$ rpki-client -vvf rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft File: tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft (raw, json) Hash identifier: BON2FioSDQI3MNUgGUOsU7l7PRGI/vmnHzX9lJX3iKA= Subject key identifier: F5:1A:A6:7B:9D:F3:F9:14:2B:22:D2:81:C8:FB:17:C8:2B:51:32:B2 Authority key identifier: B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 Certificate issuer: /CN=A911A4F7/serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft Manifest number: 0120 Signing time: Sun 19 Apr 2026 05:21:45 +0000 Manifest this update: Sun 19 Apr 2026 05:21:44 +0000 Manifest next update: Sun 26 Apr 2026 05:21:44 +0000 Files and hashes: 1: tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl (hash: B3n+jpJGdq4C5YgQMuCrVnXZaR6CUHnAobIKZlSDfiQ=) 2: F17DA0FE85FC11EFBD7A485FC4F9AE02.roa (hash: NPEHXK4kvB3m3Mt2iQopHp4B8bUEbfWS8NtHZ6Qe9rU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A4F7, serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Validity Not Before: Apr 19 05:21:44 2026 GMT Not After : Apr 26 05:21:44 2026 GMT Subject: CN=69e46668-9bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1a:5a:01:21:f1:3e:36:a3:41:84:80:56:11: 68:79:d7:4b:bc:56:23:18:d7:0d:8d:6b:f4:1b:02: 71:f3:d1:d9:e0:87:f1:49:57:38:85:b5:ee:6f:63: 2b:38:32:32:72:7e:56:a8:3f:30:80:0b:32:df:02: c6:b5:75:87:9f:29:a6:38:15:36:0d:62:54:66:8c: 7a:fe:27:ff:e0:6b:4c:f4:98:55:08:cb:30:8c:2f: 69:5d:60:9c:96:c9:60:2b:e8:04:be:48:3f:1c:15: 3b:fd:d1:0d:51:7b:d7:da:ad:20:6d:49:c1:a9:14: 46:c0:fc:71:3e:5a:b0:e5:a3:9e:36:dd:a5:1a:05: 77:4b:ee:e2:e6:bb:44:8e:97:92:f8:db:5e:fb:2e: f6:cf:00:ce:21:b0:01:0b:f0:48:82:29:3b:1c:8e: 62:46:67:a5:ce:37:79:bd:88:69:34:59:e1:25:d7: 56:12:fe:bf:c8:22:dd:a0:30:4e:16:53:85:91:ab: d8:c0:a2:15:84:24:c8:95:25:41:70:28:f4:0d:c0: 2e:a8:03:80:da:57:62:90:f1:1f:05:85:9d:77:74: a3:48:08:9f:d1:6a:84:5a:a8:41:c5:8b:f3:97:be: a5:de:dd:92:bf:19:8a:d0:c7:0e:12:11:25:a0:1d: b3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:1A:A6:7B:9D:F3:F9:14:2B:22:D2:81:C8:FB:17:C8:2B:51:32:B2 X509v3 Authority Key Identifier: keyid:B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6c:2a:7b:81:94:3d:a6:83:08:52:04:66:e0:fe:3e:11:66: 38:e1:0e:a7:58:0c:1a:a7:fa:bb:62:72:f5:73:62:ed:5d:fe: f0:00:84:a3:94:7f:b2:24:48:c1:21:0e:8e:95:40:e3:98:41: 49:2d:79:27:43:b7:e4:2c:2b:56:86:b8:18:db:41:b1:f1:d4: fd:ba:65:2d:67:4a:84:a6:d2:5a:3d:d6:b8:92:4d:a9:1e:a9: 46:dd:22:b2:1a:9d:c6:02:35:b7:26:9d:98:3a:f6:98:5f:b1: 41:ba:35:50:60:9f:1d:6e:61:ab:45:20:c6:cc:f0:5f:d2:6d: f7:58:94:ee:93:72:2c:a8:25:08:1c:d5:ac:a5:84:98:83:19: c0:98:15:15:78:2c:a7:87:3d:0e:b1:c6:d7:ed:32:6f:00:f4: de:5b:64:ed:ca:c2:83:55:f9:49:ab:4f:77:5c:e7:7a:2d:c8: 87:d8:95:fb:aa:3f:93:91:cd:e7:c3:f8:92:31:dd:d0:07:11: e0:b4:62:4d:34:f0:cb:49:66:b4:ca:96:4e:c3:90:81:a5:22: ff:b6:9f:b9:c7:3d:d5:be:2b:a5:f2:4f:50:bb:d6:37:6b:ed: 50:81:e1:a5:65:8b:cf:a2:d5:c9:c9:8a:99:91:82:78:57:90: fc:72:00:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE0RjcxMTAvBgNVBAUTKEI1RDk1NTk3N0FEQTQ2ODNBQzVCNTlDMjU4MThCNDQz ODFDMjRGRTYwHhcNMjYwNDE5MDUyMTQ0WhcNMjYwNDI2MDUyMTQ0WjAYMRYwFAYD VQQDEw02OWU0NjY2OC05YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxpaASHxPjajQYSAVhFoeddLvFYjGNcNjWv0GwJx89HZ4IfxSVc4hbXub2Mr ODIycn5WqD8wgAsy3wLGtXWHnymmOBU2DWJUZox6/if/4GtM9JhVCMswjC9pXWCc lslgK+gEvkg/HBU7/dENUXvX2q0gbUnBqRRGwPxxPlqw5aOeNt2lGgV3S+7i5rtE jpeS+Nte+y72zwDOIbABC/BIgik7HI5iRmelzjd5vYhpNFnhJddWEv6/yCLdoDBO FlOFkavYwKIVhCTIlSVBcCj0DcAuqAOA2ldikPEfBYWdd3SjSAif0WqEWqhBxYvz l76l3t2SvxmK0McOEhEloB2zZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPUapnud 8/kUKyLSgcj7F8grUTKyMB8GA1UdIwQYMBaAFLXZVZd62kaDrFtZwlgYtEOBwk/m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTRGNy85QTU4QzM4QTg1 RkMxMUVGQkMyMTBGNUVDNEY5QUUwMi90ZGxWbDNyYVJvT3NXMW5DV0JpMFE0SENU LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RkbFZsM3JhUm9Pc1cxbkNXQmkwUTRIQ1QtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTRGNy85QTU4QzM4QTg1RkMxMUVGQkMyMTBGNUVDNEY5QUUwMi90ZGxWbDNyYVJv T3NXMW5DV0JpMFE0SENULVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQWwqe4GUPaaDCFIEZuD+PhFmOOEOp1gMGqf6u2Jy9XNi7V3+8ACEo5R/siRI wSEOjpVA45hBSS15J0O35CwrVoa4GNtBsfHU/bplLWdKhKbSWj3WuJJNqR6pRt0i shqdxgI1tyadmDr2mF+xQbo1UGCfHW5hq0UgxszwX9Jt91iU7pNyLKglCBzVrKWE mIMZwJgVFXgsp4c9DrHG1+0ybwD03ltk7crCg1X5SatPd1znei3Ih9iV+6o/k5HN 58P4kjHd0AcR4LRiTTTwy0lmtMqWTsOQgaUi/7afucc91b4rpfJPULvWN2vtUIHh pWWLz6LVycmKmZGCeFeQ/HIAig== -----END CERTIFICATE-----Generated at Sun Apr 19 10:16:12 2026 by rpki-client