$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: DM/Hpnlkul4MT919ABlEAMdZWMf6ddhwO3D2dAL6fRE= Subject key identifier: D9:46:04:B1:AC:E3:CC:EF:79:5F:87:5B:AB:D2:FA:9C:3D:67:81:01 Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 3554 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 3541 Signing time: Thu 16 Apr 2026 15:04:15 +0000 Manifest this update: Thu 16 Apr 2026 15:04:14 +0000 Manifest next update: Thu 23 Apr 2026 15:04:14 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: q4vUkLpiod31BYfj3C5OnL6IFNpfrFSDNLHmeomp/SA=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: OakXz6uabwbVjZ3x8angGynzmkwZsBIUc2kp6w+BN9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13652 (0x3554) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Apr 16 15:04:14 2026 GMT Not After : Apr 23 15:04:14 2026 GMT Subject: CN=69e0fa6f-f7fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:56:1a:ad:02:c3:d1:25:b3:2f:e5:ac:56:5b: a3:19:d5:f7:06:41:74:c4:90:14:54:75:f4:36:42: 99:1d:79:10:b1:fb:20:e7:fd:f6:23:00:29:ce:20: ef:35:a8:00:0c:6e:67:27:84:75:70:69:79:d1:b5: 7c:97:2d:2f:4c:71:3a:5f:64:95:bf:2a:a9:16:ec: 57:03:5b:97:7c:f8:0a:ff:47:b1:ce:f3:c0:b6:17: 28:99:7a:0b:62:3c:01:1b:55:d8:51:f7:8c:a4:e6: 10:b2:00:09:b6:06:60:c2:11:e5:39:a2:8c:b3:cb: 44:4c:94:ad:28:62:73:74:8e:c7:84:b3:e4:d8:ee: 07:a3:09:f6:96:87:c2:fc:79:87:43:35:fe:58:e6: 9b:02:e6:53:75:00:08:70:f0:24:34:6b:9c:4e:ce: af:14:b2:b7:30:c6:e4:20:d2:76:17:cb:e6:5e:f2: 00:79:8a:f5:6c:9e:f2:a8:b0:95:5e:8b:10:2a:7e: c8:1c:76:a8:cd:57:91:68:6a:61:69:c1:ac:8c:62: 5d:64:cb:e3:71:2e:02:5a:d5:28:dc:09:12:5a:9f: b3:ee:2d:28:2a:e4:2f:cd:49:a6:de:dc:d5:fc:e5: 6a:8b:20:e2:b5:b1:e0:bb:f6:f3:42:14:f3:9b:0e: 92:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:46:04:B1:AC:E3:CC:EF:79:5F:87:5B:AB:D2:FA:9C:3D:67:81:01 X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:4f:8f:a7:a9:5f:b8:cd:db:1e:d5:f0:0e:4a:8f:8c:fc:be: 3e:81:24:92:14:f6:ae:32:c1:33:a2:db:b5:31:18:30:c0:30: bc:ae:51:12:2c:83:0f:13:7e:c1:56:19:8d:7d:1f:f1:91:3a: 99:0c:16:a0:f3:54:b7:3f:ea:f5:20:2e:bb:e1:ca:0c:1c:2f: d8:40:86:ed:84:89:00:9a:85:9d:c5:a5:56:a0:a0:bc:5c:c2: ba:d4:f8:9d:5d:39:ab:f4:7c:fd:8a:df:78:5e:ae:ee:d2:d4: 55:61:49:9e:3b:bd:c2:8f:ae:94:f5:02:87:4c:71:5e:f3:9b: 54:4e:ed:d6:5c:00:b8:80:05:c3:d7:26:c4:2a:39:7f:4c:81: 31:f3:d3:43:15:a0:f2:19:e0:64:e4:38:e5:83:08:30:c8:b4: 4a:64:0a:29:2e:49:25:5e:21:d2:86:2c:11:94:c5:09:f5:47: 1f:a9:02:d6:88:3a:dd:ad:f9:29:c7:08:75:a1:28:8a:dd:40: 24:f7:28:c9:fe:ce:43:04:a4:98:96:44:e0:71:41:45:38:d2: e1:d8:fb:03:13:2c:5b:69:b6:00:f3:37:ef:1a:3f:8a:3d:c0: 0c:50:f6:00:e7:b3:8d:09:6d:64:0c:bd:d3:c6:23:27:dd:df: 1f:68:54:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjYwNDE2MTUwNDE0WhcNMjYwNDIzMTUwNDE0WjAYMRYwFAYD VQQDEw02OWUwZmE2Zi1mN2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFYarQLD0SWzL+WsVlujGdX3BkF0xJAUVHX0NkKZHXkQsfsg5/32IwApziDv NagADG5nJ4R1cGl50bV8ly0vTHE6X2SVvyqpFuxXA1uXfPgK/0exzvPAthcomXoL YjwBG1XYUfeMpOYQsgAJtgZgwhHlOaKMs8tETJStKGJzdI7HhLPk2O4Hown2lofC /HmHQzX+WOabAuZTdQAIcPAkNGucTs6vFLK3MMbkINJ2F8vmXvIAeYr1bJ7yqLCV XosQKn7IHHaozVeRaGphacGsjGJdZMvjcS4CWtUo3AkSWp+z7i0oKuQvzUmm3tzV /OVqiyDitbHgu/bzQhTzmw6SGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNlGBLGs 48zveV+HW6vS+pw9Z4EBMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJk+Pp6lfuM3bHtXwDkqPjPy+PoEkkhT2rjLBM6LbtTEYMMAwvK5REiyDDxN+ wVYZjX0f8ZE6mQwWoPNUtz/q9SAuu+HKDBwv2ECG7YSJAJqFncWlVqCgvFzCutT4 nV05q/R8/YrfeF6u7tLUVWFJnju9wo+ulPUCh0xxXvObVE7t1lwAuIAFw9cmxCo5 f0yBMfPTQxWg8hngZOQ45YMIMMi0SmQKKS5JJV4h0oYsEZTFCfVHH6kC1og63a35 KccIdaEoit1AJPcoyf7OQwSkmJZE4HFBRTjS4dj7AxMsW2m2APM37xo/ij3ADFD2 AOezjQltZAy908YjJ93fH2hU/g== -----END CERTIFICATE-----Generated at Fri Apr 17 15:32:54 2026 by rpki-client