$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: O5JBj5i+KHv03KnTeINIFckXqyYCa32szCSZeEGZDSs= Subject key identifier: 65:B5:85:21:65:6E:2E:3F:C9:3C:BE:CF:32:9C:67:AF:BA:D2:5D:F1 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 021B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 0216 Signing time: Fri 17 Apr 2026 02:38:31 +0000 Manifest this update: Fri 17 Apr 2026 02:38:30 +0000 Manifest next update: Fri 24 Apr 2026 02:38:30 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: 4cCEE4YBhlysVoKBuyC2LJdCXBvSljKGcGGO9LBvs98=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: wcyOVBW/tGd3skqw30jqZPA6tqviwDkxNlXM49SoLAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Apr 17 02:38:30 2026 GMT Not After : Apr 24 02:38:30 2026 GMT Subject: CN=69e19d26-9ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:86:c1:2c:1d:8a:dd:65:07:bd:ef:8b:c7:0e: 87:7d:fb:ee:9d:a0:39:f2:0f:73:5a:0b:27:02:2d: 03:d7:f5:ae:f9:dc:f8:93:0d:e7:ed:58:bb:6b:21: f5:ea:56:18:f3:5c:0f:d2:78:2f:56:06:c3:ac:ab: 07:46:04:39:e3:9a:5a:7b:b5:13:39:80:35:8b:93: 0a:d8:84:14:09:99:6c:c6:db:4b:d2:d9:12:40:18: 74:2f:ab:25:b5:0f:8c:66:72:fc:16:5a:24:b5:df: 2f:46:28:70:27:01:1e:70:02:d5:b9:17:c9:60:59: 45:0f:6a:5d:f2:85:c0:2a:5b:a9:3a:2b:3e:fa:db: 88:1b:3a:fc:d2:12:7e:69:7d:81:10:1a:dd:88:1f: 06:2d:0f:6d:3d:6f:ea:18:0e:5a:66:a1:97:93:e3: 20:f1:a1:2d:92:0b:04:3d:46:02:3f:4d:05:a7:bd: 51:b9:06:c3:26:98:42:df:24:5d:f9:88:18:a3:6e: af:15:2d:3f:7f:54:11:1e:ed:5a:cd:a3:3c:1e:22: 28:db:7d:f6:ce:c4:e7:d3:9e:b0:f2:3e:35:50:a1: 93:f0:59:18:1a:06:e6:f2:e4:74:5f:b2:e8:15:96: 88:26:93:9c:f5:80:c7:84:04:4a:51:a3:8f:a7:6d: 93:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B5:85:21:65:6E:2E:3F:C9:3C:BE:CF:32:9C:67:AF:BA:D2:5D:F1 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:26:18:c1:0e:39:5c:06:b5:03:d2:3a:44:e5:f6:dd:d3:2c: c7:f4:00:74:be:7e:f0:a2:eb:e7:37:15:ee:a8:ed:2d:a1:f9: a6:cb:3a:27:3f:d1:b3:0d:7b:10:ef:38:83:d8:d5:30:a9:04: bc:cc:36:f7:29:be:da:bf:3e:58:7a:78:d8:80:e2:cc:27:1e: 12:43:af:57:af:23:7e:bc:5d:ff:4c:ba:32:07:55:59:fe:78: 7b:cc:37:00:b0:6c:ad:5f:1e:e9:57:6b:73:23:aa:d6:bd:ef: 55:5a:68:84:62:c8:74:38:6c:d6:d4:fb:62:c4:1f:96:79:d5: 33:eb:bd:0f:11:73:a6:e9:4e:40:96:cc:89:22:92:03:5b:00: de:89:05:98:a4:2b:17:e9:67:68:31:e2:fe:23:ef:42:1c:d8: ff:76:d7:6e:aa:10:7b:5d:86:60:bf:6a:28:8f:cd:b4:98:33: 42:04:c2:95:b5:9a:60:fa:a2:0d:23:fa:43:4f:bb:83:02:05: 67:40:7b:4b:37:5c:f6:10:48:7c:06:05:07:82:06:71:d1:26: 67:dc:ef:86:42:9d:5c:9e:cf:82:2d:ee:2e:a3:9e:38:6e:47: b7:27:0f:c5:42:55:ff:f0:3f:e5:68:6f:d3:e2:6c:f5:6a:1d: 43:13:8e:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjYwNDE3MDIzODMwWhcNMjYwNDI0MDIzODMwWjAYMRYwFAYD VQQDEw02OWUxOWQyNi05ZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIbBLB2K3WUHve+Lxw6HffvunaA58g9zWgsnAi0D1/Wu+dz4kw3n7Vi7ayH1 6lYY81wP0ngvVgbDrKsHRgQ545pae7UTOYA1i5MK2IQUCZlsxttL0tkSQBh0L6sl tQ+MZnL8Floktd8vRihwJwEecALVuRfJYFlFD2pd8oXAKlupOis++tuIGzr80hJ+ aX2BEBrdiB8GLQ9tPW/qGA5aZqGXk+Mg8aEtkgsEPUYCP00Fp71RuQbDJphC3yRd +YgYo26vFS0/f1QRHu1azaM8HiIo2332zsTn056w8j41UKGT8FkYGgbm8uR0X7Lo FZaIJpOc9YDHhARKUaOPp22T6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGW1hSFl bi4/yTy+zzKcZ6+60l3xMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACSYYwQ45XAa1A9I6ROX23dMsx/QAdL5+8KLr5zcV7qjtLaH5pss6Jz/Rsw17 EO84g9jVMKkEvMw29ym+2r8+WHp42IDizCceEkOvV68jfrxd/0y6MgdVWf54e8w3 ALBsrV8e6VdrcyOq1r3vVVpohGLIdDhs1tT7YsQflnnVM+u9DxFzpulOQJbMiSKS A1sA3okFmKQrF+lnaDHi/iPvQhzY/3bXbqoQe12GYL9qKI/NtJgzQgTClbWaYPqi DSP6Q0+7gwIFZ0B7Szdc9hBIfAYFB4IGcdEmZ9zvhkKdXJ7Pgi3uLqOeOG5HtycP xUJV//A/5Whv0+Js9WodQxOObw== -----END CERTIFICATE-----Generated at Fri Apr 17 05:37:19 2026 by rpki-client