$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: CRzrTjG4cAPZX7ICwA/PbHsHpV0G7M5j4eCYntckay4= Subject key identifier: 39:A4:D1:FB:5F:6B:27:96:66:76:6F:2B:2F:F2:51:60:9E:17:FB:C5 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 0235 Signing time: Sun 05 Apr 2026 02:12:12 +0000 Manifest this update: Sun 05 Apr 2026 02:12:12 +0000 Manifest next update: Sun 12 Apr 2026 02:12:12 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: apXgMKBkhGyjSQVts6UXUbol6VQFqmeeRRVmd75rSGI=) 2: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: GKQTSqIzwIY4GOth+FkYLT5SOAlB26R/4wVLOg8mq+Q=) 3: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RremoPLYHwOMsWIoI3OXSWs8zLNwfSA8SoWwpFXqkZA=) 4: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: LUHYZ/6kqurL/jOA9WsqOIbXqqpGM7KM4Mk7l+DENE0=) 5: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: sE0FXcv6AB6dmDFKiWcu8KQiOOpk2VVY0iuOGiUmgoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:12:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Apr 5 02:12:12 2026 GMT Not After : Apr 12 02:12:12 2026 GMT Subject: CN=69d1c4fc-b88d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:20:97:70:87:24:7d:da:c4:59:bc:2c:ad:44: 66:af:ab:28:fc:39:6b:1c:9a:81:4d:2c:84:f5:b9: 68:e9:f2:d9:a8:a1:31:ae:1e:51:48:34:d8:45:b2: 94:47:7e:8b:78:5a:fb:c5:6f:6f:42:9c:2a:5c:68: b0:88:f4:5d:26:24:28:48:e2:2d:bf:a5:78:42:93: 00:4a:b0:5d:63:fc:23:36:0c:b0:11:15:e1:f0:b9: 15:12:87:cb:2c:5d:42:91:79:1c:de:72:fd:5d:61: e3:f2:b1:f1:fe:6d:79:9e:54:a6:a8:4c:98:8e:7e: c1:3c:aa:af:67:2b:11:b8:3d:64:f1:04:54:86:0a: 2f:bc:72:4d:71:c1:bd:0c:99:38:93:06:04:dc:54: 7f:c9:60:5f:9e:a6:de:e8:13:7a:ae:0b:dd:fd:97: df:89:92:e0:d9:b2:8c:58:79:7e:81:ae:c4:17:36: ad:3b:50:74:f5:0e:55:4a:00:8a:6e:da:26:7c:89: dd:0e:cc:96:34:96:74:26:9a:df:8a:a2:6f:d7:51: 4e:ba:82:79:11:96:2d:2d:ee:88:d2:ff:47:78:d0: 24:dc:b3:ec:65:84:9d:7c:37:00:17:68:63:92:7d: 5e:85:c3:37:6b:0d:ef:7c:d1:35:03:c3:18:9f:1c: 8d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A4:D1:FB:5F:6B:27:96:66:76:6F:2B:2F:F2:51:60:9E:17:FB:C5 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:9b:2a:03:2b:8c:56:8b:88:b9:51:02:5e:6e:ab:82:47:65: b2:00:c8:8e:38:47:d8:e2:9e:87:fc:9a:3a:5e:7b:8f:eb:c2: 9d:a7:6e:e7:62:e6:ad:5d:0a:63:64:39:30:17:11:f5:81:02: f9:38:14:f2:8e:1e:8a:21:3a:db:59:75:ab:cb:61:48:1f:01: 73:53:ba:23:e7:03:0f:23:d6:21:2b:49:60:1d:8b:50:b5:55: b6:cb:24:57:75:f3:1f:ef:a7:f4:32:c8:89:83:24:a8:9e:ed: 83:71:b5:87:99:b7:a6:ca:02:5c:f4:3c:e9:30:44:a9:1f:61: 7c:fa:21:7a:06:75:13:e5:dc:c8:3e:ec:f7:d1:44:c6:84:fd: f3:5f:a0:21:50:1b:bd:74:b4:4d:4e:6f:dd:f1:98:ad:46:a7: c0:6f:0b:62:d8:f2:70:3e:55:7f:3f:de:d6:63:36:61:aa:98: 89:89:85:b7:7e:1f:e1:3a:16:62:8a:73:3a:06:69:99:f9:da: f5:7a:5c:1b:e2:35:5e:b1:6c:ce:b8:5a:44:e3:18:e2:19:55: 8d:56:6a:12:36:b0:95:4b:7b:06:76:39:05:61:64:c5:15:59: 27:c5:21:72:dc:89:44:e9:ce:48:af:e9:33:35:9a:d9:e0:dd: aa:f5:ee:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjYwNDA1MDIxMjEyWhcNMjYwNDEyMDIxMjEyWjAYMRYwFAYD VQQDEw02OWQxYzRmYy1iODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiCXcIckfdrEWbwsrURmr6so/DlrHJqBTSyE9blo6fLZqKExrh5RSDTYRbKU R36LeFr7xW9vQpwqXGiwiPRdJiQoSOItv6V4QpMASrBdY/wjNgywERXh8LkVEofL LF1CkXkc3nL9XWHj8rHx/m15nlSmqEyYjn7BPKqvZysRuD1k8QRUhgovvHJNccG9 DJk4kwYE3FR/yWBfnqbe6BN6rgvd/ZffiZLg2bKMWHl+ga7EFzatO1B09Q5VSgCK btomfIndDsyWNJZ0JprfiqJv11FOuoJ5EZYtLe6I0v9HeNAk3LPsZYSdfDcAF2hj kn1ehcM3aw3vfNE1A8MYnxyNewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDmk0ftf ayeWZnZvKy/yUWCeF/vFMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm5sqAyuMVouIuVECXm6rgkdlsgDIjjhH2OKeh/yaOl57j+vCnadu52LmrV0K Y2Q5MBcR9YEC+TgU8o4eiiE621l1q8thSB8Bc1O6I+cDDyPWIStJYB2LULVVtssk V3XzH++n9DLIiYMkqJ7tg3G1h5m3psoCXPQ86TBEqR9hfPohegZ1E+XcyD7s99FE xoT981+gIVAbvXS0TU5v3fGYrUanwG8LYtjycD5Vfz/e1mM2YaqYiYmFt34f4ToW YopzOgZpmfna9XpcG+I1XrFszrhaROMY4hlVjVZqEjawlUt7BnY5BWFkxRVZJ8Uh ctyJROnOSK/pMzWa2eDdqvXu7A== -----END CERTIFICATE-----Generated at Mon Apr 6 15:26:30 2026 by rpki-client