxITWJaTlZCOVZtd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV72A0XYjPgJRsm3sUIzP/hZLqpr/SMrktUJhwh6nclyxk56EF6/K9SBmCBMk /+p9l5qgO/ovbD1Ygc91I287a1IK5qlIUaytk80zlcyU+9un4/DxfkJr3D+Fw/GW xUaNpWUf0RMHfv+AP/lQYnQj71WmwO03bF0QjojrXz0g/ueJ8HGKL3XMK1uBciwn 2JY7glXj590E4CGeRggbsqzZK80iqgN6FglgJzshuEEoc9c59Bs8IynvhthiTXYZ oF2eHwmCmGRRO3mPnIqZ8FL2NIVYnFZDMzlVDjk4Jc+maJE0iIokf8sCr3C3gtVR JJJdmYcZdyGxBEUFKnjVEQuPaw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:47:31 2026 by rpki-client