$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: lQQQZKTxv8kPr/+UoPRkVlpFQPVT5uAQ/BXuzV3zeSc= Subject key identifier: D1:77:0F:83:B8:76:F2:17:22:A9:9D:B8:DF:90:16:E9:A0:D2:43:B6 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0525 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 04FF Signing time: Sun 26 Apr 2026 16:56:26 +0000 Manifest this update: Sun 26 Apr 2026 16:56:26 +0000 Manifest next update: Sun 03 May 2026 16:56:26 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: NeVUzHqVXXbcTybSD5iS9maMf5iFh/Vjez+BPPyM3ys=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: 5Z7fKb2b95O7xf2REenK7dbH8KrSrAmTwTpVkXBeeOI=) 3: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Ylv7wHI65XMnQYhoDyQSygUwHrURYMjzNieL/UaPiGU=) 4: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: bjkkedoEzbUfC4GQvKwdaQZgxgq0YTl5qOigfpRvGaU=) 5: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: 76p1LWBSiAURuIgRIP/lu1qZCJd79sZFpOsF7Mk4V7g=) 6: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HtAUxiV2GGFLsnw5Ftue8AlO9jul/mJwmhYMXTb/CeY=) 7: 1479C514596A11ECB1394271C4F9AE02.roa (hash: wpAJJYnFAicDNwa71hcmrPmPcdiAdvkl0r/mHo7+0do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 16:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Apr 26 16:56:26 2026 GMT Not After : May 3 16:56:26 2026 GMT Subject: CN=69ee43ba-a2f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a1:40:ec:f6:ec:f0:ec:b6:3b:da:84:3f:43: 56:9c:81:39:69:d6:40:29:dd:1b:b1:a7:27:96:fe: 78:2b:cc:a1:d6:3c:11:56:b6:79:84:93:df:fd:23: 48:14:ef:e4:e2:01:32:51:df:a3:b6:05:cb:78:35: 78:f8:5a:7c:d6:44:9b:68:de:57:bc:b2:23:cc:6f: 71:bf:9e:02:89:f7:94:d1:82:94:73:97:d0:f9:7f: 22:90:b5:be:54:71:79:58:27:c2:86:b7:64:b4:f1: 81:f7:3b:f8:39:27:c0:d5:b0:fb:49:cc:8a:6d:fb: f3:f2:63:9a:89:a1:b9:78:01:80:6b:f4:3c:a4:24: 78:10:28:68:91:34:90:cc:8b:3c:a5:40:f8:ea:7f: 1e:9f:82:ef:00:b2:f4:11:eb:a6:b7:f3:29:77:55: 8f:b5:b8:99:63:b5:d9:9b:36:c0:36:07:59:a9:b9: dd:50:55:f8:35:50:0c:4a:47:a0:2a:ca:a1:d0:7e: b5:64:7a:cd:e4:a0:f8:c2:d2:04:02:9d:66:2c:f3: 43:00:57:8a:68:bc:49:12:13:f2:2f:27:ef:46:ee: 0e:6c:d4:f0:93:ef:6a:a9:ca:90:2d:6a:f9:1a:bb: 7f:ab:ab:57:58:20:2a:53:58:bd:d7:c3:0b:00:95: a6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:77:0F:83:B8:76:F2:17:22:A9:9D:B8:DF:90:16:E9:A0:D2:43:B6 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:12:dd:26:b0:03:5c:15:dc:4c:78:b5:5d:49:09:7b:41:28: 7b:6c:43:7a:04:c3:73:17:1d:23:f2:11:ad:82:3a:bd:c3:d8: 8f:2a:81:81:2a:29:60:27:ad:79:85:00:d2:f7:59:fd:a9:1d: b4:70:f0:5a:61:5d:50:7a:bc:d2:37:f8:75:fe:e1:bc:6e:70: ae:ad:79:46:d3:86:5a:8d:c9:e5:a1:5e:24:69:4a:c9:bd:63: 88:13:36:0a:59:6d:49:40:7d:04:af:16:5c:10:0d:a7:72:d8: 6f:9f:7c:98:bb:cd:0c:2d:9a:8a:55:02:14:57:91:ad:3c:32: b5:00:dc:04:65:bc:18:d1:b1:ca:3f:00:80:4b:e5:6f:bf:21: 4d:55:69:55:60:15:87:32:26:35:1e:24:f1:8e:2a:02:46:7a: a1:dd:eb:c3:e3:7c:77:f0:38:71:de:09:01:51:25:61:a0:e2: ed:a8:b2:4f:9d:7b:c3:07:f6:6a:ab:7d:a8:2d:67:93:87:2b: bb:d8:94:cc:dd:c3:ce:8e:96:30:5c:69:a5:01:f0:02:49:ef: f1:88:28:83:c7:c0:ca:1f:d2:83:5f:ab:e2:89:a5:74:0e:60: 52:f7:09:a5:7d:bd:f7:62:af:8e:1e:3e:5f:79:e5:af:e3:ed: 06:2e:df:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjYwNDI2MTY1NjI2WhcNMjYwNTAzMTY1NjI2WjAYMRYwFAYD VQQDEw02OWVlNDNiYS1hMmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6FA7Pbs8Oy2O9qEP0NWnIE5adZAKd0bsacnlv54K8yh1jwRVrZ5hJPf/SNI FO/k4gEyUd+jtgXLeDV4+Fp81kSbaN5XvLIjzG9xv54CifeU0YKUc5fQ+X8ikLW+ VHF5WCfChrdktPGB9zv4OSfA1bD7ScyKbfvz8mOaiaG5eAGAa/Q8pCR4EChokTSQ zIs8pUD46n8en4LvALL0Eeumt/Mpd1WPtbiZY7XZmzbANgdZqbndUFX4NVAMSkeg Ksqh0H61ZHrN5KD4wtIEAp1mLPNDAFeKaLxJEhPyLyfvRu4ObNTwk+9qqcqQLWr5 Grt/q6tXWCAqU1i918MLAJWmuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNF3D4O4 dvIXIqmduN+QFumg0kO2MB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcxLdJrADXBXcTHi1XUkJe0Eoe2xDegTDcxcdI/IRrYI6vcPYjyqBgSopYCet eYUA0vdZ/akdtHDwWmFdUHq80jf4df7hvG5wrq15RtOGWo3J5aFeJGlKyb1jiBM2 ClltSUB9BK8WXBANp3LYb598mLvNDC2ailUCFFeRrTwytQDcBGW8GNGxyj8AgEvl b78hTVVpVWAVhzImNR4k8Y4qAkZ6od3rw+N8d/A4cd4JAVElYaDi7aiyT517wwf2 aqt9qC1nk4cru9iUzN3Dzo6WMFxppQHwAknv8Ygog8fAyh/Sg1+r4omldA5gUvcJ pX2992Kvjh4+X3nlr+PtBi7fIw== -----END CERTIFICATE-----Generated at Mon Apr 27 22:29:56 2026 by rpki-client