$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: ivqp/QJTi5rqhfoUvb+dg77OwBqjDVcQ7V6dUJSDUwQ= Subject key identifier: 1F:A0:95:67:60:B5:E5:3F:48:EF:54:C2:A9:CF:7C:73:34:C2:9B:B1 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 3552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 353A Signing time: Sat 04 Apr 2026 14:36:12 +0000 Manifest this update: Sat 04 Apr 2026 14:36:12 +0000 Manifest next update: Sat 11 Apr 2026 14:36:12 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: dx65GwyDau1akzsRWDceMPBwNhpv3Nc4ZeyuvqLNNOg=) 2: 075152B253CB11F09DA22358C4F9AE02.roa (hash: V/vNgubvS8VhZ02alSGIOgT1eX/zOWVpq8npKoZuG7w=) 3: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: BK/+8KX02VPddxHBzpeJG/jz59w+FAXuRrqelBqXlEQ=) 4: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: giuz6kt+a3mAfYzChvmg3ZhJktWSl07hrTJcl5VYuw4=) 5: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: luxeMc1iFSEcyyjFr507CvOQSLo907/TPZtOXtJ+QIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13650 (0x3552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Apr 4 14:36:12 2026 GMT Not After : Apr 11 14:36:12 2026 GMT Subject: CN=69d121dc-0a6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:07:66:ba:14:8d:5f:d3:34:c1:40:02:a1:cb: 8e:89:43:5f:85:c9:4a:3d:d6:56:a6:51:d6:ca:af: ce:5a:a6:40:0e:91:14:32:61:3d:85:86:ff:fb:60: 81:27:8c:f0:21:7e:52:39:fe:ac:44:e0:1e:aa:2f: 1d:56:75:81:17:52:d7:c9:1c:79:9b:bf:0d:fd:88: cb:63:06:4e:82:e8:dd:17:c3:9f:79:e8:29:53:4e: 9e:a2:1e:eb:d4:ef:21:48:a7:11:c1:f7:b5:1e:c8: 95:f6:5e:7b:a1:fa:a3:10:60:ff:51:85:38:04:5a: 4d:f3:a5:2d:79:71:cc:f8:17:92:e6:a6:f2:cc:a5: 81:99:77:f5:43:cb:ce:a2:74:ce:58:2e:37:35:ec: 31:52:6f:04:41:3d:e6:4a:09:d1:de:bd:d1:66:52: 79:2d:26:27:28:d2:7d:31:90:36:6d:c8:56:08:75: d5:d9:75:40:4c:21:69:d1:d8:58:37:d2:b9:74:4f: 88:d7:d5:94:00:4d:51:79:73:81:f1:56:25:ff:a7: a1:d5:4d:55:52:36:02:62:d0:e9:3c:f3:84:20:36: 93:a4:d1:a9:7c:59:e9:a4:d7:b7:f5:32:89:fa:77: 8c:ad:6c:c8:b6:91:c8:09:31:44:fd:92:3a:d6:51: ce:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A0:95:67:60:B5:E5:3F:48:EF:54:C2:A9:CF:7C:73:34:C2:9B:B1 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:14:23:d7:0d:54:84:fa:a7:0d:5e:a2:e2:cc:f9:86:1e:d4: 69:8c:5f:33:c5:c3:57:84:fa:be:dc:0d:d7:af:e4:48:70:43: 42:99:58:3a:54:d9:8e:20:ec:b8:23:8e:ea:c1:49:87:10:a7: f2:a5:89:76:2a:75:67:3d:44:41:70:1d:9f:3b:7b:68:be:ce: 0b:35:97:1f:0d:a1:b6:52:6d:e9:16:66:01:a6:c1:8b:42:7c: 8e:f9:58:ac:e7:26:bf:e3:29:bb:18:9a:ca:b4:18:bc:23:e2: 4b:7c:df:c1:a2:26:84:bd:2e:35:2c:74:1e:01:7d:84:a5:77: af:bb:0c:2e:4b:21:d7:b6:61:7e:94:39:19:f4:5e:53:95:54: 0e:1e:87:57:02:78:ca:4b:56:b1:3d:78:98:db:2b:50:d4:e3: 19:62:35:1d:16:ce:d7:c6:2a:1f:59:69:97:a5:48:dc:5a:77: f7:53:44:8f:73:5d:40:42:d8:59:f9:94:40:05:32:fe:fb:6c: 1f:22:17:60:a0:70:d3:ef:2f:f8:b5:60:f1:ba:b5:d4:d8:52: 67:f0:c3:e0:2e:83:60:3d:66:5f:ba:e3:1a:ac:05:c6:bd:ef: 15:d7:99:08:ea:77:f0:3f:e7:20:a3:7c:da:43:73:c5:89:2e: ec:96:7f:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjYwNDA0MTQzNjEyWhcNMjYwNDExMTQzNjEyWjAYMRYwFAYD VQQDEw02OWQxMjFkYy0wYTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowdmuhSNX9M0wUACocuOiUNfhclKPdZWplHWyq/OWqZADpEUMmE9hYb/+2CB J4zwIX5SOf6sROAeqi8dVnWBF1LXyRx5m78N/YjLYwZOgujdF8OfeegpU06eoh7r 1O8hSKcRwfe1HsiV9l57ofqjEGD/UYU4BFpN86UteXHM+BeS5qbyzKWBmXf1Q8vO onTOWC43NewxUm8EQT3mSgnR3r3RZlJ5LSYnKNJ9MZA2bchWCHXV2XVATCFp0dhY N9K5dE+I19WUAE1ReXOB8VYl/6eh1U1VUjYCYtDpPPOEIDaTpNGpfFnppNe39TKJ +neMrWzItpHICTFE/ZI61lHO1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB+glWdg teU/SO9UwqnPfHM0wpuxMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAARQj1w1UhPqnDV6i4sz5hh7UaYxfM8XDV4T6vtwN16/kSHBDQplYOlTZjiDs uCOO6sFJhxCn8qWJdip1Zz1EQXAdnzt7aL7OCzWXHw2htlJt6RZmAabBi0J8jvlY rOcmv+MpuxiayrQYvCPiS3zfwaImhL0uNSx0HgF9hKV3r7sMLksh17ZhfpQ5GfRe U5VUDh6HVwJ4yktWsT14mNsrUNTjGWI1HRbO18YqH1lpl6VI3Fp391NEj3NdQELY WfmUQAUy/vtsHyIXYKBw0+8v+LVg8bq11NhSZ/DD4C6DYD1mX7rjGqwFxr3vFdeZ COp38D/nIKN82kNzxYku7JZ/WQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:29:08 2026 by rpki-client