$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: IPUs7IJJC90U8cbH1GixzGvQCmwl9b2XJ+2M9tTpkPs= Subject key identifier: 75:22:E0:BC:4E:75:FF:CC:B2:B4:94:49:F2:B0:43:1E:F8:B2:C9:4F Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 053E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 0536 Signing time: Mon 20 Apr 2026 16:25:42 +0000 Manifest this update: Mon 20 Apr 2026 16:25:42 +0000 Manifest next update: Mon 27 Apr 2026 16:25:42 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: 9p95iWOu2xjHuyJVhbS99BSp8S4CWFeiWG6YYiP/J8Y=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: pPVg90RNjRjphrQIpFi1Dtq7Yfiqt2CKG2uE/Sw0pBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Apr 20 16:25:42 2026 GMT Not After : Apr 27 16:25:42 2026 GMT Subject: CN=69e65386-94a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:b3:ee:e8:15:0e:69:85:78:16:ce:aa:03:5d: ab:46:ec:cf:17:ae:7e:a8:c2:65:d8:ff:1a:6c:d5: 0b:d9:01:d2:19:02:53:d8:54:06:b6:e6:62:b7:5a: c1:f0:12:17:96:79:d1:4e:c5:6a:a6:04:28:52:74: 3f:ec:a8:90:ff:53:55:47:19:f9:6b:fb:3f:c8:5b: be:ea:fe:05:4f:2c:e5:3b:2a:10:6f:d3:f1:df:3c: df:18:9f:9e:3c:a8:7a:65:7c:e2:2c:19:a2:5f:ed: 0e:06:8e:f1:bf:cf:8e:a5:0b:41:3d:be:66:26:65: 2b:a8:9e:10:43:d5:a2:b2:71:86:81:17:8b:21:e3: 1e:1d:d5:51:b7:db:48:82:c2:63:60:f5:75:91:5b: ae:2d:cb:96:d0:9b:dc:f7:0f:20:91:83:85:39:aa: 59:ab:53:27:48:e2:db:fa:73:88:95:3b:5e:11:f6: b0:31:9d:4f:7f:50:20:21:6f:6e:be:05:f4:9f:ba: d4:49:5d:2c:3c:10:9d:df:87:25:47:24:89:27:9a: 34:b3:e3:a7:33:43:f0:83:68:94:ec:aa:c4:18:4a: ef:94:55:9e:11:4d:c6:58:9c:de:1a:13:db:3e:02: a9:21:82:47:4b:1e:d0:34:ac:c9:48:06:a4:5e:12: 50:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:22:E0:BC:4E:75:FF:CC:B2:B4:94:49:F2:B0:43:1E:F8:B2:C9:4F X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:33:59:0c:10:a5:f8:15:78:0a:2c:4c:d8:63:ec:c1:77:08: 1c:f6:dd:b6:54:0e:90:bb:f6:16:26:2d:41:b9:01:f5:64:03: 37:c0:f7:8d:95:3c:2c:05:59:7f:99:7f:09:5b:2f:85:00:00: 75:a7:a3:3f:b5:50:ba:2d:23:ec:27:89:c7:95:3a:ab:96:c9: a7:e7:60:f6:8b:32:38:8b:35:13:e6:2b:72:cb:13:05:4c:3d: e6:d4:8b:d2:f1:82:cc:64:c8:ee:ac:87:d5:1e:2c:54:67:e1: ba:ad:75:d5:a4:b3:e8:63:36:e3:5e:80:2a:92:64:68:d9:53: 7c:8e:75:be:97:32:c9:d0:d8:e7:0f:70:82:19:de:d5:08:36: 3d:c8:a3:98:d0:ed:e0:14:85:d9:c5:3d:e4:2d:a7:67:88:84: 15:be:42:40:5c:19:c8:a5:4b:c7:19:48:4f:c1:2f:68:7e:13: 84:13:49:54:89:4f:22:81:b2:f4:b8:35:4d:05:81:78:94:d3: c6:8a:df:07:ef:c3:6b:4f:e5:09:10:0b:eb:95:aa:17:2c:4c: f8:6f:bd:d9:85:f9:44:6f:32:f6:5c:b7:ca:1c:5a:3f:7b:3e: 1f:e9:c5:1e:69:a7:11:f5:5f:8c:a8:eb:9b:b5:cb:1d:ea:e7: 55:53:65:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjYwNDIwMTYyNTQyWhcNMjYwNDI3MTYyNTQyWjAYMRYwFAYD VQQDEw02OWU2NTM4Ni05NGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAibPu6BUOaYV4Fs6qA12rRuzPF65+qMJl2P8abNUL2QHSGQJT2FQGtuZit1rB 8BIXlnnRTsVqpgQoUnQ/7KiQ/1NVRxn5a/s/yFu+6v4FTyzlOyoQb9Px3zzfGJ+e PKh6ZXziLBmiX+0OBo7xv8+OpQtBPb5mJmUrqJ4QQ9WisnGGgReLIeMeHdVRt9tI gsJjYPV1kVuuLcuW0Jvc9w8gkYOFOapZq1MnSOLb+nOIlTteEfawMZ1Pf1AgIW9u vgX0n7rUSV0sPBCd34clRySJJ5o0s+OnM0Pwg2iU7KrEGErvlFWeEU3GWJzeGhPb PgKpIYJHSx7QNKzJSAakXhJQdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHUi4LxO df/MsrSUSfKwQx74sslPMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYTNZDBCl+BV4CixM2GPswXcIHPbdtlQOkLv2FiYtQbkB9WQDN8D3jZU8LAVZ f5l/CVsvhQAAdaejP7VQui0j7CeJx5U6q5bJp+dg9osyOIs1E+YrcssTBUw95tSL 0vGCzGTI7qyH1R4sVGfhuq111aSz6GM2416AKpJkaNlTfI51vpcyydDY5w9wghne 1Qg2PcijmNDt4BSF2cU95C2nZ4iEFb5CQFwZyKVLxxlIT8EvaH4ThBNJVIlPIoGy 9Lg1TQWBeJTTxorfB+/Da0/lCRAL65WqFyxM+G+92YX5RG8y9ly3yhxaP3s+H+nF HmmnEfVfjKjrm7XLHernVVNlnQ== -----END CERTIFICATE-----Generated at Wed Apr 22 00:20:13 2026 by rpki-client