$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: ghrM8hzt3e08Hc4Sg4EzFGUmlgcVvr6HmwUtU7dTqyY= Subject key identifier: 36:9F:4C:9F:67:23:59:DB:0A:2C:E0:54:0C:0E:3F:12:1A:05:49:65 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 04E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 04DD Signing time: Sat 04 Apr 2026 23:37:30 +0000 Manifest this update: Sat 04 Apr 2026 23:37:30 +0000 Manifest next update: Sat 11 Apr 2026 23:37:30 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: Mu96YpQOQJw9vwq6m4MZ/6hrGwKcqgDm2M6s9+jm1kE=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: 8RK3wMUcaIlDFax8CoO7B3J+G4IwltOjR9G0Tg+XrZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Apr 4 23:37:30 2026 GMT Not After : Apr 11 23:37:30 2026 GMT Subject: CN=69d1a0ba-0618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6e:4a:44:47:ef:02:f1:b8:52:9a:a1:0d:ef: a9:9e:35:84:3d:95:f1:69:a6:d1:0a:79:60:ad:c2: 66:16:8d:7b:5b:66:83:5d:43:92:20:aa:1a:6d:a3: e9:40:04:79:86:eb:7b:65:7d:d7:4d:ae:17:f3:5e: e2:2e:1a:5d:77:24:66:12:a7:75:8b:f3:f8:54:9d: 3b:df:b0:58:d3:36:4f:9e:93:b2:a8:fa:68:96:55: f4:a8:d1:5d:cd:e2:04:13:97:c9:cb:5e:41:22:c1: 95:ad:67:ef:3a:94:8c:65:c8:70:0d:7f:be:7a:ba: 74:f2:5e:de:b4:14:6b:bc:17:e1:e2:cd:18:76:d7: 0b:66:87:d0:01:b8:21:ca:1e:c4:31:38:48:7d:6f: eb:be:6a:c6:fd:71:a8:45:dd:c8:49:cd:45:55:dc: e5:a3:e4:c3:47:ff:02:a2:88:be:24:08:ba:4a:54: 03:91:7a:89:06:84:19:fa:fe:e3:93:d9:db:c3:dc: d2:24:8a:a8:b2:1a:08:87:c7:de:9d:05:20:9b:56: b5:8c:e9:9c:9b:7b:40:9c:14:08:e1:2c:b3:7b:0a: 52:9f:7e:36:e3:a0:ea:72:6b:a8:c1:e3:8a:01:bf: 4f:ed:c2:18:e3:95:de:bf:23:f1:42:b4:25:3b:09: a7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9F:4C:9F:67:23:59:DB:0A:2C:E0:54:0C:0E:3F:12:1A:05:49:65 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:d7:fc:dd:0f:37:88:37:f3:4d:09:d6:02:05:13:8d:41:15: 7d:8b:31:b5:f5:f7:c2:a0:06:62:c2:c1:4e:34:6f:d5:6b:6b: f6:5a:37:52:fd:38:83:27:cd:45:07:f1:4d:c2:f0:f0:71:df: 0f:c3:7e:37:d2:39:0e:80:f1:be:3f:52:a6:26:de:c2:a5:a6: 5e:93:dc:6b:b0:0b:af:d3:3e:bb:b1:f2:af:5c:5f:85:81:7a: 7c:a3:59:19:af:76:79:e0:4b:be:75:90:1b:a9:92:a1:96:57: e3:04:1a:40:5b:37:a7:67:cd:fd:92:be:5a:03:b6:42:e4:ae: 8d:b3:38:38:27:a1:f6:8d:8c:a5:ae:24:95:d6:e0:61:6d:b4: 6d:4d:8e:81:85:46:3a:77:72:bf:08:bc:fb:1b:4a:94:6d:35: 9a:d2:1c:ab:9b:1a:da:b8:5e:ad:3e:2f:ef:73:99:7b:e7:29: e6:8a:94:27:1c:7e:87:ea:c2:28:a8:5a:cb:43:7d:92:29:0c: a8:4f:ec:40:36:6d:48:eb:6e:a1:dc:c4:04:e7:ee:09:77:08: b0:c8:59:c8:c9:34:2f:84:04:6a:07:4b:da:73:e3:3c:f9:d8: 78:18:c4:cc:fe:f4:f6:8b:8f:6d:74:32:ea:fa:51:a3:47:20: 93:11:77:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjYwNDA0MjMzNzMwWhcNMjYwNDExMjMzNzMwWjAYMRYwFAYD VQQDEw02OWQxYTBiYS0wNjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArW5KREfvAvG4UpqhDe+pnjWEPZXxaabRCnlgrcJmFo17W2aDXUOSIKoabaPp QAR5hut7ZX3XTa4X817iLhpddyRmEqd1i/P4VJ0737BY0zZPnpOyqPpollX0qNFd zeIEE5fJy15BIsGVrWfvOpSMZchwDX++erp08l7etBRrvBfh4s0YdtcLZofQAbgh yh7EMThIfW/rvmrG/XGoRd3ISc1FVdzlo+TDR/8Cooi+JAi6SlQDkXqJBoQZ+v7j k9nbw9zSJIqoshoIh8fenQUgm1a1jOmcm3tAnBQI4SyzewpSn34246DqcmuoweOK Ab9P7cIY45XevyPxQrQlOwmnuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDafTJ9n I1nbCizgVAwOPxIaBUllMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaNf83Q83iDfzTQnWAgUTjUEVfYsxtfX3wqAGYsLBTjRv1Wtr9lo3Uv04gyfN RQfxTcLw8HHfD8N+N9I5DoDxvj9SpibewqWmXpPca7ALr9M+u7Hyr1xfhYF6fKNZ Ga92eeBLvnWQG6mSoZZX4wQaQFs3p2fN/ZK+WgO2QuSujbM4OCeh9o2Mpa4kldbg YW20bU2OgYVGOndyvwi8+xtKlG01mtIcq5sa2rherT4v73OZe+cp5oqUJxx+h+rC KKhay0N9kikMqE/sQDZtSOtuodzEBOfuCXcIsMhZyMk0L4QEagdL2nPjPPnYeBjE zP709ouPbXQy6vpRo0cgkxF3tg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:29:09 2026 by rpki-client