$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: KWAdpJQ3A15f1UaIsux4atJm4fYF7QPSb/4In9VFqKo= Subject key identifier: 64:9C:3C:B9:AF:A8:02:2C:6A:22:56:F1:18:C4:6F:1A:BD:B0:0F:86 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 056D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 0559 Signing time: Thu 16 Apr 2026 23:19:13 +0000 Manifest this update: Thu 16 Apr 2026 23:19:12 +0000 Manifest next update: Thu 23 Apr 2026 23:19:12 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: yQk7gcG6QhSA2ukYbXReaWji1K1f2dWbVbwDqnTIWm0=) 2: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xL18VcZ56ntQg06dxu8mPMsho0DT/fe8AiSvaUT/7NM=) 3: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: yeDD3azucqTXwa0Gdb8W5tD9O2qrp+zwpH6Y+zEBWbM=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: Z6zpJNeDiRoumvX5lCIDf2X6SZzpmpEYlhnAJ6yadjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:19:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Apr 16 23:19:12 2026 GMT Not After : Apr 23 23:19:12 2026 GMT Subject: CN=69e16e71-5155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:87:ab:0f:fc:5a:31:a0:ee:2c:4a:3b:81:ad: fe:fc:d2:fb:ed:47:71:b8:3b:65:49:81:f1:56:77: 0e:b9:97:30:9a:dc:ab:f9:91:a7:fd:e4:da:f0:af: 83:15:c7:30:ca:90:d8:a0:71:2c:61:db:13:f1:a2: 03:8d:dd:ab:64:d7:2e:e3:ab:0f:8c:75:21:d8:2a: dd:03:f5:4e:fa:aa:ab:bf:61:4b:67:1a:dc:90:70: 6e:e4:a8:26:8b:9e:66:6b:71:7f:22:02:bc:0d:25: fe:97:f3:b8:19:b8:c8:9e:c8:5e:fc:0a:d1:88:bf: 5e:fb:04:5f:7a:28:6e:ce:86:a6:13:6e:51:27:bd: 74:52:bd:87:b0:8d:d9:91:65:34:74:e7:38:f1:a2: c0:f5:e6:60:f8:01:ea:d0:d4:ca:5e:4d:8c:61:7e: 8f:be:68:b1:df:8a:0f:66:f9:64:c6:ad:d8:53:f5: 15:aa:57:64:8b:fd:09:a2:7d:62:67:3d:8f:0f:65: 38:39:82:39:91:9e:78:7c:ba:fe:b0:98:86:b6:dc: db:07:5e:a1:c5:ba:33:a3:35:91:cc:03:9b:a5:f0: 68:34:d7:c6:97:5c:0d:72:b5:38:29:c7:3e:97:72: 8a:fb:76:f0:16:13:d6:f8:a6:c1:e8:5e:6e:e8:f9: 77:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9C:3C:B9:AF:A8:02:2C:6A:22:56:F1:18:C4:6F:1A:BD:B0:0F:86 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:34:dc:e0:b3:f2:e0:06:78:48:47:69:52:29:b1:0b:2d:47: cf:7c:31:0d:db:72:13:63:d0:24:56:58:1c:8b:74:11:c1:20: e5:85:c0:85:c8:f0:66:01:8c:d9:aa:96:e9:2c:b5:9b:04:5d: cc:f8:97:4e:9c:bd:1b:bc:ca:45:91:a1:02:6f:b2:e5:d0:b1: 34:5b:3b:36:88:9e:76:b9:1d:2c:f7:9b:a5:f9:a8:ce:5a:56: 6d:af:71:9f:5b:97:09:5d:fd:ee:8e:03:71:2a:55:ad:87:bb: e1:7e:07:56:f9:07:f6:20:42:4b:37:fe:09:f7:56:f6:bb:b3: 4b:eb:6e:00:f3:0b:74:b1:2f:fd:d8:ff:20:2b:af:15:9f:96: 7f:95:2b:80:e6:03:45:aa:b9:80:3c:88:81:07:c8:64:28:01: 76:ce:83:64:68:db:a7:ed:38:82:32:86:24:ad:5b:74:1c:60: cd:4d:d3:16:a0:a9:0b:66:dc:79:e0:4a:14:ed:9b:4e:63:9d: b4:c8:c3:83:af:e6:fa:b5:2c:7b:84:28:cb:50:b8:44:ce:9a: 45:a1:10:4b:35:bb:b7:1c:1a:eb:66:6e:de:27:24:7f:27:b7: f3:a4:8b:f0:3c:e1:0e:88:b0:ae:18:0f:52:30:5f:58:e8:fb: d4:77:e4:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjYwNDE2MjMxOTEyWhcNMjYwNDIzMjMxOTEyWjAYMRYwFAYD VQQDEw02OWUxNmU3MS01MTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oerD/xaMaDuLEo7ga3+/NL77UdxuDtlSYHxVncOuZcwmtyr+ZGn/eTa8K+D FccwypDYoHEsYdsT8aIDjd2rZNcu46sPjHUh2CrdA/VO+qqrv2FLZxrckHBu5Kgm i55ma3F/IgK8DSX+l/O4GbjInshe/ArRiL9e+wRfeihuzoamE25RJ710Ur2HsI3Z kWU0dOc48aLA9eZg+AHq0NTKXk2MYX6Pvmix34oPZvlkxq3YU/UVqldki/0Jon1i Zz2PD2U4OYI5kZ54fLr+sJiGttzbB16hxbozozWRzAObpfBoNNfGl1wNcrU4Kcc+ l3KK+3bwFhPW+KbB6F5u6Pl3XwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGScPLmv qAIsaiJW8RjEbxq9sA+GMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACTTc4LPy4AZ4SEdpUimxCy1Hz3wxDdtyE2PQJFZYHIt0EcEg5YXAhcjwZgGM 2aqW6Sy1mwRdzPiXTpy9G7zKRZGhAm+y5dCxNFs7NoiedrkdLPebpfmozlpWba9x n1uXCV397o4DcSpVrYe74X4HVvkH9iBCSzf+CfdW9ruzS+tuAPMLdLEv/dj/ICuv FZ+Wf5UrgOYDRaq5gDyIgQfIZCgBds6DZGjbp+04gjKGJK1bdBxgzU3TFqCpC2bc eeBKFO2bTmOdtMjDg6/m+rUse4Qoy1C4RM6aRaEQSzW7txwa62Zu3ickfye386SL 8DzhDoiwrhgPUjBfWOj71HfkbQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:16:09 2026 by rpki-client