$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: XXFbbimmzdqjuWI9eOu/OmuSvcBbKbuKlUxK+2jFGqg= Subject key identifier: 27:88:03:DA:6E:E4:DA:73:49:C4:23:DF:3D:DB:5D:9A:70:BC:11:2D Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 03E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 03D6 Signing time: Sun 05 Apr 2026 00:19:23 +0000 Manifest this update: Sun 05 Apr 2026 00:19:23 +0000 Manifest next update: Sun 12 Apr 2026 00:19:23 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: 40ruMz/UexIdQtGEhKr745k998aVM4nCtCmQBAW9h70=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: d2IO53QQHp9HhXVDc1CoUGPFf1YUTdGHgG7B3UV4InA=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: Yt0TqJaTmIJd27cHaCbpte8qJaUobmzMaQoo+mme+Sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 992 (0x3e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Apr 5 00:19:23 2026 GMT Not After : Apr 12 00:19:23 2026 GMT Subject: CN=69d1aa8b-b039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:62:5e:b0:9d:56:dd:e3:a7:3f:38:43:ce:2f: 25:19:c8:a5:19:80:ed:d9:a8:c5:8d:b9:b4:96:d7: d4:54:26:21:5c:eb:db:be:b2:d3:f8:94:b8:04:12: 26:2b:e1:88:63:58:f0:df:f1:04:d6:14:1a:7a:86: 57:fa:97:85:07:ae:e6:53:91:cd:46:24:a6:4f:44: a8:b0:69:97:36:2d:93:2f:1a:4f:1b:80:1e:15:0f: d0:cf:3a:93:55:6b:bd:de:9d:76:51:74:99:36:de: 6d:5b:9d:95:e6:40:50:0e:da:62:dd:36:3e:34:ab: 57:20:c6:e4:f2:28:80:d0:91:9b:9f:2a:e8:86:c4: fe:63:e9:55:cd:50:5f:5b:b2:f0:09:b4:c8:2e:df: 08:db:62:c7:3f:c5:84:e2:2b:3d:65:a3:a3:b1:52: f3:48:d7:ae:a9:85:2b:bf:37:75:7f:07:e9:b2:8e: 1c:13:fd:85:ef:b5:da:7d:c0:54:5b:11:e9:9e:ee: 6b:ea:38:b0:e4:9a:17:ed:c8:53:54:c2:7c:fb:7d: 39:a4:bb:19:9b:e6:9b:76:41:94:a6:20:70:55:04: 73:2d:31:60:be:63:55:20:57:d3:c4:de:89:7f:86: af:5c:ea:49:87:ed:29:56:a6:65:fe:97:d8:56:c4: c1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:88:03:DA:6E:E4:DA:73:49:C4:23:DF:3D:DB:5D:9A:70:BC:11:2D X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:fe:f7:20:e2:58:3f:a3:e0:ae:2d:ed:1b:30:8b:60:e4:52: ee:c1:28:c4:69:e5:c6:29:4e:2d:4c:e1:01:50:92:62:f6:aa: 89:a2:54:56:79:9b:e3:a4:dd:f5:1f:f3:78:3f:e6:75:42:1a: 43:33:3e:73:f8:89:be:e1:cd:16:13:de:73:b5:b3:6d:2c:8b: 58:c0:bc:f4:d2:8a:36:76:33:f0:6f:c5:c1:6a:d1:d3:bc:f6: ef:5f:3c:26:4b:63:2e:99:a4:6e:02:f1:69:00:4c:07:02:eb: 1a:38:0a:6a:ad:c3:17:e8:ca:d1:71:84:5e:d0:c5:be:a7:d6: c0:35:99:e2:b3:f3:fe:01:d6:3f:d3:2b:64:00:0e:1a:5e:6a: 68:45:f8:2a:c8:61:55:6f:a9:91:aa:38:d3:77:16:fd:db:3c: ed:5c:18:bc:db:89:ce:2f:5f:63:2c:a2:e2:9e:0a:03:ef:c9: 59:0a:48:37:87:b0:04:41:94:67:b2:33:76:a9:d2:2d:35:30: f8:52:77:1e:14:50:85:1f:44:93:81:0c:65:bf:2d:8d:b9:ef: 51:84:01:c4:85:16:a1:fa:33:b3:55:4b:6d:7a:67:63:6d:32: 4e:c1:92:2c:7f:79:0e:57:74:2c:7a:fa:ef:9b:f0:db:d5:25: a4:f4:55:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjYwNDA1MDAxOTIzWhcNMjYwNDEyMDAxOTIzWjAYMRYwFAYD VQQDEw02OWQxYWE4Yi1iMDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2JesJ1W3eOnPzhDzi8lGcilGYDt2ajFjbm0ltfUVCYhXOvbvrLT+JS4BBIm K+GIY1jw3/EE1hQaeoZX+peFB67mU5HNRiSmT0SosGmXNi2TLxpPG4AeFQ/QzzqT VWu93p12UXSZNt5tW52V5kBQDtpi3TY+NKtXIMbk8iiA0JGbnyrohsT+Y+lVzVBf W7LwCbTILt8I22LHP8WE4is9ZaOjsVLzSNeuqYUrvzd1fwfpso4cE/2F77XafcBU WxHpnu5r6jiw5JoX7chTVMJ8+305pLsZm+abdkGUpiBwVQRzLTFgvmNVIFfTxN6J f4avXOpJh+0pVqZl/pfYVsTB6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCeIA9pu 5NpzScQj3z3bXZpwvBEtMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq/73IOJYP6Pgri3tGzCLYORS7sEoxGnlxilOLUzhAVCSYvaqiaJUVnmb46Td 9R/zeD/mdUIaQzM+c/iJvuHNFhPec7WzbSyLWMC89NKKNnYz8G/FwWrR07z27188 JktjLpmkbgLxaQBMBwLrGjgKaq3DF+jK0XGEXtDFvqfWwDWZ4rPz/gHWP9MrZAAO Gl5qaEX4KshhVW+pkao403cW/ds87VwYvNuJzi9fYyyi4p4KA+/JWQpIN4ewBEGU Z7IzdqnSLTUw+FJ3HhRQhR9Ek4EMZb8tjbnvUYQBxIUWofozs1VLbXpnY20yTsGS LH95Dld0LHr675vw29UlpPRVgg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:10 2026 by rpki-client