$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: zUQSym5U+zegZwCTKz+7Qgxfe6if7E8lUhz57NJJCYM= Subject key identifier: 47:3C:00:BA:BF:6A:71:85:E4:31:C3:41:5B:EF:7D:49:9F:C9:27:DA Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 10F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 10B4 Signing time: Thu 16 Apr 2026 17:18:56 +0000 Manifest this update: Thu 16 Apr 2026 17:18:55 +0000 Manifest next update: Thu 23 Apr 2026 17:18:55 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: 3+EiZYteT0uIGp+/+Aqkl0kr25P5S3ZWmkAEVG+SdT8=) 2: 2E680D2AC99911F0BDA2F55CC4F9AE02.roa (hash: Nvtm5zPUTLfKMfwQNw1RkItbZZ/wblgNOEK3hvT7oKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4342 (0x10f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Apr 16 17:18:55 2026 GMT Not After : Apr 23 17:18:55 2026 GMT Subject: CN=69e11a00-fd28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8e:3c:75:6e:b4:e9:ac:f5:ad:85:5e:6f:5b: 54:0f:77:d0:49:47:68:38:20:1d:dc:98:e1:35:85: cb:ad:36:e7:3e:d2:97:8a:ea:09:5e:98:bd:ac:93: 01:48:9a:7c:e3:a2:dc:a0:f4:24:1d:b5:6f:0f:07: c3:4a:9d:73:dc:3b:57:86:85:e2:06:52:e6:f2:2a: 14:a8:25:74:87:13:88:82:47:65:c5:82:eb:5d:ef: 9a:79:7b:f5:44:c5:13:a1:78:3f:58:28:ae:3a:63: 5c:25:a9:ff:e3:92:d6:7b:f0:13:83:dc:86:f2:7c: 13:d4:aa:25:bf:77:55:f0:98:3c:7f:8e:d2:8c:e8: c0:c4:e8:fb:9e:f3:d6:fb:a7:6c:47:d3:7a:0f:df: fd:8e:f4:28:b3:f3:7d:50:15:c6:82:d6:91:f3:0a: 0b:00:76:a8:1b:ba:f6:5a:be:7b:ca:0b:ef:ad:02: 66:20:f7:9d:d6:24:86:65:cf:fd:74:68:59:45:57: 2b:6d:16:8e:c1:5f:14:1e:41:44:d2:a0:8a:72:67: 73:56:32:1a:1f:7b:f6:8e:96:be:91:c7:06:ea:2c: d1:ec:40:1a:89:02:48:23:12:f5:81:f3:71:69:c0: 17:7f:8a:03:75:79:5f:1c:be:cc:72:85:42:fc:90: 4e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3C:00:BA:BF:6A:71:85:E4:31:C3:41:5B:EF:7D:49:9F:C9:27:DA X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:f8:86:fd:01:77:9b:51:52:33:7e:82:bd:de:7e:2d:32:3e: 15:27:0f:c5:a7:8d:ed:38:ca:1a:a1:21:f2:d8:91:59:13:a8: 17:74:fd:7b:08:47:e1:e4:e9:1a:6e:61:cf:93:62:fc:7a:0a: bf:89:6d:0c:1e:01:6c:5c:1d:d3:aa:13:7c:e5:b5:aa:54:e1: b5:b8:4d:c8:12:0d:93:8c:5c:26:bb:50:20:a5:12:0e:72:a4: 48:45:b5:c6:50:24:49:53:b0:ef:35:30:52:27:02:06:d9:46: 33:d2:5e:c0:ea:04:7f:d2:f5:98:7c:36:84:fe:f6:3e:39:e8: 5a:72:f9:c3:39:05:79:12:fb:06:e5:c3:3a:3f:f4:eb:36:f6: be:2d:8c:76:2e:79:17:c5:a9:76:d0:71:a3:ab:02:43:83:c5: c1:b0:80:be:e7:5a:2b:25:3a:a6:55:0b:1e:54:1d:49:17:35: ac:04:9e:c8:e5:f1:b3:29:9d:c1:20:3c:22:94:0b:6e:8f:48: 93:87:d7:70:54:a5:5b:1b:34:d7:d9:8b:37:87:d1:e0:94:7e: d7:b4:fd:39:84:a6:6f:58:48:e3:48:04:48:3c:51:a3:04:a3: af:38:4b:fa:33:97:a5:87:65:a9:7f:03:8b:35:24:dc:98:3f: a7:6a:72:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjYwNDE2MTcxODU1WhcNMjYwNDIzMTcxODU1WjAYMRYwFAYD VQQDEw02OWUxMWEwMC1mZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm448dW606az1rYVeb1tUD3fQSUdoOCAd3JjhNYXLrTbnPtKXiuoJXpi9rJMB SJp846LcoPQkHbVvDwfDSp1z3DtXhoXiBlLm8ioUqCV0hxOIgkdlxYLrXe+aeXv1 RMUToXg/WCiuOmNcJan/45LWe/ATg9yG8nwT1Kolv3dV8Jg8f47SjOjAxOj7nvPW +6dsR9N6D9/9jvQos/N9UBXGgtaR8woLAHaoG7r2Wr57ygvvrQJmIPed1iSGZc/9 dGhZRVcrbRaOwV8UHkFE0qCKcmdzVjIaH3v2jpa+kccG6izR7EAaiQJIIxL1gfNx acAXf4oDdXlfHL7McoVC/JBOswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEc8ALq/ anGF5DHDQVvvfUmfySfaMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJfiG/QF3m1FSM36Cvd5+LTI+FScPxaeN7TjKGqEh8tiRWROoF3T9ewhH4eTp Gm5hz5Ni/HoKv4ltDB4BbFwd06oTfOW1qlThtbhNyBINk4xcJrtQIKUSDnKkSEW1 xlAkSVOw7zUwUicCBtlGM9JewOoEf9L1mHw2hP72PjnoWnL5wzkFeRL7BuXDOj/0 6zb2vi2Mdi55F8WpdtBxo6sCQ4PFwbCAvudaKyU6plULHlQdSRc1rASeyOXxsymd wSA8IpQLbo9Ik4fXcFSlWxs019mLN4fR4JR+17T9OYSmb1hI40gESDxRowSjrzhL +jOXpYdlqX8DizUk3Jg/p2pykg== -----END CERTIFICATE-----Generated at Fri Apr 17 11:09:14 2026 by rpki-client