$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft File: Di3qFP18_9DQqeo-N0N7keRUsjY.mft (raw, json) Hash identifier: gAn8LU4ibUb+aKNTsDGQmJDvlgj9LHuvZTr6fYlSWd0= Subject key identifier: F4:D8:7E:69:B6:A1:A8:C8:C0:76:C9:24:7A:F4:4A:57:4D:78:9D:75 Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 Certificate issuer: /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Certificate serial: 1226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft Manifest number: 121D Signing time: Sat 04 Apr 2026 17:01:44 +0000 Manifest this update: Sat 04 Apr 2026 17:01:44 +0000 Manifest next update: Sat 11 Apr 2026 17:01:44 +0000 Files and hashes: 1: Di3qFP18_9DQqeo-N0N7keRUsjY.crl (hash: mH3PhIZ8YoGkkh5O1g7rxxpsfkwsCUHMCRfPHsKnJzo=) 2: 2245CE0A606811EB80E3D531C4F9AE02.roa (hash: VX0mY2WD7ZljHbXizsuob/HBTfQ0LiFuSS4MaL/xmKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4646 (0x1226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91560A3, serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Validity Not Before: Apr 4 17:01:44 2026 GMT Not After : Apr 11 17:01:44 2026 GMT Subject: CN=69d143f8-693a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:69:d0:52:c4:f2:be:cc:b4:1b:2d:d3:7b:32: 69:f9:28:7f:df:93:6b:b0:6e:29:cc:a7:e8:e4:8e: 0e:fd:ca:9f:05:a1:03:30:c9:f2:19:f0:d9:c5:48: f8:24:5e:52:83:56:c9:93:85:4f:2f:21:a0:9c:3e: 37:77:4c:e2:f0:67:9f:95:60:88:21:21:7c:56:4a: 3c:13:34:b9:14:d7:f5:a5:36:79:5a:6d:69:5c:88: 9f:22:bc:7e:6b:5c:d6:15:fe:eb:ad:2c:82:95:f3: 05:a7:7b:49:5f:34:8e:5b:cb:ed:0b:23:d7:1e:74: f2:32:fe:2c:c4:b6:4e:1f:5d:6b:2e:be:ed:e1:0b: 6f:b0:5d:7e:d0:c4:cd:29:8e:ee:16:6d:1f:3f:9a: 09:06:54:ec:a5:3a:82:b6:4c:34:17:93:dc:54:da: 7d:42:f9:7e:67:6e:be:72:84:ce:37:08:83:d7:6a: 0c:64:a7:de:e7:22:f8:c2:19:84:48:79:d3:62:90: 0c:74:1b:47:94:ae:71:e2:c1:68:93:18:07:0f:a8: b7:6c:31:59:7f:19:17:44:95:ed:ce:7b:2c:12:54: a5:f9:6b:0a:b3:69:02:b0:d2:68:de:56:12:b2:c6: b6:48:0b:a4:ed:a1:b5:f6:b0:6d:b6:65:50:70:94: d3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D8:7E:69:B6:A1:A8:C8:C0:76:C9:24:7A:F4:4A:57:4D:78:9D:75 X509v3 Authority Key Identifier: keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c0:bb:06:ee:0c:9e:67:fc:c3:62:8c:02:26:9f:85:42:d8: 8b:50:cd:ab:df:5f:cd:5c:37:52:9a:f0:a9:04:b5:74:55:3d: bd:d4:a8:9e:aa:9e:1a:76:7f:a9:1d:2d:a1:c8:5e:74:5c:a7: cd:46:b4:52:4a:47:84:5a:ac:22:e8:2d:c7:57:90:fe:72:71: 76:ae:2b:e9:45:a3:65:d9:b0:ab:f8:48:22:6f:1e:1a:c8:6f: 4a:27:c0:ff:b5:0c:cc:03:89:84:6a:e3:8d:57:34:a0:e2:98: 13:f9:1a:e0:e2:fa:bb:de:b2:a2:47:05:9c:f6:29:2d:0e:01: 38:76:db:32:89:fd:0f:5c:c5:46:42:38:29:39:42:df:d3:bd: 8e:4b:6c:ff:fd:9a:63:b7:9d:b7:f4:43:9f:46:1b:47:c7:bb: 6d:cc:cd:6c:a7:55:57:68:0c:56:bd:54:db:c3:32:10:07:5b: 8e:7e:ee:49:09:78:63:ce:e8:00:b5:7d:35:a5:14:19:57:4a: 27:85:30:7b:16:89:f6:bd:d8:25:7d:1c:90:95:03:1d:3b:44: 35:ab:6b:ad:87:99:6d:f2:34:86:23:b0:d2:af:65:22:a4:6f: 2a:b2:a6:11:c2:73:f9:c2:8c:89:2c:ca:17:8d:7b:02:19:bc: 66:78:28:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwQTMxMTAvBgNVBAUTKDBFMkRFQTE0RkQ3Q0ZGRDBEMEE5RUEzRTM3NDM3Qjkx RTQ1NEIyMzYwHhcNMjYwNDA0MTcwMTQ0WhcNMjYwNDExMTcwMTQ0WjAYMRYwFAYD VQQDEw02OWQxNDNmOC02OTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmnQUsTyvsy0Gy3TezJp+Sh/35NrsG4pzKfo5I4O/cqfBaEDMMnyGfDZxUj4 JF5Sg1bJk4VPLyGgnD43d0zi8GeflWCIISF8Vko8EzS5FNf1pTZ5Wm1pXIifIrx+ a1zWFf7rrSyClfMFp3tJXzSOW8vtCyPXHnTyMv4sxLZOH11rLr7t4QtvsF1+0MTN KY7uFm0fP5oJBlTspTqCtkw0F5PcVNp9Qvl+Z26+coTONwiD12oMZKfe5yL4whmE SHnTYpAMdBtHlK5x4sFokxgHD6i3bDFZfxkXRJXtznssElSl+WsKs2kCsNJo3lYS ssa2SAuk7aG19rBttmVQcJTTvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPTYfmm2 oajIwHbJJHr0SldNeJ11MB8GA1UdIwQYMBaAFA4t6hT9fP/Q0KnqPjdDe5HkVLI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjBBMy9FNERGOTZBQUZE RjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85RFFxZW8tTjBON2tlUlVz alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpM3FGUDE4XzlEUXFlby1OME43a2VSVXNqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjBBMy9FNERGOTZBQUZERjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85 RFFxZW8tTjBON2tlUlVzalkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASsC7Bu4Mnmf8w2KMAiafhULYi1DNq99fzVw3UprwqQS1dFU9vdSonqqeGnZ/ qR0tochedFynzUa0UkpHhFqsIugtx1eQ/nJxdq4r6UWjZdmwq/hIIm8eGshvSifA /7UMzAOJhGrjjVc0oOKYE/ka4OL6u96yokcFnPYpLQ4BOHbbMon9D1zFRkI4KTlC 39O9jkts//2aY7edt/RDn0YbR8e7bczNbKdVV2gMVr1U28MyEAdbjn7uSQl4Y87o ALV9NaUUGVdKJ4UwexaJ9r3YJX0ckJUDHTtENatrrYeZbfI0hiOw0q9lIqRvKrKm EcJz+cKMiSzKF417Ahm8Zngolg== -----END CERTIFICATE-----Generated at Mon Apr 6 11:34:43 2026 by rpki-client