$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: dKysSpavbxj8hWvMkdUaQOA5lJugUISKpWqXPiOeiag= Subject key identifier: F8:57:1E:BB:DE:AF:18:15:B2:FD:F9:35:FC:74:EF:8E:F4:9A:0F:66 Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 01A7 Signing time: Sun 19 Apr 2026 03:49:46 +0000 Manifest this update: Sun 19 Apr 2026 03:49:46 +0000 Manifest next update: Sun 26 Apr 2026 03:49:46 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: Vy2JyKKW3rDjikAhKdemjTrjFjgTQY/5VnnCUuCKVv4=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: 4Xxfcn9vWAxmFmsir9WaEVwPirqEsxparkquZplonJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 03:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Apr 19 03:49:46 2026 GMT Not After : Apr 26 03:49:46 2026 GMT Subject: CN=69e450da-e90f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:78:56:a2:2c:49:b3:97:92:dd:8e:43:f5:d6: f3:ac:75:b7:9d:01:b5:2b:51:c8:c7:55:0d:8f:96: 70:62:65:5c:5c:58:19:72:df:6b:dd:1f:9d:df:2a: b8:7c:11:e6:bd:78:23:5d:60:cd:9f:22:53:57:e9: 03:4b:5f:b2:7c:7f:71:88:af:95:94:f8:91:22:d3: 9b:90:d9:ec:e1:db:52:de:68:d2:02:29:1f:14:25: 51:a7:bb:68:10:52:3c:f0:d1:4c:84:1a:8e:87:8d: 0a:02:7a:29:84:b2:03:a6:5d:4c:5d:39:c4:37:5a: a9:26:f3:94:0c:13:3f:19:fc:1a:60:0e:71:fb:cd: 4d:a9:da:1e:2d:63:bf:44:19:0e:db:1e:85:d1:5d: 13:e0:6d:2a:ab:92:8e:f7:c5:ff:c5:58:85:4d:04: a9:35:fd:36:74:08:a2:54:aa:d5:ce:1f:e7:eb:48: 02:b8:63:11:fb:f2:8c:00:d9:e5:88:c9:24:55:c8: 50:85:8b:fa:f5:ed:da:b5:29:21:3e:e1:2d:e2:90: 75:73:55:f8:d8:8f:a4:bf:c9:41:08:03:76:95:37: 48:b9:f9:67:3f:6b:5d:f5:f0:a2:18:9a:14:a0:0d: 93:96:aa:37:44:88:b4:36:c5:ca:fe:03:7e:0d:83: 91:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:57:1E:BB:DE:AF:18:15:B2:FD:F9:35:FC:74:EF:8E:F4:9A:0F:66 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:62:fa:9d:fb:c9:3c:08:06:71:34:93:c2:81:09:11:e1:0d: 22:cf:c6:ae:ac:2e:b8:1c:65:94:ec:99:79:9d:12:39:69:4d: 78:1a:47:b1:7f:01:ab:fe:70:5f:3c:43:54:89:51:1d:a5:3e: b8:10:e1:87:88:ff:cc:34:71:81:e0:54:48:5a:b7:e0:4c:2a: 61:b5:4a:0d:83:2f:4d:ce:e6:f3:ce:c8:24:a0:38:58:b7:92: 7c:11:ae:09:27:95:bd:ad:f9:4f:d1:a6:7c:2a:0d:ff:13:f2: 48:05:cd:d6:5e:4f:0a:1b:2f:61:68:53:68:ca:c0:07:d7:31: c2:b4:fe:a9:99:53:32:40:33:5c:78:0c:60:64:30:c3:d7:90: 83:b6:35:d5:05:eb:48:84:cf:3c:91:b7:c2:f9:5b:d8:ed:af: d7:b9:25:b3:3c:cd:dd:c1:23:5b:94:6f:34:50:ad:64:8e:1c: 36:c7:63:f5:b0:0b:53:d4:56:d8:50:ef:fe:d6:a8:c4:d1:37: 45:d1:7c:18:25:97:ad:67:95:39:1a:6a:99:09:f4:51:ee:31: 21:89:fc:d0:12:3e:fc:64:33:26:e5:e7:7a:42:3a:3a:28:c4: 80:b1:04:70:d4:2c:46:89:46:72:d0:a0:66:82:1f:da:38:35: 70:c5:ee:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjYwNDE5MDM0OTQ2WhcNMjYwNDI2MDM0OTQ2WjAYMRYwFAYD VQQDEw02OWU0NTBkYS1lOTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkXhWoixJs5eS3Y5D9dbzrHW3nQG1K1HIx1UNj5ZwYmVcXFgZct9r3R+d3yq4 fBHmvXgjXWDNnyJTV+kDS1+yfH9xiK+VlPiRItObkNns4dtS3mjSAikfFCVRp7to EFI88NFMhBqOh40KAnophLIDpl1MXTnEN1qpJvOUDBM/GfwaYA5x+81NqdoeLWO/ RBkO2x6F0V0T4G0qq5KO98X/xViFTQSpNf02dAiiVKrVzh/n60gCuGMR+/KMANnl iMkkVchQhYv69e3atSkhPuEt4pB1c1X42I+kv8lBCAN2lTdIuflnP2td9fCiGJoU oA2Tlqo3RIi0NsXK/gN+DYORfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPhXHrve rxgVsv35Nfx07470mg9mMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAB2L6nfvJPAgGcTSTwoEJEeENIs/GrqwuuBxllOyZeZ0SOWlNeBpHsX8Bq/5w XzxDVIlRHaU+uBDhh4j/zDRxgeBUSFq34EwqYbVKDYMvTc7m887IJKA4WLeSfBGu CSeVva35T9GmfCoN/xPySAXN1l5PChsvYWhTaMrAB9cxwrT+qZlTMkAzXHgMYGQw w9eQg7Y11QXrSITPPJG3wvlb2O2v17klszzN3cEjW5RvNFCtZI4cNsdj9bALU9RW 2FDv/taoxNE3RdF8GCWXrWeVORpqmQn0Ue4xIYn80BI+/GQzJuXnekI6OijEgLEE cNQsRolGctCgZoIf2jg1cMXuyw== -----END CERTIFICATE-----Generated at Sun Apr 19 09:17:08 2026 by rpki-client