$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft File: 0AZhDr1oKXhFffitopEQATORAZI.mft (raw, json) Hash identifier: Mr25BlrDKpqVpHgogxUurF4gscgNKxaVWC3Gc9AQjNY= Subject key identifier: 2B:CF:64:43:C3:85:F8:50:3A:7F:3B:64:BE:28:4B:FD:3F:36:1A:4A Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0F29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft Manifest number: 0F16 Signing time: Sat 04 Apr 2026 17:28:43 +0000 Manifest this update: Sat 04 Apr 2026 17:28:42 +0000 Manifest next update: Sat 11 Apr 2026 17:28:42 +0000 Files and hashes: 1: 0AZhDr1oKXhFffitopEQATORAZI.crl (hash: Urz5x/yazIOcEgI2Q4bIgPRMcTs79adE0IcdrwD5gIs=) 2: 42431FFC8FF711EEA0FC990FC4F9AE02.roa (hash: CJcOsAsRwI2HXjgfMv8XqLziZucuo7uRUTz3QROpN9g=) 3: CBD704945F5F11EFB99ABA76C4F9AE02.roa (hash: BXSVEWRNWk6Z5rdKJ6F8tnumvM/u/16zJocy0sihtdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3881 (0xf29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E, serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: Apr 4 17:28:42 2026 GMT Not After : Apr 11 17:28:42 2026 GMT Subject: CN=69d14a4b-c914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:88:31:0e:77:32:49:01:7f:24:07:c5:e9:9b: fb:b7:0f:8c:25:31:30:d1:31:66:bb:cd:3d:55:73: 23:c9:71:b7:14:16:32:91:a0:e8:17:48:fd:5b:49: e9:34:2b:63:75:a3:f1:d8:cf:d1:73:69:a4:2b:32: 1d:de:e6:41:cd:68:c5:2b:11:db:b5:27:29:fa:84: f1:9d:0a:b0:71:70:17:24:fb:22:35:a6:d0:81:53: 27:80:d5:8c:d4:2b:dd:8a:40:58:93:dc:3f:8e:a8: ac:fb:02:07:ed:b2:28:d2:cc:55:f3:e3:96:c6:a7: 4c:ed:aa:28:dd:c5:da:62:06:67:30:29:da:37:ca: 8b:0f:d2:44:44:1e:c0:cc:a7:0d:a8:49:5a:98:19: 04:af:15:f1:b8:0d:c8:24:4c:fa:0b:51:46:97:db: 15:a4:55:e9:66:dc:f0:1c:9f:21:3d:73:8d:06:52: cc:8c:0d:b6:ab:be:bd:d6:86:ab:db:ee:45:05:7b: f6:fb:56:d4:f4:e1:b6:d0:d8:5e:d7:d5:a2:90:66: 81:94:9a:fa:2f:0a:fe:0f:23:8e:18:2e:7c:71:10: af:e0:c3:00:b9:c9:06:4a:3e:0a:9a:50:e0:98:ab: 11:ed:d1:33:76:d2:b4:a9:d0:72:09:2c:38:2a:45: e1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CF:64:43:C3:85:F8:50:3A:7F:3B:64:BE:28:4B:FD:3F:36:1A:4A X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:81:b7:d5:ea:a8:c6:2c:02:a6:f6:2e:72:d9:87:21:e9:70: 32:33:31:c3:aa:ff:88:e9:eb:a4:1e:a2:47:b6:e4:e8:99:9c: 2c:48:63:93:6b:b5:b0:a1:10:7d:98:96:b7:9e:47:b4:10:ad: 73:c9:be:03:35:9e:b9:d5:75:19:a1:2b:42:ce:90:98:76:c0: ba:dd:ae:ec:5e:79:24:36:84:d2:d5:a6:4f:38:b0:4f:f4:60: ed:a2:5c:2d:e8:20:08:2f:c1:96:74:cb:32:06:82:60:a1:bd: 9b:d6:d3:29:45:d9:c5:8e:c3:4a:55:3e:69:bb:43:75:42:b0: df:1b:3c:83:13:51:f4:c1:00:ea:9f:42:6f:97:dc:ce:ea:03: b9:d7:f5:68:34:0c:89:f3:75:a0:e5:81:18:dd:a4:ee:b8:85: 26:82:5d:8f:97:28:ae:86:af:ff:d9:9b:bf:58:3c:02:0f:8a: da:e1:37:69:49:84:06:a1:8b:fe:b5:e0:67:f4:7b:51:c7:76: 26:f1:8f:57:19:ba:68:4c:6a:87:b4:57:2c:61:6d:d1:33:40: ff:8b:52:8b:c3:7a:db:2b:7c:03:51:d3:08:f5:88:d8:bd:39: 04:ed:e9:3a:d2:4b:5b:e4:ce:89:e0:35:77:6f:a8:69:24:f3: ac:01:48:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjYwNDA0MTcyODQyWhcNMjYwNDExMTcyODQyWjAYMRYwFAYD VQQDEw02OWQxNGE0Yi1jOTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4gxDncySQF/JAfF6Zv7tw+MJTEw0TFmu809VXMjyXG3FBYykaDoF0j9W0np NCtjdaPx2M/Rc2mkKzId3uZBzWjFKxHbtScp+oTxnQqwcXAXJPsiNabQgVMngNWM 1CvdikBYk9w/jqis+wIH7bIo0sxV8+OWxqdM7aoo3cXaYgZnMCnaN8qLD9JERB7A zKcNqElamBkErxXxuA3IJEz6C1FGl9sVpFXpZtzwHJ8hPXONBlLMjA22q7691oar 2+5FBXv2+1bU9OG20Nhe19WikGaBlJr6Lwr+DyOOGC58cRCv4MMAuckGSj4KmlDg mKsR7dEzdtK0qdByCSw4KkXhHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCvPZEPD hfhQOn87ZL4oS/0/NhpKMB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0E2RS83OUVDRTgzODk4QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tY aEZmZml0b3BFUUFUT1JBWkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKYG31eqoxiwCpvYuctmHIelwMjMxw6r/iOnrpB6iR7bk6JmcLEhjk2u1sKEQ fZiWt55HtBCtc8m+AzWeudV1GaErQs6QmHbAut2u7F55JDaE0tWmTziwT/Rg7aJc LeggCC/BlnTLMgaCYKG9m9bTKUXZxY7DSlU+abtDdUKw3xs8gxNR9MEA6p9Cb5fc zuoDudf1aDQMifN1oOWBGN2k7riFJoJdj5coroav/9mbv1g8Ag+K2uE3aUmEBqGL /rXgZ/R7Ucd2JvGPVxm6aExqh7RXLGFt0TNA/4tSi8N62yt8A1HTCPWI2L05BO3p OtJLW+TOieA1d2+oaSTzrAFItw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:17 2026 by rpki-client