$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: +d+vqdCU4BrVdSxKRmBGIRwVtrb/6XJm/h7otqBbD90= Subject key identifier: 8F:CD:55:DC:F3:56:CA:42:8A:FE:B5:FD:62:69:98:2C:B8:A5:D7:F7 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 056E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 055C Signing time: Sat 18 Apr 2026 23:18:52 +0000 Manifest this update: Sat 18 Apr 2026 23:18:52 +0000 Manifest next update: Sat 25 Apr 2026 23:18:52 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: WM+Ujag+GDQn8FFGOORhY09M87OQRS/a0vVUZ4YHQxQ=) 2: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: kvqSrwpHPLZJw/K+1ltO2ek3REXXe9HMAbW/Edna9+s=) 3: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: MUl/v1p+vm1Iz1fhfXWdiu0rlYEkwrSBTJH5GlDUE7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 23:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Apr 18 23:18:52 2026 GMT Not After : Apr 25 23:18:52 2026 GMT Subject: CN=69e4115c-cca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1a:4c:10:8b:9c:4c:97:90:ef:3f:7d:1a:d8: 82:6f:29:d9:90:83:2e:31:f5:cf:ea:aa:98:28:f2: 46:a9:9a:06:0a:88:0e:12:e2:3e:bf:af:77:f4:8a: 48:12:4f:65:bf:47:9a:ed:d8:fc:04:19:ef:b8:60: 9c:90:ef:bc:ee:a5:a4:56:21:ae:e1:01:52:fb:43: 4a:46:96:26:3d:a8:06:15:1e:e4:9b:1d:77:e0:08: 7b:a8:9e:ff:43:17:1d:65:87:86:10:a8:7f:06:87: 91:d8:e3:a5:7b:a8:e5:bb:25:ce:67:a4:44:c9:27: 66:c0:9f:60:17:d7:17:d7:62:2d:7f:03:15:20:3d: e9:e5:ab:26:90:cb:8a:dd:df:ce:3e:6c:36:76:a2: de:52:89:6a:5d:6c:0b:3f:df:59:42:e9:2c:2a:76: 95:4c:5b:79:eb:1f:42:5d:87:96:47:04:a6:20:76: 4c:e7:65:bb:d4:95:26:d7:fb:e2:1b:ef:f5:3d:c5: 42:1d:c1:4f:5e:bf:cd:ec:05:a7:32:37:03:3d:de: d8:51:10:9e:73:bd:3f:16:4f:ce:19:80:6f:29:cd: 7a:91:b1:40:7d:9f:cd:c3:d0:af:e8:4d:42:d8:4e: 7b:7e:6e:cc:06:69:d8:c6:b4:b2:1e:d4:b0:ff:39: 1d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CD:55:DC:F3:56:CA:42:8A:FE:B5:FD:62:69:98:2C:B8:A5:D7:F7 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:27:31:4e:4e:49:e8:5c:e7:7a:be:3d:4f:7b:c9:09:20:16: da:6f:97:1a:97:27:30:36:99:f9:4d:e9:22:87:9d:db:71:61: 81:52:ff:64:8b:58:63:db:26:e0:05:b4:4b:30:3d:f8:c3:21: ea:39:bc:62:df:24:5e:d9:5f:f3:dc:c9:1f:0e:6b:73:6d:9a: 7f:25:1f:5f:79:89:7e:14:f6:d2:f0:f4:07:1d:20:1a:7d:ab: 38:38:ed:75:52:82:97:e5:ca:a2:22:82:f9:3d:c1:4b:44:01: d3:47:12:55:07:b5:58:28:fb:e9:41:8c:d1:90:e2:a1:d5:50: 26:12:fe:42:2a:49:b5:dd:dd:1e:59:08:59:92:09:eb:d9:47: 39:6b:e5:89:c4:0d:d7:4a:8d:7a:c7:34:e8:10:6e:bf:0f:00: 31:fe:e2:c7:68:95:d2:13:e7:22:ce:f5:56:db:fc:5d:22:8d: 39:f4:c2:a4:bd:7d:49:e2:d0:b1:65:55:0d:37:0e:21:52:e8: f7:d9:37:fc:0b:29:d9:9f:d5:f4:19:32:a6:65:74:6f:ef:a2: 68:f7:a9:6d:15:dc:b5:cc:54:3c:f8:22:93:a3:be:e9:ea:2e: 62:9a:26:e2:60:29:54:e2:a9:52:78:d5:75:51:2a:97:57:5a: a7:bb:f1:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjYwNDE4MjMxODUyWhcNMjYwNDI1MjMxODUyWjAYMRYwFAYD VQQDEw02OWU0MTE1Yy1jY2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshpMEIucTJeQ7z99GtiCbynZkIMuMfXP6qqYKPJGqZoGCogOEuI+v6939IpI Ek9lv0ea7dj8BBnvuGCckO+87qWkViGu4QFS+0NKRpYmPagGFR7kmx134Ah7qJ7/ QxcdZYeGEKh/BoeR2OOle6jluyXOZ6REySdmwJ9gF9cX12ItfwMVID3p5asmkMuK 3d/OPmw2dqLeUolqXWwLP99ZQuksKnaVTFt56x9CXYeWRwSmIHZM52W71JUm1/vi G+/1PcVCHcFPXr/N7AWnMjcDPd7YURCec70/Fk/OGYBvKc16kbFAfZ/Nw9Cv6E1C 2E57fm7MBmnYxrSyHtSw/zkdUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI/NVdzz VspCiv61/WJpmCy4pdf3MB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHicxTk5J6Fzner49T3vJCSAW2m+XGpcnMDaZ+U3pIoed23FhgVL/ZItYY9sm 4AW0SzA9+MMh6jm8Yt8kXtlf89zJHw5rc22afyUfX3mJfhT20vD0Bx0gGn2rODjt dVKCl+XKoiKC+T3BS0QB00cSVQe1WCj76UGM0ZDiodVQJhL+QipJtd3dHlkIWZIJ 69lHOWvlicQN10qNesc06BBuvw8AMf7ix2iV0hPnIs71Vtv8XSKNOfTCpL19SeLQ sWVVDTcOIVLo99k3/Asp2Z/V9BkypmV0b++iaPepbRXctcxUPPgik6O+6eouYpom 4mApVOKpUnjVdVEql1dap7vxOA== -----END CERTIFICATE-----Generated at Sun Apr 19 11:29:21 2026 by rpki-client