$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: pC2GWnOGxec4zaEee3CQ4V3Zb9Og1pbEF1wSTS1Pjyg= Subject key identifier: 33:11:78:65:74:2A:D2:5F:EC:8B:90:55:8F:C1:A0:0D:A7:C2:E5:E3 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 35BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 357E Signing time: Sat 04 Apr 2026 14:27:12 +0000 Manifest this update: Sat 04 Apr 2026 14:27:11 +0000 Manifest next update: Sat 11 Apr 2026 14:27:11 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: DvUw3tz3bI9SXR0i+aOrznZ4xJ5CTP5tBweMUddX5s8=) 2: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: fVvxzX26bBfDXV9ay8ikak6wmeRlqBLI0TiegFUAVOE=) 3: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: Wi5UHg6VE2M6iVKKsLj1pLTxrYmlbg4+UkMjC8s6Hnc=) 4: B16ED608D4A311F09760561DC4F9AE02.roa (hash: FURDBQKgiqm4yPUJQiOyIMSGoPxgMV1Ylyz1/4VJeCc=) 5: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: e8SiSstrDxKvqr8pjHVysqGm3Q9BeYoWTiQI4PDdJxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13759 (0x35bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Apr 4 14:27:11 2026 GMT Not After : Apr 11 14:27:11 2026 GMT Subject: CN=69d11fc0-8194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c5:5e:34:33:32:77:1f:33:2e:88:2f:34:cb: 30:fa:7f:22:dd:43:f6:61:68:7f:75:b8:8b:ff:14: cd:d9:29:57:10:13:53:69:25:0b:12:3d:b6:0a:4c: 8c:f9:44:15:17:22:13:5f:b6:02:e3:5c:7c:47:f6: 7f:a0:45:77:0f:71:6b:17:f1:6b:dd:9e:40:00:24: bb:e3:ba:d2:00:8b:c9:12:56:f3:fb:09:41:c6:1f: 5c:51:ef:3c:4e:47:f7:19:fb:36:9c:88:8a:5f:0d: fb:f1:3a:b4:a5:ad:07:07:6d:67:1c:ee:1f:12:93: 83:a8:8b:f5:8c:4c:f8:e3:05:d3:80:9e:e7:b4:df: 8c:95:25:b6:87:69:6f:85:d0:15:16:f5:89:b4:fc: e6:aa:d2:7c:12:95:b3:28:68:af:a1:c1:2e:37:21: 08:f7:b6:43:93:59:63:72:33:16:a9:08:51:5c:53: ba:af:49:78:0d:a2:e7:39:12:75:1f:ed:8e:8e:51: 45:58:f4:74:0a:d6:bc:ab:8a:c4:00:5d:83:79:53: 0c:eb:1f:8c:9b:2c:c7:ed:19:67:ce:be:35:08:c1: 30:59:90:6f:44:f5:4e:26:ca:c3:37:31:be:2c:29: b1:ca:4a:65:e3:ed:ac:c3:8b:5d:17:85:1a:1f:4c: a0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:11:78:65:74:2A:D2:5F:EC:8B:90:55:8F:C1:A0:0D:A7:C2:E5:E3 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b2:98:91:f9:4f:b6:93:12:91:3a:e8:89:ae:9f:89:b4:c4: 09:f0:54:ba:8e:80:78:c4:b9:10:5a:df:67:4a:bc:f6:19:a2: 33:ec:49:05:b2:0c:15:93:ca:19:78:df:96:43:67:db:c6:f3: 49:a9:48:f5:a3:89:d6:19:e7:38:97:1c:6c:e9:68:44:bc:58: 3f:f0:4f:3d:8d:e5:94:70:fd:e0:94:e2:cb:82:11:5a:dc:90: 10:f8:90:6b:1e:7d:db:8c:95:ab:c1:ad:f1:15:8e:2f:da:e5: af:62:6c:73:44:c3:d4:22:cb:56:29:50:6a:4e:fe:d1:c8:fc: 28:d3:c1:b9:f6:19:52:bf:c0:66:eb:ea:b3:65:b5:67:df:24: c5:aa:9d:8a:94:d3:9a:07:d5:3c:1d:bb:d7:c3:19:5f:13:be: 81:a8:1f:a7:c6:43:86:30:78:8e:22:06:5f:5d:26:f8:fa:59: 1b:2a:3f:17:bc:b0:b9:ac:02:3d:56:41:3b:5c:47:9b:6f:eb: 65:32:5c:57:10:50:0b:c9:6d:95:37:2e:64:00:94:47:a8:c2: 46:d9:6e:76:f0:3e:3c:47:18:b1:a4:d4:b0:f3:05:28:90:7c: 52:a9:f0:66:6b:9b:ec:60:69:b0:0c:f6:b3:00:f8:e2:02:39: 47:93:e8:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjYwNDA0MTQyNzExWhcNMjYwNDExMTQyNzExWjAYMRYwFAYD VQQDEw02OWQxMWZjMC04MTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sVeNDMydx8zLogvNMsw+n8i3UP2YWh/dbiL/xTN2SlXEBNTaSULEj22CkyM +UQVFyITX7YC41x8R/Z/oEV3D3FrF/Fr3Z5AACS747rSAIvJElbz+wlBxh9cUe88 Tkf3Gfs2nIiKXw378Tq0pa0HB21nHO4fEpODqIv1jEz44wXTgJ7ntN+MlSW2h2lv hdAVFvWJtPzmqtJ8EpWzKGivocEuNyEI97ZDk1ljcjMWqQhRXFO6r0l4DaLnORJ1 H+2OjlFFWPR0Cta8q4rEAF2DeVMM6x+MmyzH7Rlnzr41CMEwWZBvRPVOJsrDNzG+ LCmxykpl4+2sw4tdF4UaH0ygAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDMReGV0 KtJf7IuQVY/BoA2nwuXjMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmbKYkflPtpMSkTroia6fibTECfBUuo6AeMS5EFrfZ0q89hmiM+xJBbIMFZPK GXjflkNn28bzSalI9aOJ1hnnOJccbOloRLxYP/BPPY3llHD94JTiy4IRWtyQEPiQ ax5924yVq8Gt8RWOL9rlr2Jsc0TD1CLLVilQak7+0cj8KNPBufYZUr/AZuvqs2W1 Z98kxaqdipTTmgfVPB2718MZXxO+gagfp8ZDhjB4jiIGX10m+PpZGyo/F7ywuawC PVZBO1xHm2/rZTJcVxBQC8ltlTcuZACUR6jCRtludvA+PEcYsaTUsPMFKJB8Uqnw Zmub7GBpsAz2swD44gI5R5PoLw== -----END CERTIFICATE-----Generated at Mon Apr 6 15:20:29 2026 by rpki-client