$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: ZG2Ki+itXRpUPVcA9is0CU9gwDMYiwBMKUAkKpuUS/8= Subject key identifier: 89:FD:02:07:C1:BF:2C:ED:54:65:A9:93:E8:F1:7A:03:75:30:75:90 Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0EB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0EAB Signing time: Sat 04 Apr 2026 17:34:24 +0000 Manifest this update: Sat 04 Apr 2026 17:34:24 +0000 Manifest next update: Sat 11 Apr 2026 17:34:24 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: Lo1VMKjssG++qUxVJMJag+GiMZMPEz9bkOxeXS92hhI=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: IEnqgZAlKovuD6MzCecMuoV1aCeVk9H0qwnKaqYXSEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3769 (0xeb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Apr 4 17:34:24 2026 GMT Not After : Apr 11 17:34:24 2026 GMT Subject: CN=69d14ba0-6f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7e:80:4c:56:02:b9:92:13:72:7a:dc:da:f1: 6f:4a:0e:1a:27:df:7b:16:0c:1a:a2:bd:36:d9:71: 6d:d5:72:05:6a:fd:c1:6c:c3:15:c2:1b:d8:a2:85: 26:45:76:38:2b:41:64:d7:90:a5:53:12:77:85:bb: 2a:a5:8e:62:d4:46:18:9d:c4:02:f8:76:58:5f:a5: f8:8c:4e:7b:ac:5c:b5:e3:0d:1f:70:59:6c:01:87: b6:79:bf:14:d6:13:bc:be:57:f9:f0:a7:00:05:ba: 65:b8:c2:d1:14:bd:64:a0:81:fc:e3:c6:4c:85:7c: 02:86:ff:1b:e4:c4:5f:a4:08:f9:5e:e0:ec:94:f9: a1:f5:02:33:d1:01:5f:27:51:17:f0:28:3e:57:35: 41:db:15:44:7f:da:76:5a:0a:ef:f2:9b:b1:ba:8a: 8f:41:64:15:7a:9a:fb:c0:ed:de:54:71:c2:83:3c: 1d:88:01:b6:8b:b4:e4:fb:0d:0a:35:38:e0:b6:16: 45:68:15:55:37:64:7c:a1:80:79:0c:04:33:a7:68: 6d:41:c7:f9:92:f6:65:6e:ea:58:33:f5:6b:ba:1d: 14:40:be:bc:c5:35:14:25:b5:8c:1d:09:ba:25:bd: 8f:9f:fe:30:8c:78:ca:26:11:0e:ac:09:11:fc:fc: 37:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:FD:02:07:C1:BF:2C:ED:54:65:A9:93:E8:F1:7A:03:75:30:75:90 X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:ee:26:0b:50:67:a5:c7:7c:b6:90:54:dd:d0:e7:e1:cc:29: 32:d1:ce:2a:28:10:36:a9:de:44:b2:39:29:d5:f5:fe:50:dc: 60:51:3d:de:67:ba:34:ff:76:94:ca:36:1c:d8:8b:a9:cc:32: 8e:4a:35:7b:96:6a:6e:60:d9:16:ae:73:35:a3:f7:2a:a6:69: cb:fd:24:04:6e:34:a0:ad:a1:8d:24:3a:b4:4c:d4:c4:ba:45: f2:f1:47:72:21:b1:e9:c7:5f:dd:e9:ee:c7:a8:c5:7c:88:07: 0e:b1:02:19:18:d2:57:e8:97:76:91:45:d6:78:16:ec:1e:60: 6f:0e:67:78:e0:04:1a:72:23:8a:be:81:e2:2b:c9:f6:36:8e: 93:73:10:07:92:e1:5d:5c:ea:19:c5:76:eb:80:8d:82:fb:ca: d4:0c:2a:a1:9c:f9:43:bc:91:74:e9:5d:65:b7:a8:f6:5b:fe: 42:37:e4:4f:58:06:b3:ac:08:c0:1d:45:05:55:e6:e5:94:b4: 47:98:80:36:89:9e:94:fd:e9:41:b8:74:39:76:ca:e6:07:99: 73:3d:98:95:9d:8b:f5:fa:d9:6b:79:19:31:60:60:b9:69:e8: 98:2e:31:4c:8d:bc:1b:49:db:29:c4:00:ee:01:76:39:2c:d3: 20:99:a7:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjYwNDA0MTczNDI0WhcNMjYwNDExMTczNDI0WjAYMRYwFAYD VQQDEw02OWQxNGJhMC02ZjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1n6ATFYCuZITcnrc2vFvSg4aJ997Fgwaor022XFt1XIFav3BbMMVwhvYooUm RXY4K0Fk15ClUxJ3hbsqpY5i1EYYncQC+HZYX6X4jE57rFy14w0fcFlsAYe2eb8U 1hO8vlf58KcABbpluMLRFL1koIH848ZMhXwChv8b5MRfpAj5XuDslPmh9QIz0QFf J1EX8Cg+VzVB2xVEf9p2Wgrv8puxuoqPQWQVepr7wO3eVHHCgzwdiAG2i7Tk+w0K NTjgthZFaBVVN2R8oYB5DAQzp2htQcf5kvZlbupYM/Vruh0UQL68xTUUJbWMHQm6 Jb2Pn/4wjHjKJhEOrAkR/Pw3uwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIn9AgfB vyztVGWpk+jxegN1MHWQMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH+4mC1Bnpcd8tpBU3dDn4cwpMtHOKigQNqneRLI5KdX1/lDcYFE93me6NP92 lMo2HNiLqcwyjko1e5ZqbmDZFq5zNaP3KqZpy/0kBG40oK2hjSQ6tEzUxLpF8vFH ciGx6cdf3enux6jFfIgHDrECGRjSV+iXdpFF1ngW7B5gbw5neOAEGnIjir6B4ivJ 9jaOk3MQB5LhXVzqGcV264CNgvvK1AwqoZz5Q7yRdOldZbeo9lv+QjfkT1gGs6wI wB1FBVXm5ZS0R5iANomelP3pQbh0OXbK5geZcz2YlZ2L9frZa3kZMWBguWnomC4x TI28G0nbKcQA7gF2OSzTIJmnWQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:45 2026 by rpki-client