$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: pjlemTY4woF6z/JZ9gWxdX1AaoQYfy7jCMU3YPLW0Fc= Subject key identifier: 6C:6F:AD:89:78:FA:E2:94:EF:D5:8A:FF:F2:EA:DF:D7:9E:29:2E:19 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 06F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 06EA Signing time: Sat 18 Apr 2026 19:13:10 +0000 Manifest this update: Sat 18 Apr 2026 19:13:10 +0000 Manifest next update: Sat 25 Apr 2026 19:13:10 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: RwTmN9DXN9F/C/Xrf/IB/QhfRR+btvDvj4h1SyVhfDE=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: UhjZCQXMTH4EcImSo4POBU6QddKCD4qTUt+kDu3goss=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: 2RPaofcBmVRp+rnkKNh5LcywLDf5c7LR9zPp5ibVZFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Apr 18 19:13:10 2026 GMT Not After : Apr 25 19:13:10 2026 GMT Subject: CN=69e3d7c6-a06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e8:86:02:94:62:a4:20:a3:10:80:aa:2e:99: 0b:84:65:04:16:90:f2:ab:2b:60:79:5d:1c:d3:f0: 23:a9:2b:9f:e8:20:8a:74:9f:7c:8a:d4:9f:2f:3e: 8e:9d:f8:44:cb:09:7f:dd:b8:8d:09:db:1b:ee:9d: ba:3d:74:b0:17:7c:99:e0:41:05:7a:7b:24:d5:ae: c1:ab:1c:95:fc:68:f6:d9:ca:d1:85:a8:c4:dd:39: 6c:96:ed:e2:d6:30:c4:a0:ad:21:0d:e8:61:a4:e7: ee:f3:0b:93:3f:24:a2:3d:6e:f3:42:f9:f6:a3:32: c2:d2:b3:2b:17:57:7d:13:87:ee:9e:45:db:70:c4: ef:f6:4a:ae:6b:a7:05:de:fa:c6:ad:96:3c:3e:8d: d4:ce:ee:63:c7:14:a9:b7:ab:26:8f:de:13:f2:aa: 52:81:6c:dc:fc:f2:eb:b1:c3:26:a8:8f:54:89:91: 5b:af:71:63:6d:d7:b9:44:5c:7d:af:70:43:97:51: 9f:9a:f2:1c:a4:50:62:ae:39:4e:43:ae:f6:09:02: 82:9f:55:b8:54:4b:55:a6:fc:24:01:57:85:e6:0e: 0c:bc:2a:79:f1:0c:e7:6e:25:a3:09:0e:2f:8b:80: 6a:d3:5b:79:d1:68:da:a5:c8:5b:d1:96:28:db:45: d3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6F:AD:89:78:FA:E2:94:EF:D5:8A:FF:F2:EA:DF:D7:9E:29:2E:19 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:da:d8:23:46:f2:da:d6:2f:66:4b:79:8e:8f:59:17:a3:bc: ae:d0:51:8f:ef:4b:33:6c:a5:b6:b3:c8:d3:9f:a9:49:30:ed: b2:7a:8e:aa:21:ec:98:07:be:ca:40:4f:5f:92:03:22:6b:bb: 2d:c5:22:4a:ca:5d:ea:53:f6:dd:ca:7b:8a:96:5e:e4:e4:6f: e9:5f:65:96:7e:9a:01:0d:d2:58:3f:14:59:1d:76:3e:6a:31: 41:d8:70:fa:b5:ca:4f:64:23:db:87:47:a2:32:39:92:07:2d: 75:3a:e5:44:95:3e:80:a4:4b:e7:ea:36:1f:7a:1c:7c:a9:52: 7d:87:b6:54:01:49:6a:b8:73:a6:83:75:fc:d8:ac:00:70:71: f5:16:62:0d:e1:0a:19:94:e4:c7:f6:6d:27:29:95:7c:46:37: a0:10:eb:44:2d:cf:e3:8e:98:40:f5:df:07:aa:f4:3e:09:97: eb:c3:9b:10:db:8c:3a:7b:8c:3a:63:79:8a:b9:27:f6:8d:79: cd:4f:15:3d:e0:6b:ac:2a:a4:c2:9e:8c:67:c7:01:1a:8a:d3: 66:bb:ca:2a:a4:a8:a5:69:ec:33:52:30:af:ab:d9:92:bc:61: a9:55:ea:ca:86:c2:f3:ac:78:83:b4:38:20:ef:ca:cd:f8:7a: 08:f0:86:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjYwNDE4MTkxMzEwWhcNMjYwNDI1MTkxMzEwWjAYMRYwFAYD VQQDEw02OWUzZDdjNi1hMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkeiGApRipCCjEICqLpkLhGUEFpDyqytgeV0c0/AjqSuf6CCKdJ98itSfLz6O nfhEywl/3biNCdsb7p26PXSwF3yZ4EEFensk1a7BqxyV/Gj22crRhajE3Tlslu3i 1jDEoK0hDehhpOfu8wuTPySiPW7zQvn2ozLC0rMrF1d9E4funkXbcMTv9kqua6cF 3vrGrZY8Po3Uzu5jxxSpt6smj94T8qpSgWzc/PLrscMmqI9UiZFbr3Fjbde5RFx9 r3BDl1GfmvIcpFBirjlOQ672CQKCn1W4VEtVpvwkAVeF5g4MvCp58QznbiWjCQ4v i4Bq01t50Wjapchb0ZYo20XTnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGxvrYl4 +uKU79WK//Lq39eeKS4ZMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM9rYI0by2tYvZkt5jo9ZF6O8rtBRj+9LM2yltrPI05+pSTDtsnqOqiHsmAe+ ykBPX5IDImu7LcUiSspd6lP23cp7ipZe5ORv6V9lln6aAQ3SWD8UWR12PmoxQdhw +rXKT2Qj24dHojI5kgctdTrlRJU+gKRL5+o2H3ocfKlSfYe2VAFJarhzpoN1/Nis AHBx9RZiDeEKGZTkx/ZtJymVfEY3oBDrRC3P446YQPXfB6r0PgmX68ObENuMOnuM OmN5irkn9o15zU8VPeBrrCqkwp6MZ8cBGorTZrvKKqSopWnsM1Iwr6vZkrxhqVXq yobC86x4g7Q4IO/Kzfh6CPCGDw== -----END CERTIFICATE-----Generated at Sat Apr 18 22:27:15 2026 by rpki-client