$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: BVuPCUuqZQ2Epd+9ibIiV8uNzTTdqkWCFr8D5mHDZvs= Subject key identifier: 9F:89:B7:91:55:43:7A:79:AC:CF:AC:CC:78:73:D6:EC:6F:2C:56:4B Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 35AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 3565 Signing time: Thu 16 Apr 2026 14:22:29 +0000 Manifest this update: Thu 16 Apr 2026 14:22:28 +0000 Manifest next update: Thu 23 Apr 2026 14:22:28 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: 5iG2L8bELTmK2E8TLPu1nogQ0R21obFwTBc5C9jz2Eo=) 2: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: ledywzn44AtfNdf65irkSbejoe2qe67kQVSrxPSpLj8=) 3: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: VXO5/U8cHHCFaikukuqO1qnp6nbKhmKzeuFoVz0LqaU=) 4: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: c5BWjsV+5qy4Czn1fNB7N39xouqCRvW12ZZgXgS4ZDQ=) 5: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: qiT/GVvRCXwwQO5czxfwtuP70nIiPr4STQfaVH+7UL0=) 6: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: Im+A1kygYXCcmKM1N88CQpYfMfI1pkZXcprVNJAgc7Y=) 7: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: izVvMKnosN85WDCwiZeSTea3usmMiFXGuieIuV+2wlI=) 8: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: XdRb/RACDNGwlvNZO7BeLxx7KPhxjnZegADMOdEoBPs=) 9: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: CWD+yCy6yNtHR/CgsSdRActZ6Gz+ygW0qqlW1BWQfN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13742 (0x35ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Apr 16 14:22:28 2026 GMT Not After : Apr 23 14:22:28 2026 GMT Subject: CN=69e0f0a5-c916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ce:66:71:ae:f0:64:44:4b:db:aa:96:06:c4: a5:00:d0:f4:c0:60:5f:63:b3:da:81:e9:ba:30:c9: 81:37:41:04:81:e1:33:b3:7b:1b:32:c0:0c:64:de: 29:62:e0:d8:ce:2a:72:59:48:b6:a3:c5:fb:ce:ea: 69:9a:69:41:1e:0d:4f:4d:e6:8a:8d:09:d2:db:71: 89:5e:3d:43:bf:5d:02:b1:bb:90:d6:c2:f0:ae:5d: 63:bc:48:aa:0f:d8:e7:18:c8:4f:83:96:22:b1:c0: 80:37:0d:7d:00:27:34:42:5b:e6:33:99:1f:0b:d0: 9e:5b:64:9d:50:32:10:6e:42:d5:28:c2:4e:ea:b2: 5a:df:d1:06:74:cb:04:3d:0b:03:28:e6:5c:ea:e4: 92:27:1b:56:6e:03:bd:fd:cc:cf:9e:97:b6:e5:cb: e5:30:c1:c2:67:88:70:10:66:c5:aa:aa:57:a9:70: f2:a8:39:a3:13:d3:cc:8b:8e:fe:25:6c:7e:35:4f: a2:77:61:51:90:8a:51:c1:ae:e8:ce:e4:65:cf:1e: cb:f0:b0:7e:56:49:61:28:e9:8d:ba:1f:03:9b:44: 86:2a:f6:3c:6c:e2:af:7a:9c:85:eb:da:54:0c:f6: 60:12:14:83:70:a6:30:4c:1a:19:6b:a7:ab:14:5d: d2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:89:B7:91:55:43:7A:79:AC:CF:AC:CC:78:73:D6:EC:6F:2C:56:4B X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:31:47:60:c0:36:0d:d2:5c:ec:81:ca:0d:cf:f1:fd:1d:a5: 66:bd:6a:eb:eb:8b:bc:e8:f9:7a:13:e7:37:ab:3f:b5:4d:df: 4b:22:56:5d:70:aa:6e:bc:97:d4:38:6d:65:bc:b3:50:00:b1: 99:22:fa:39:ea:d7:b8:b3:e2:24:9a:64:07:32:5a:92:75:6f: 1a:9f:b4:2d:24:41:6d:a5:65:23:df:b1:b2:2d:3c:7d:73:f8: 25:44:b8:07:b7:48:1d:f5:3d:61:11:78:5c:85:19:6b:5d:34: 55:f4:a0:29:be:e5:bf:69:8b:62:82:8f:e7:5f:cb:3f:10:4e: ff:eb:9b:6f:f2:59:01:cc:94:ab:24:d0:54:b8:01:43:55:70: 3d:8e:54:c9:bd:d4:d1:2d:ba:1a:54:fe:33:45:19:5e:64:74: 04:60:c5:f4:a5:b2:fc:7d:cf:a8:03:76:da:25:fa:82:13:b7: 7d:96:6e:a7:90:2f:24:4e:d4:c5:e4:e4:56:e1:65:72:f6:03: 6f:47:04:ab:60:0d:fe:5a:11:05:60:b4:c6:1f:8b:a6:c8:26: e2:6a:ee:1d:63:6c:d0:ee:90:06:34:d9:21:6f:81:6f:8b:62: ab:ef:14:c3:8b:5d:55:59:f2:93:58:47:52:fe:07:bc:2f:30: a2:03:8b:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjYwNDE2MTQyMjI4WhcNMjYwNDIzMTQyMjI4WjAYMRYwFAYD VQQDEw02OWUwZjBhNS1jOTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3M5mca7wZERL26qWBsSlAND0wGBfY7Pagem6MMmBN0EEgeEzs3sbMsAMZN4p YuDYzipyWUi2o8X7zuppmmlBHg1PTeaKjQnS23GJXj1Dv10CsbuQ1sLwrl1jvEiq D9jnGMhPg5YiscCANw19ACc0QlvmM5kfC9CeW2SdUDIQbkLVKMJO6rJa39EGdMsE PQsDKOZc6uSSJxtWbgO9/czPnpe25cvlMMHCZ4hwEGbFqqpXqXDyqDmjE9PMi47+ JWx+NU+id2FRkIpRwa7ozuRlzx7L8LB+VklhKOmNuh8Dm0SGKvY8bOKvepyF69pU DPZgEhSDcKYwTBoZa6erFF3SJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ+Jt5FV Q3p5rM+szHhz1uxvLFZLMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARDFHYMA2DdJc7IHKDc/x/R2lZr1q6+uLvOj5ehPnN6s/tU3fSyJWXXCqbryX 1DhtZbyzUACxmSL6OerXuLPiJJpkBzJaknVvGp+0LSRBbaVlI9+xsi08fXP4JUS4 B7dIHfU9YRF4XIUZa100VfSgKb7lv2mLYoKP51/LPxBO/+ubb/JZAcyUqyTQVLgB Q1VwPY5Uyb3U0S26GlT+M0UZXmR0BGDF9KWy/H3PqAN22iX6ghO3fZZup5AvJE7U xeTkVuFlcvYDb0cEq2AN/loRBWC0xh+Lpsgm4mruHWNs0O6QBjTZIW+Bb4tiq+8U w4tdVVnyk1hHUv4HvC8wogOLnA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:44:43 2026 by rpki-client