$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: jXfinrnSjsasZU6WTtVY7AIKPBChn5gq8a49yFYx1RE= Subject key identifier: EA:10:7F:15:14:38:B0:37:97:83:96:1F:D5:07:32:7B:9C:05:D4:D8 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2E50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2DD0 Signing time: Thu 16 Apr 2026 15:28:50 +0000 Manifest this update: Thu 16 Apr 2026 15:28:50 +0000 Manifest next update: Thu 23 Apr 2026 15:28:50 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: n432XOD/MY0iB46/Truw8WklvlW/6OgJ6sYk29R63uE=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: I9utLoQOo+FgrMzcmZ+nktkwChduEwkgHWKAKFKVei8=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 98d7Szz1xVrKOjRtTK04BwOwzNCfjc24NwJ5XcHSo3Y=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: WjyM3KD8j7LYktjGDYnf9TzfHp76S+j3QqZZ2zALeh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11856 (0x2e50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Apr 16 15:28:50 2026 GMT Not After : Apr 23 15:28:50 2026 GMT Subject: CN=69e10032-3fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5f:82:6b:49:d6:90:8d:aa:6b:1d:2e:65:df: c5:17:34:ac:a6:7a:84:39:12:7b:e4:7c:ad:f8:43: f4:f5:a2:e9:f8:7e:bc:12:98:33:9b:99:63:1e:47: 7c:f0:a1:0c:bc:32:34:06:61:09:41:18:51:25:1c: ef:95:f8:53:4f:9c:5b:fa:9c:18:7c:70:26:56:c8: 1c:b8:ff:d5:40:16:8e:49:9e:b9:61:c2:e0:f5:a5: 93:9c:39:30:09:12:a8:a6:57:4a:d9:1a:4f:19:7a: 98:69:19:e8:01:81:46:c6:8e:cd:c0:95:ba:d5:b4: 57:0e:15:1a:9d:d8:87:9a:ec:5f:78:65:ca:64:72: f6:4a:cd:68:bd:7c:24:c9:a3:02:8e:fa:cc:d2:43: 5c:b8:19:29:6c:a7:09:43:0d:3a:c6:59:35:f0:18: 2e:d4:b9:7e:38:31:2b:68:5a:12:78:23:37:b4:09: 10:4a:20:6a:32:e4:76:61:ad:a5:5d:69:76:7d:15: 82:46:f8:f7:78:1d:96:b9:db:fb:d3:fe:85:20:48: c9:4d:96:00:a1:74:25:1c:45:8e:2d:50:b9:32:79: d5:ac:ed:7e:82:67:81:1d:7d:2e:1a:02:0e:08:04: 7e:65:fe:23:c7:12:e9:eb:1e:ce:a0:8f:3e:8f:9e: 22:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:10:7F:15:14:38:B0:37:97:83:96:1F:D5:07:32:7B:9C:05:D4:D8 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:d3:5d:08:80:1e:64:59:2f:d1:45:04:87:95:14:64:dc:a5: e2:8d:27:4f:c4:c2:b6:d4:70:80:0a:a1:08:8b:50:cb:8b:0b: f2:8b:89:1c:4d:bb:7a:5c:4a:cd:75:f1:9f:5d:8b:3c:2b:92: 13:e3:f9:0c:70:92:fa:51:1c:fa:ae:9f:e3:59:3b:4b:38:5d: 79:e8:0e:de:59:bb:44:1d:dc:11:e8:56:4e:a9:a0:7c:6c:5e: 65:8d:6a:d3:b3:41:40:d8:f0:2d:d1:5d:13:9b:7c:8b:54:00: b5:7d:39:c9:13:ba:27:e6:a7:5a:52:2c:8a:87:89:ab:20:d0: 74:63:b0:7d:9f:b0:20:2e:83:80:e2:e1:c1:94:99:81:64:28: 53:69:d7:85:32:71:f5:53:35:f3:5d:90:23:c7:d8:7b:8e:23: 82:b6:38:eb:2e:ef:1e:59:28:06:7f:16:e7:20:10:1d:7f:17: a7:0b:79:8b:d4:cc:aa:17:8e:46:f0:a7:cd:3b:12:23:84:b8: d3:f9:49:fb:b6:42:77:c9:ce:90:ca:e3:64:86:9f:9d:ae:16: fc:3c:ed:93:6e:ee:7c:59:29:31:92:6b:23:4d:13:d7:44:7d: ce:a4:22:4a:d5:68:ce:29:16:cc:07:7d:b7:93:c9:d4:ec:98: 13:b7:29:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjYwNDE2MTUyODUwWhcNMjYwNDIzMTUyODUwWjAYMRYwFAYD VQQDEw02OWUxMDAzMi0zZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtl+Ca0nWkI2qax0uZd/FFzSspnqEORJ75Hyt+EP09aLp+H68Epgzm5ljHkd8 8KEMvDI0BmEJQRhRJRzvlfhTT5xb+pwYfHAmVsgcuP/VQBaOSZ65YcLg9aWTnDkw CRKopldK2RpPGXqYaRnoAYFGxo7NwJW61bRXDhUandiHmuxfeGXKZHL2Ss1ovXwk yaMCjvrM0kNcuBkpbKcJQw06xlk18Bgu1Ll+ODEraFoSeCM3tAkQSiBqMuR2Ya2l XWl2fRWCRvj3eB2Wudv70/6FIEjJTZYAoXQlHEWOLVC5MnnVrO1+gmeBHX0uGgIO CAR+Zf4jxxLp6x7OoI8+j54i8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOoQfxUU OLA3l4OWH9UHMnucBdTYMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3tNdCIAeZFkv0UUEh5UUZNyl4o0nT8TCttRwgAqhCItQy4sL8ouJHE27elxK zXXxn12LPCuSE+P5DHCS+lEc+q6f41k7SzhdeegO3lm7RB3cEehWTqmgfGxeZY1q 07NBQNjwLdFdE5t8i1QAtX05yRO6J+anWlIsioeJqyDQdGOwfZ+wIC6DgOLhwZSZ gWQoU2nXhTJx9VM1812QI8fYe44jgrY46y7vHlkoBn8W5yAQHX8Xpwt5i9TMqheO RvCnzTsSI4S40/lJ+7ZCd8nOkMrjZIafna4W/Dztk27ufFkpMZJrI00T10R9zqQi StVozikWzAd9t5PJ1OyYE7cp2w== -----END CERTIFICATE-----Generated at Fri Apr 17 23:43:58 2026 by rpki-client