$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: 35d2GrBEoz009ksrVzt23WjxvGO72tpMeMHUf571OSo= Subject key identifier: FA:3C:B1:35:1D:87:2F:84:EF:BB:ED:1B:68:79:82:D4:73:DE:DA:38 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 085D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 0850 Signing time: Thu 16 Apr 2026 20:42:52 +0000 Manifest this update: Thu 16 Apr 2026 20:42:51 +0000 Manifest next update: Thu 23 Apr 2026 20:42:51 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: 1NHxEAsYu0D2OyO0S5dupLOjt9+IgqiScCpFkkx92sk=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: D4F7K7fRZi5PjyaGIyrg24WiDsmuKP9iZtha8FbAcn4=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: Y5IJD6VTuhWClnFmdFpK0wVHP2zwBIg8pv8xQi71sq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Apr 16 20:42:51 2026 GMT Not After : Apr 23 20:42:51 2026 GMT Subject: CN=69e149cc-9c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bd:03:17:b7:56:61:16:56:c6:77:3c:51:74: 3a:83:ed:e4:18:a8:ad:0d:e1:79:64:66:83:a6:6f: 64:ce:0f:e4:8f:2d:a8:80:cd:e5:75:9f:c6:3e:3e: ea:0a:54:a9:8e:4b:dd:ab:ba:a7:f7:39:e3:53:54: 99:da:0b:a6:21:9e:8f:40:a2:f9:aa:06:35:a4:5c: c5:94:7e:e3:5b:90:1f:ee:3b:7f:24:06:fc:77:e6: 74:59:6f:d8:3e:08:e6:ef:52:f2:27:b6:d6:74:74: f9:ca:ae:41:66:11:1b:5c:f1:79:34:bf:c1:78:c0: 8c:d6:71:28:6e:fa:09:4d:72:97:a4:53:29:14:44: ea:a3:6f:df:b9:5e:3a:2e:27:ce:fb:ca:d1:f5:b3: 35:7a:65:22:4c:c9:54:97:b2:a2:e0:3d:0b:56:bc: 93:c5:ec:0e:62:06:14:f6:86:f4:5d:fa:5f:9d:84: 67:21:ca:7d:d0:22:44:53:85:61:f4:46:bc:ba:a8: 04:ec:4b:65:3e:10:f0:65:ba:55:c9:6d:31:e8:bc: 72:61:ca:7b:4d:f2:8f:d8:9c:5a:cd:18:2b:6d:95: da:dd:f2:62:a2:72:90:f6:c9:cb:58:ec:a0:c3:2d: 2a:fc:38:fc:40:10:aa:be:a1:9e:b8:ba:8e:44:d6: 5a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:3C:B1:35:1D:87:2F:84:EF:BB:ED:1B:68:79:82:D4:73:DE:DA:38 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:9a:de:08:dc:59:8b:00:1b:be:90:11:b7:4c:16:f7:43:5e: 67:ac:00:5c:a7:4b:9c:2c:76:9d:33:0b:51:82:d8:01:20:c9: 15:b0:4e:06:3f:cb:f9:56:d0:ae:dd:f6:ea:1f:8f:79:2e:c6: 4e:7c:eb:8f:15:bf:fc:3d:03:40:cf:44:36:b4:38:75:0f:b2: 19:9a:ca:7e:c5:78:33:47:78:55:c1:b0:8b:4d:7c:84:16:60: ca:65:49:f7:5f:cd:0f:a5:9f:59:87:32:35:30:36:d8:a2:fb: 4b:17:e6:42:dc:92:1d:ca:f0:0c:cd:4f:c0:5f:23:65:84:65: 56:77:36:f4:9a:c9:b2:62:07:47:03:1d:24:0c:a5:72:7a:ac: 40:8e:cb:08:08:a3:ba:78:73:eb:fd:c1:6b:bb:a2:c9:51:0a: 60:a9:be:de:68:0c:20:f7:92:a6:06:e4:39:7a:6a:58:67:68: ac:54:20:81:d4:68:e4:d4:58:2a:d1:46:7b:84:eb:f3:25:63: 02:10:f5:86:82:ce:da:e3:48:c8:c1:5d:16:b8:8e:1e:9b:97: f7:fc:5f:95:3e:8e:08:87:68:33:44:83:05:6f:31:b7:29:88: 17:97:cc:75:1a:32:e0:67:27:06:25:cd:70:fd:f3:2a:14:cf: dc:74:e5:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjYwNDE2MjA0MjUxWhcNMjYwNDIzMjA0MjUxWjAYMRYwFAYD VQQDEw02OWUxNDljYy05Yzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAor0DF7dWYRZWxnc8UXQ6g+3kGKitDeF5ZGaDpm9kzg/kjy2ogM3ldZ/GPj7q ClSpjkvdq7qn9znjU1SZ2gumIZ6PQKL5qgY1pFzFlH7jW5Af7jt/JAb8d+Z0WW/Y Pgjm71LyJ7bWdHT5yq5BZhEbXPF5NL/BeMCM1nEobvoJTXKXpFMpFETqo2/fuV46 LifO+8rR9bM1emUiTMlUl7Ki4D0LVryTxewOYgYU9ob0XfpfnYRnIcp90CJEU4Vh 9Ea8uqgE7EtlPhDwZbpVyW0x6LxyYcp7TfKP2JxazRgrbZXa3fJionKQ9snLWOyg wy0q/Dj8QBCqvqGeuLqORNZaVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPo8sTUd hy+E77vtG2h5gtRz3to4MB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAspreCNxZiwAbvpARt0wW90NeZ6wAXKdLnCx2nTMLUYLYASDJFbBOBj/L+VbQ rt326h+PeS7GTnzrjxW//D0DQM9ENrQ4dQ+yGZrKfsV4M0d4VcGwi018hBZgymVJ 91/ND6WfWYcyNTA22KL7SxfmQtySHcrwDM1PwF8jZYRlVnc29JrJsmIHRwMdJAyl cnqsQI7LCAijunhz6/3Ba7uiyVEKYKm+3mgMIPeSpgbkOXpqWGdorFQggdRo5NRY KtFGe4Tr8yVjAhD1hoLO2uNIyMFdFriOHpuX9/xflT6OCIdoM0SDBW8xtymIF5fM dRoy4GcnBiXNcP3zKhTP3HTlHA== -----END CERTIFICATE-----Generated at Fri Apr 17 12:37:02 2026 by rpki-client