$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: GJ+WxYmoXZkJ7m21zbL72pX+GXBRwakIBuPWHwl7yAA= Subject key identifier: 94:BA:BD:EB:CE:8D:77:F8:95:C1:97:32:2C:35:44:86:62:C0:7F:D8 Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 1243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 1234 Signing time: Thu 16 Apr 2026 17:03:12 +0000 Manifest this update: Thu 16 Apr 2026 17:03:11 +0000 Manifest next update: Thu 23 Apr 2026 17:03:11 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: VWvTy54xj+uWueD94P2LwFrpUfI1DSj7DmWPunl87Vk=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: 72MUrn7tnvmneOqEgTntxjtIs1ZcTEVLT5WbrHCVP04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:03:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4675 (0x1243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Apr 16 17:03:11 2026 GMT Not After : Apr 23 17:03:11 2026 GMT Subject: CN=69e11650-5e29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:14:8b:12:cb:25:58:b4:db:f3:2e:43:ff:ed: 38:64:49:1f:91:77:bf:6d:3d:d7:6c:c7:fb:72:6f: 51:ac:06:a6:56:07:75:21:1f:d8:a3:2b:c8:91:cc: bf:e2:f7:e7:71:41:7b:50:31:a1:64:0c:6d:05:61: cb:ea:bc:69:ea:27:60:7c:15:05:b4:75:3e:c1:1d: 25:71:97:8d:db:d0:66:ac:05:46:a4:d2:9e:b9:53: c3:51:57:a7:ac:54:c7:ff:07:7b:70:c6:b2:a5:5c: e6:7f:05:c6:bc:82:72:8c:d5:32:f8:84:3e:b3:87: 31:07:1b:f8:8f:f6:1d:1b:9d:da:8d:e8:cc:33:59: af:5e:87:42:47:b9:a2:2d:2b:66:8c:aa:3f:48:b1: 99:94:b7:e5:4e:3c:50:2f:bc:93:73:de:1b:db:f3: 82:0b:6e:8d:1b:31:8b:98:1b:ef:97:a3:4f:03:07: f5:e2:7e:26:33:0e:8b:1e:d4:4d:9d:96:bd:7a:45: 49:77:d7:d1:2b:a8:35:23:87:61:94:69:92:86:c9: a0:1b:a7:bd:f2:70:2a:ad:b7:81:2f:a8:ab:4d:e5: 81:ef:69:f2:fa:07:55:77:03:83:e8:c1:1c:e2:41: 2a:bf:1e:49:f6:2f:8f:70:39:09:2e:ee:f3:76:48: d7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:BA:BD:EB:CE:8D:77:F8:95:C1:97:32:2C:35:44:86:62:C0:7F:D8 X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:dc:e8:1e:d2:7d:6b:f9:9c:a7:ee:17:a5:05:4c:12:3c:6d: c8:bc:96:e4:ee:0a:ae:65:36:3a:89:b5:65:a7:c2:6f:50:cc: e2:49:45:9b:c5:77:97:31:d6:95:e4:b5:75:40:de:e5:c9:5b: 15:b5:f6:6b:24:84:16:88:26:08:c2:7c:06:11:6c:0f:b7:46: 96:45:5b:19:15:0b:f2:21:e1:a2:cb:56:62:bf:db:83:b8:f7: 92:fa:35:7d:2e:1b:2a:97:8b:b4:7d:f4:61:29:6a:c2:82:33: 71:cf:e6:5e:7a:2e:27:d5:1f:73:d9:be:88:7c:26:cc:8e:51: fe:90:8b:c1:40:7f:f6:09:8d:8a:82:a5:c1:60:30:18:ba:ca: 9c:21:29:ea:8d:ff:5c:2a:01:fe:13:0c:80:11:80:18:65:3a: 58:04:75:c2:7d:dc:9a:1f:f5:ca:24:0c:8b:ba:b0:6d:b6:be: d2:0d:03:df:c1:a6:a4:fc:10:38:bb:b7:7a:b5:6f:8d:56:33: 1a:47:aa:21:75:07:16:d9:2b:e3:ba:21:ba:8a:72:14:0c:4f: 46:ed:a4:a7:86:9c:d5:7d:6c:21:90:03:45:19:b6:08:ad:55: c0:80:86:81:af:cd:85:4c:d5:b5:7a:c3:e3:43:53:b4:9d:64: fe:6c:16:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjYwNDE2MTcwMzExWhcNMjYwNDIzMTcwMzExWjAYMRYwFAYD VQQDEw02OWUxMTY1MC01ZTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBSLEsslWLTb8y5D/+04ZEkfkXe/bT3XbMf7cm9RrAamVgd1IR/YoyvIkcy/ 4vfncUF7UDGhZAxtBWHL6rxp6idgfBUFtHU+wR0lcZeN29BmrAVGpNKeuVPDUVen rFTH/wd7cMaypVzmfwXGvIJyjNUy+IQ+s4cxBxv4j/YdG53ajejMM1mvXodCR7mi LStmjKo/SLGZlLflTjxQL7yTc94b2/OCC26NGzGLmBvvl6NPAwf14n4mMw6LHtRN nZa9ekVJd9fRK6g1I4dhlGmShsmgG6e98nAqrbeBL6irTeWB72ny+gdVdwOD6MEc 4kEqvx5J9i+PcDkJLu7zdkjXjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJS6vevO jXf4lcGXMiw1RIZiwH/YMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkNzoHtJ9a/mcp+4XpQVMEjxtyLyW5O4KrmU2Oom1ZafCb1DM4klFm8V3lzHW leS1dUDe5clbFbX2aySEFogmCMJ8BhFsD7dGlkVbGRUL8iHhostWYr/bg7j3kvo1 fS4bKpeLtH30YSlqwoIzcc/mXnouJ9Ufc9m+iHwmzI5R/pCLwUB/9gmNioKlwWAw GLrKnCEp6o3/XCoB/hMMgBGAGGU6WAR1wn3cmh/1yiQMi7qwbba+0g0D38GmpPwQ OLu3erVvjVYzGkeqIXUHFtkr47ohuopyFAxPRu2kp4ac1X1sIZADRRm2CK1VwICG ga/NhUzVtXrD40NTtJ1k/mwW8w== -----END CERTIFICATE-----Generated at Fri Apr 17 16:23:26 2026 by rpki-client