$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: GygvLm6KtjaAziIXDQ91PoCPZa//0hndfP8YFomjHec= Subject key identifier: 41:64:1B:31:AC:60:A5:54:E3:C0:50:CB:4B:3A:EB:7E:D5:09:2C:7F Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 01CC Signing time: Fri 17 Apr 2026 03:31:35 +0000 Manifest this update: Fri 17 Apr 2026 03:31:34 +0000 Manifest next update: Fri 24 Apr 2026 03:31:34 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: TtePkBLEVqIR08MzjnHbIgpbG8G1xOgcTPiyEAnuBrc=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: bPTiYTxBxLwgfGF9jUdmUbDxjsKoq1F4YRnN4H89Q34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Apr 17 03:31:34 2026 GMT Not After : Apr 24 03:31:34 2026 GMT Subject: CN=69e1a997-9344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:46:8e:3e:6f:be:10:ff:14:a7:83:ef:b7:9c: 8c:af:d8:da:23:bd:27:85:50:0d:57:7f:f3:4e:92: 4b:47:e1:76:b0:90:57:79:c4:d2:25:ec:59:08:98: 14:ce:ea:a0:d2:b9:fd:6b:7d:42:16:ff:15:ef:8e: d8:11:66:45:74:f4:a7:a4:5e:85:63:b3:6c:47:5c: 38:1b:c6:3e:08:26:f5:34:a2:2f:08:e2:63:b8:68: b6:52:2c:23:4a:89:e9:0c:9e:ef:00:42:14:85:16: 3c:10:42:97:02:c3:a4:92:c8:55:b4:28:96:10:6a: e1:e4:bc:26:39:99:30:7f:78:7c:76:f0:26:1e:23: 58:3d:ae:95:44:75:c5:66:c8:69:d1:8f:5e:2e:15: 00:33:22:85:77:3e:36:ee:db:18:9e:1c:21:ed:00: ff:f9:c3:0e:93:51:37:03:45:70:2f:e9:8b:10:1e: 39:47:3a:ba:7b:0d:80:1d:01:81:b5:7c:98:e3:39: 93:11:c6:7f:51:03:38:24:ff:d5:aa:b1:c3:15:f9: fe:ed:54:5e:de:18:07:80:ef:f0:08:c4:5c:20:bb: dd:d6:db:34:b9:80:d6:bb:88:87:72:bf:ff:78:4a: 93:0a:ef:9a:e4:81:ee:b6:7a:8b:cf:e0:65:c8:c6: a4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:64:1B:31:AC:60:A5:54:E3:C0:50:CB:4B:3A:EB:7E:D5:09:2C:7F X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:76:30:1e:92:6b:0c:c4:6d:44:39:95:1e:bd:e2:ff:9e:41: 6f:0e:7b:35:de:79:f9:d7:59:83:a2:a0:4e:02:23:75:ae:94: 20:1a:05:14:ef:c5:a7:90:47:66:32:32:61:72:ca:6f:f2:b2: 73:6f:65:73:5f:a5:d2:49:ae:f1:ea:be:35:36:bc:43:c1:c8: db:7a:bc:cc:e5:db:09:93:a0:d4:62:55:7a:20:8b:c3:80:e5: c2:51:23:d2:b4:07:0a:dc:84:e8:65:60:1d:03:8b:4b:90:85: 43:4b:ab:b2:2c:5e:5d:ce:31:35:6d:7c:c1:c1:99:78:50:5e: e4:4e:17:dd:88:d9:57:f8:ee:32:06:06:ec:c2:bb:5d:70:98: 44:49:ec:4d:72:8c:7e:9b:1c:6e:03:be:a5:25:b3:cd:10:11: 41:90:67:e0:6d:cf:a5:dd:7c:2f:9a:bb:9a:6b:f9:1c:2a:77: 3b:b5:6d:c1:dc:05:f4:ac:7a:4a:bc:6c:16:c8:14:73:3c:7a: 5f:fb:17:fc:e7:5b:9b:e3:2a:59:58:af:b2:56:bb:c4:13:2a: 3c:6e:00:b2:9f:39:8a:76:94:b6:b9:54:68:2d:ad:91:f0:a2: f9:b9:9f:f9:a3:d3:9e:bc:db:34:90:dc:d1:5d:6d:66:08:e1: 44:58:e7:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjYwNDE3MDMzMTM0WhcNMjYwNDI0MDMzMTM0WjAYMRYwFAYD VQQDEw02OWUxYTk5Ny05MzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykaOPm++EP8Up4Pvt5yMr9jaI70nhVANV3/zTpJLR+F2sJBXecTSJexZCJgU zuqg0rn9a31CFv8V747YEWZFdPSnpF6FY7NsR1w4G8Y+CCb1NKIvCOJjuGi2Uiwj SonpDJ7vAEIUhRY8EEKXAsOkkshVtCiWEGrh5LwmOZkwf3h8dvAmHiNYPa6VRHXF Zshp0Y9eLhUAMyKFdz427tsYnhwh7QD/+cMOk1E3A0VwL+mLEB45Rzq6ew2AHQGB tXyY4zmTEcZ/UQM4JP/VqrHDFfn+7VRe3hgHgO/wCMRcILvd1ts0uYDWu4iHcr// eEqTCu+a5IHutnqLz+BlyMakaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEFkGzGs YKVU48BQy0s6637VCSx/MB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfXYwHpJrDMRtRDmVHr3i/55Bbw57Nd55+ddZg6KgTgIjda6UIBoFFO/Fp5BH ZjIyYXLKb/Kyc29lc1+l0kmu8eq+NTa8Q8HI23q8zOXbCZOg1GJVeiCLw4DlwlEj 0rQHCtyE6GVgHQOLS5CFQ0ursixeXc4xNW18wcGZeFBe5E4X3YjZV/juMgYG7MK7 XXCYREnsTXKMfpscbgO+pSWzzRARQZBn4G3Ppd18L5q7mmv5HCp3O7VtwdwF9Kx6 SrxsFsgUczx6X/sX/Odbm+MqWVivsla7xBMqPG4Asp85inaUtrlUaC2tkfCi+bmf +aPTnrzbNJDc0V1tZgjhRFjnvQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:39:06 2026 by rpki-client