$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: 0DQNU9VZlb7o0mqw1zAeamtSn97SJ5HqvE++n2TaCaE= Subject key identifier: 6B:43:FB:2D:9A:28:0C:6C:C5:02:D9:22:3E:76:7D:9A:6E:AC:9E:D6 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 114C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 112B Signing time: Thu 16 Apr 2026 17:10:51 +0000 Manifest this update: Thu 16 Apr 2026 17:10:51 +0000 Manifest next update: Thu 23 Apr 2026 17:10:51 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: j3xRqzSAJdttMtc45bGFXwnvjwTz+5FIpoIFBWp9dOs=) 2: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: ssMQ43fjcNDdMMcxP4Zyw/zUAL+E/8FkY3VJGMomUwo=) 3: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: iceccqvc3kg29socz/RRWvyJpHDglBn90E6v9vB2qCg=) 4: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: dYx5rg+ikh6rVRuWFPmqQgmz1ejCnGZL23u6GCNg5Bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4428 (0x114c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Apr 16 17:10:51 2026 GMT Not After : Apr 23 17:10:51 2026 GMT Subject: CN=69e1181b-3fd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:fd:35:c8:2d:34:c2:b9:1d:39:2d:55:62:d2: bb:fa:ec:4d:29:58:3c:be:71:dc:f9:1b:f7:81:f7: 2b:92:b3:09:59:69:9b:07:7a:82:96:ff:4b:fd:b2: 79:fa:eb:70:48:a1:47:43:19:47:b0:6a:c1:3a:e0: e6:f8:26:15:62:82:b5:64:51:8f:cd:b7:88:a2:71: de:af:55:bb:30:96:8f:53:83:38:63:c1:e0:c3:52: a1:bd:dc:2d:76:b3:a1:3a:af:83:a1:b0:d3:69:f4: 07:77:83:96:27:0f:04:b1:18:e4:e3:b1:8c:a1:a0: 7e:78:cf:db:5d:dd:d3:6e:03:6e:5c:19:40:8d:d2: c7:4c:03:e1:d6:13:45:a4:bc:60:05:3f:1e:b2:1c: 9d:39:62:2f:59:b3:3f:e1:83:c6:c1:90:3b:6b:37: f0:60:56:d7:ab:fa:75:44:be:99:75:f4:ca:e5:85: 8a:50:35:bd:2d:f5:a0:e4:98:10:f6:9d:e5:9a:50: 44:d1:ae:49:20:48:08:f3:31:56:98:5d:d4:93:e7: d9:84:a5:4d:47:ae:cf:e8:0f:2f:97:f9:40:4a:da: 4d:2d:f6:41:07:ef:06:fd:30:68:fc:7e:e3:32:48: c0:3a:1b:e5:5a:73:04:67:8d:34:03:95:cc:92:3d: 46:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:43:FB:2D:9A:28:0C:6C:C5:02:D9:22:3E:76:7D:9A:6E:AC:9E:D6 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:cc:7c:fa:c6:75:77:03:8d:84:fe:53:c4:e2:82:cc:bd:5e: 6e:fb:34:00:23:2e:34:56:8d:f1:38:2f:dd:21:04:fd:d7:c1: 9e:82:17:99:c8:19:68:c7:e7:4e:0f:dc:73:0a:2d:16:13:30: ad:74:ea:10:9e:d0:7a:9f:25:70:9c:56:74:c1:85:2a:66:5f: bd:c9:7e:da:92:0f:ab:da:9a:3c:9a:e0:c1:30:c0:14:16:fd: 8e:eb:bb:e5:45:f6:86:e8:2e:22:8a:67:dc:ae:59:9c:73:95: 26:d0:40:e7:17:4d:bd:d0:96:ca:ec:32:fa:15:82:79:a2:a9: 14:36:0e:89:85:a0:1e:ac:2c:16:37:63:b1:b9:e1:1e:2d:f5: 3e:d6:30:38:ac:ad:8a:f2:31:0e:04:a1:73:62:a1:68:5a:33: ab:43:26:f1:6e:17:a3:6e:1b:38:34:e3:1a:ac:bb:a5:1f:af: b1:e9:1a:bb:5c:e7:71:f4:e3:3f:22:ac:05:e0:00:21:8a:dc: c5:f7:19:5c:7b:e7:48:97:42:3f:68:2f:21:03:7e:19:b5:6f: 2a:1d:04:db:8d:65:45:27:58:c4:e2:3f:2d:c6:dd:d9:be:52: 02:9f:dc:2a:4d:ef:f1:2c:a9:ae:9f:eb:af:07:0f:e9:74:85: 83:ce:43:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjYwNDE2MTcxMDUxWhcNMjYwNDIzMTcxMDUxWjAYMRYwFAYD VQQDEw02OWUxMTgxYi0zZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiv01yC00wrkdOS1VYtK7+uxNKVg8vnHc+Rv3gfcrkrMJWWmbB3qClv9L/bJ5 +utwSKFHQxlHsGrBOuDm+CYVYoK1ZFGPzbeIonHer1W7MJaPU4M4Y8Hgw1Khvdwt drOhOq+DobDTafQHd4OWJw8EsRjk47GMoaB+eM/bXd3TbgNuXBlAjdLHTAPh1hNF pLxgBT8eshydOWIvWbM/4YPGwZA7azfwYFbXq/p1RL6ZdfTK5YWKUDW9LfWg5JgQ 9p3lmlBE0a5JIEgI8zFWmF3Uk+fZhKVNR67P6A8vl/lAStpNLfZBB+8G/TBo/H7j MkjAOhvlWnMEZ400A5XMkj1GYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGtD+y2a KAxsxQLZIj52fZpurJ7WMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU8x8+sZ1dwONhP5TxOKCzL1ebvs0ACMuNFaN8Tgv3SEE/dfBnoIXmcgZaMfn Tg/ccwotFhMwrXTqEJ7Qep8lcJxWdMGFKmZfvcl+2pIPq9qaPJrgwTDAFBb9juu7 5UX2huguIopn3K5ZnHOVJtBA5xdNvdCWyuwy+hWCeaKpFDYOiYWgHqwsFjdjsbnh Hi31PtYwOKytivIxDgShc2KhaFozq0Mm8W4Xo24bODTjGqy7pR+vsekau1zncfTj PyKsBeAAIYrcxfcZXHvnSJdCP2gvIQN+GbVvKh0E241lRSdYxOI/Lcbd2b5SAp/c Kk3v8Syprp/rrwcP6XSFg85DWA== -----END CERTIFICATE-----Generated at Fri Apr 17 04:57:06 2026 by rpki-client