$ rpki-client -vvf rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft File: DcXOSilPLJOAqRNe4fBTByikzaY.mft (raw, json) Hash identifier: osZUpDHggkTQ30l3DcI+vz1pTY/9KtShs1vrV467m00= Subject key identifier: BA:2E:C3:53:D8:70:28:EC:82:61:44:00:3A:DF:5A:E0:44:24:DC:70 Authority key identifier: 0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 Certificate issuer: /CN=A912B4DB/serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Certificate serial: 3545 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft Manifest number: 3538 Signing time: Thu 16 Apr 2026 15:12:17 +0000 Manifest this update: Thu 16 Apr 2026 15:12:16 +0000 Manifest next update: Thu 23 Apr 2026 15:12:16 +0000 Files and hashes: 1: DcXOSilPLJOAqRNe4fBTByikzaY.crl (hash: KbHYxfbCNr9hwPElZRk551eHIZt5mnmQMcwlGsE//bQ=) 2: 7FE5F2CEDB9411E9832A463AC4F9AE02.roa (hash: 3sjWZooxRLY6I7soj41lsN2IJ+Dwn122aCRXMGhUs7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13637 (0x3545) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B4DB, serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Validity Not Before: Apr 16 15:12:16 2026 GMT Not After : Apr 23 15:12:16 2026 GMT Subject: CN=69e0fc51-ac0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1e:b2:fd:36:c8:8a:bb:86:c4:f0:fd:1a:59: 42:c1:2e:fe:05:3b:55:b8:f3:51:03:66:cd:34:0a: 17:38:e0:3f:d8:2d:5b:81:f7:7d:d2:8e:e5:b8:0b: a0:4a:ba:b1:f8:d1:f3:d3:09:89:ea:72:6e:a7:c4: 9f:0d:47:42:b9:f8:16:98:e7:87:49:96:99:82:e6: ce:df:63:f4:f0:39:63:d1:5f:13:cb:06:f7:36:5a: 69:21:ba:c6:df:26:d6:fe:55:70:51:5d:d0:ca:56: 01:27:67:d6:9b:93:bd:ec:87:8a:2d:10:4b:3a:93: 78:50:75:34:0d:47:dd:47:9a:ae:24:e2:d5:ef:99: 3d:ad:c1:08:ef:3a:22:0c:4d:04:2a:8f:52:a9:fb: 3d:c0:fe:3f:32:e2:69:5d:e2:db:e5:81:86:ac:fc: 1e:84:67:66:50:f4:e3:b3:90:c0:f8:24:3d:fd:4d: 8f:42:4e:a1:c4:10:c0:ab:05:72:b8:8e:46:a2:79: 81:f8:4b:aa:92:2a:c3:33:dd:4f:29:af:2c:df:77: 61:6e:df:09:2f:c9:66:58:d4:f0:79:90:2c:df:ed: a0:41:7c:f4:e1:4d:74:7f:40:9b:fd:27:88:82:72: 1c:e7:20:e2:5e:4e:88:dc:a6:5c:72:bb:3e:6c:49: b5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2E:C3:53:D8:70:28:EC:82:61:44:00:3A:DF:5A:E0:44:24:DC:70 X509v3 Authority Key Identifier: keyid:0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:59:63:24:54:74:b3:4a:85:a1:16:96:27:dc:5c:5d:65:a2: 01:94:36:8f:e9:87:59:32:29:48:ab:1e:ac:0b:32:00:be:a7: 9f:7e:21:1d:c5:e7:cd:ba:a9:80:db:21:be:b4:5f:4d:1c:a2: 00:c8:7f:a5:14:f1:77:22:1a:da:3d:c0:90:d5:be:d1:85:d1: a9:7e:a6:c0:de:bc:0f:69:41:a9:69:12:72:58:c1:4f:2d:c6: b4:bf:6a:48:a2:26:b9:88:e1:5a:a3:a9:f4:c3:e7:7d:41:44: 0e:90:45:bb:7a:72:f5:65:6b:c0:01:82:83:a7:fd:4f:b2:2b: 2f:78:73:eb:d2:2b:0b:60:ca:96:47:36:c8:04:77:f7:17:a3: 90:c3:38:36:ce:3d:45:f0:5b:d0:e4:c5:1c:2f:c2:6b:cb:0c: 3d:55:f2:80:f1:60:40:fe:d6:b8:d2:dd:32:96:db:80:af:89: ce:1c:06:e0:0e:70:06:c4:55:e3:6a:84:ac:aa:35:92:96:b1: 73:6f:94:92:54:ef:df:7f:c5:36:d1:67:9b:c0:66:a2:6c:bb: ca:67:91:a7:50:ce:ce:52:fc:34:71:95:5b:1e:f9:18:92:a4: d7:2c:8a:74:33:24:c9:16:93:32:2b:78:58:65:6c:4d:2c:11: d7:df:b1:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI0REIxMTAvBgNVBAUTKDBEQzVDRTRBMjk0RjJDOTM4MEE5MTM1RUUxRjA1MzA3 MjhBNENEQTYwHhcNMjYwNDE2MTUxMjE2WhcNMjYwNDIzMTUxMjE2WjAYMRYwFAYD VQQDEw02OWUwZmM1MS1hYzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsB6y/TbIiruGxPD9GllCwS7+BTtVuPNRA2bNNAoXOOA/2C1bgfd90o7luAug Srqx+NHz0wmJ6nJup8SfDUdCufgWmOeHSZaZgubO32P08Dlj0V8Tywb3NlppIbrG 3ybW/lVwUV3QylYBJ2fWm5O97IeKLRBLOpN4UHU0DUfdR5quJOLV75k9rcEI7zoi DE0EKo9Sqfs9wP4/MuJpXeLb5YGGrPwehGdmUPTjs5DA+CQ9/U2PQk6hxBDAqwVy uI5GonmB+EuqkirDM91PKa8s33dhbt8JL8lmWNTweZAs3+2gQXz04U10f0Cb/SeI gnIc5yDiXk6I3KZccrs+bEm1CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLouw1PY cCjsgmFEADrfWuBEJNxwMB8GA1UdIwQYMBaAFA3FzkopTyyTgKkTXuHwUwcopM2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjREQi81QzUwMjk2QzFE QTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExKT0FxUk5lNGZCVEJ5aWt6 YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RjWE9TaWxQTEpPQXFSTmU0ZkJUQnlpa3phWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjREQi81QzUwMjk2QzFEQTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExK T0FxUk5lNGZCVEJ5aWt6YVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAllljJFR0s0qFoRaWJ9xcXWWiAZQ2j+mHWTIpSKserAsyAL6nn34hHcXnzbqp gNshvrRfTRyiAMh/pRTxdyIa2j3AkNW+0YXRqX6mwN68D2lBqWkScljBTy3GtL9q SKImuYjhWqOp9MPnfUFEDpBFu3py9WVrwAGCg6f9T7IrL3hz69IrC2DKlkc2yAR3 9xejkMM4Ns49RfBb0OTFHC/Ca8sMPVXygPFgQP7WuNLdMpbbgK+JzhwG4A5wBsRV 42qErKo1kpaxc2+UklTv33/FNtFnm8Bmomy7ymeRp1DOzlL8NHGVWx75GJKk1yyK dDMkyRaTMit4WGVsTSwR19+xWw== -----END CERTIFICATE-----Generated at Fri Apr 17 06:07:08 2026 by rpki-client