$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: Py3PKGSPgHIoFNlI61vYbP/bpsUnW9Joue5SEbyi4dE= Subject key identifier: D1:3F:6D:EA:50:E4:1E:A1:90:BC:57:80:3B:FB:28:CB:8A:21:AF:95 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 020F Signing time: Fri 03 Apr 2026 02:39:50 +0000 Manifest this update: Fri 03 Apr 2026 02:39:50 +0000 Manifest next update: Fri 10 Apr 2026 02:39:50 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: b+y0byZ1ku3lxiZH6wij9VK/TlfKpx5P8i1O6/V+0Oo=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: jKf/2MU5Ip9D+4pRX+4cB+cT7JgiaWNbV4ALOM87qH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 Apr 2026 02:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Apr 3 02:39:50 2026 GMT Not After : Apr 10 02:39:50 2026 GMT Subject: CN=69cf2876-4fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9a:13:7c:48:21:8e:81:4a:f8:5e:55:ac:a9: 1e:83:76:23:01:84:12:c5:d5:c6:f9:fb:4e:7a:23: 9a:99:0a:0d:0c:69:89:72:3a:bf:f9:07:3d:5b:49: a0:09:99:f5:7a:b0:86:88:25:4d:84:a8:27:e8:1a: dd:d6:f8:09:0a:79:3e:ac:ce:88:91:1d:e2:eb:49: 38:01:e2:c3:37:16:04:aa:c0:98:09:5d:18:37:ab: 5f:9b:09:59:9d:02:c3:8c:ae:3c:9c:3b:ef:2d:03: 82:26:ab:c9:3a:60:ef:ae:40:24:fe:01:24:0c:28: 08:df:d8:c7:79:72:b7:26:b3:d5:6f:0f:da:df:eb: 50:b2:ad:a5:7d:75:64:a4:8a:40:ea:d8:2f:b7:f2: 36:50:4e:ee:5c:e6:bb:3f:ce:85:99:20:20:e4:ae: 14:a3:49:40:2c:82:55:37:87:93:9c:27:8f:1b:e0: 86:ef:58:12:89:fb:04:08:83:27:32:63:46:ff:35: 58:91:83:32:c7:80:1b:95:12:ea:f8:50:0e:e7:41: 6f:30:cb:8f:9e:43:b8:5b:02:b8:8d:9b:b8:99:d6: f3:1d:04:ec:7f:eb:09:95:58:b1:18:92:3b:52:ae: d9:4e:a9:3e:8c:c9:f6:77:dd:e1:f4:80:61:0a:8d: c9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3F:6D:EA:50:E4:1E:A1:90:BC:57:80:3B:FB:28:CB:8A:21:AF:95 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:09:62:44:6e:41:e6:5b:6a:36:03:06:52:d2:3e:07:88:ab: a3:08:5b:30:2f:45:0b:32:71:60:9a:49:d5:7f:3a:cf:ea:01: 0a:e6:b6:c7:3a:96:de:13:83:04:4a:fb:64:54:a9:12:81:62: 31:1d:25:5b:d1:35:02:b3:d3:7f:cd:aa:d4:16:2f:3a:de:87: 8a:2c:59:22:bd:5e:48:4f:97:e9:c1:98:09:66:6a:8f:86:3d: 89:5a:16:dc:15:86:bc:7d:c1:d5:59:5d:e7:e8:d2:de:4b:0d: 9b:91:9d:c7:17:4a:de:88:da:17:16:ae:62:94:39:73:a3:d4: 3b:0e:6e:53:06:02:bb:07:76:bd:b7:8f:e1:f4:e4:54:da:69: 9b:ce:63:32:5b:5b:8f:27:ce:92:10:b4:fe:ae:48:9d:8d:69: 92:04:88:f9:17:e7:cb:60:2a:90:bf:99:a3:d5:2e:29:08:a9: a3:7d:d9:a8:6d:f9:00:3d:a9:fc:52:f0:9d:f9:46:86:4f:d3: 56:75:9f:74:77:80:90:fe:cd:95:58:78:bb:d6:ea:35:05:57: cf:df:37:0c:6d:d1:07:08:19:68:09:47:f7:97:22:a4:de:e1: 9e:d5:2f:85:e2:aa:30:fa:c4:21:f8:da:c3:25:73:97:23:f7: 56:d3:23:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjYwNDAzMDIzOTUwWhcNMjYwNDEwMDIzOTUwWjAYMRYwFAYD VQQDEw02OWNmMjg3Ni00ZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJoTfEghjoFK+F5VrKkeg3YjAYQSxdXG+ftOeiOamQoNDGmJcjq/+Qc9W0mg CZn1erCGiCVNhKgn6Brd1vgJCnk+rM6IkR3i60k4AeLDNxYEqsCYCV0YN6tfmwlZ nQLDjK48nDvvLQOCJqvJOmDvrkAk/gEkDCgI39jHeXK3JrPVbw/a3+tQsq2lfXVk pIpA6tgvt/I2UE7uXOa7P86FmSAg5K4Uo0lALIJVN4eTnCePG+CG71gSifsECIMn MmNG/zVYkYMyx4AblRLq+FAO50FvMMuPnkO4WwK4jZu4mdbzHQTsf+sJlVixGJI7 Uq7ZTqk+jMn2d93h9IBhCo3J2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNE/bepQ 5B6hkLxXgDv7KMuKIa+VMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANQliRG5B5ltqNgMGUtI+B4irowhbMC9FCzJxYJpJ1X86z+oBCua2xzqW3hOD BEr7ZFSpEoFiMR0lW9E1ArPTf82q1BYvOt6HiixZIr1eSE+X6cGYCWZqj4Y9iVoW 3BWGvH3B1Vld5+jS3ksNm5GdxxdK3ojaFxauYpQ5c6PUOw5uUwYCuwd2vbeP4fTk VNppm85jMltbjyfOkhC0/q5InY1pkgSI+Rfny2AqkL+Zo9UuKQipo33ZqG35AD2p /FLwnflGhk/TVnWfdHeAkP7NlVh4u9bqNQVXz983DG3RBwgZaAlH95cipN7hntUv heKqMPrEIfjawyVzlyP3VtMjMg== -----END CERTIFICATE-----Generated at Fri Apr 3 21:58:48 2026 by rpki-client