$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft File: vHDzdLcox7cRwkpoJ_dHekKyKk0.mft (raw, json) Hash identifier: 1ppCXKD7gcaWvb1gcRKBisClYvvOzEdBRwSCb3pxvo8= Subject key identifier: 7B:1D:9E:B7:C0:3C:F5:B8:02:3E:B1:76:A1:EA:2C:30:A2:36:F2:9F Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft Manifest number: DF Signing time: Fri 17 Apr 2026 06:22:27 +0000 Manifest this update: Fri 17 Apr 2026 06:22:27 +0000 Manifest next update: Fri 24 Apr 2026 06:22:27 +0000 Files and hashes: 1: vHDzdLcox7cRwkpoJ_dHekKyKk0.crl (hash: OAQRuBGoH6rhmDYYsDVZ/yQ4/jn1R9iYGyPl+sGJZ40=) 2: 6BD4BB16F83111EFBA64911FC4F9AE02.roa (hash: 6s9v+4to3xQAtqSl3C8OB5mvof4ZuN1zgnPAVV1Aeng=) 3: 6161789632A911F184E1B2E290833773.roa (hash: vyUxUBa+7OTstXK/dnpMHKdTqta9na00ToStR3iz0G0=) 4: 60D8B07432A911F184E1B2E290833773.roa (hash: 9+QMQ5N2mwoOHhBeakPfY1vKeJB8FpkvRz9KSm8m4ZE=) 5: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (hash: Xqw+x7r7bC27aVdNoYea8uBLYJxQdLwBzYjKVZNCTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Apr 17 06:22:27 2026 GMT Not After : Apr 24 06:22:27 2026 GMT Subject: CN=69e1d1a3-897d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:31:56:b1:54:c5:fc:ce:c9:66:8c:13:32:b3: 3e:3a:6c:c7:01:bc:83:54:52:30:0d:1d:9d:fc:e5: 39:f4:dc:f6:6e:ec:85:5e:f9:10:be:49:49:76:80: d9:d6:ca:2c:1c:4c:c2:cf:29:53:6e:14:20:68:e1: aa:1a:62:93:17:7a:41:ec:0a:22:53:69:eb:1f:c9: 76:66:3a:89:3f:c3:dc:39:31:b9:53:60:9d:a4:c8: 88:08:8e:52:71:35:7e:58:3d:25:b5:0c:dc:ea:74: 52:4e:5b:49:bb:6d:6c:6e:1b:a9:1e:d1:53:26:21: 86:ee:20:f4:cb:88:23:67:3b:d0:cb:24:49:41:41: 20:e0:56:ff:bb:00:55:1f:8c:51:4f:65:91:2f:fe: 7a:96:a4:c0:77:ac:a4:a7:49:5a:03:95:74:73:33: 9e:c7:65:43:b3:54:d9:7c:6e:f9:16:d0:80:76:c7: 07:c3:b7:a4:24:ff:e8:b5:28:4e:75:00:ae:6c:36: d3:93:8c:96:96:7f:d2:a6:67:35:ad:5b:f1:6a:5f: 00:55:52:97:80:05:20:87:5c:62:79:ab:5d:69:d8: a2:58:8d:ac:87:16:9d:d0:ac:56:d9:74:7d:12:de: 1b:ac:c1:eb:37:43:2c:b1:f6:92:0c:59:6a:43:60: 2b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:1D:9E:B7:C0:3C:F5:B8:02:3E:B1:76:A1:EA:2C:30:A2:36:F2:9F X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ab:29:ca:51:cf:d2:be:d3:0a:ca:7e:cb:aa:ed:32:af:46: 4c:a0:1e:0a:b0:53:5a:8a:0c:58:2c:9d:22:89:f4:00:0a:c4: 69:0e:f0:14:30:33:6e:db:2c:e5:ff:29:ad:04:2a:3a:6f:92: f7:0d:1c:ef:39:4e:91:fd:a5:50:64:a6:75:dd:91:b9:8e:bd: f1:ce:2e:02:bd:57:3b:e0:12:89:b9:34:30:08:fc:76:a9:54: 38:04:f2:01:ad:de:e5:9d:51:db:89:ac:83:11:73:a6:e2:15: 10:e8:ea:d0:1e:f3:6d:0a:23:13:46:81:2e:0f:27:cc:cb:46: d6:43:d0:5d:cd:30:83:1c:2d:0e:93:1a:4f:b0:7a:5c:88:52: 85:13:29:8f:61:8d:4f:2b:53:5b:ab:b2:29:27:7b:e4:d4:e7: bb:e2:5e:eb:02:18:d0:e5:3b:81:ef:a6:aa:6a:1c:98:c6:71: e9:86:cd:c3:55:05:18:a8:05:b0:d5:57:7e:1e:60:8b:92:39: 47:50:bb:08:eb:ed:fc:7b:b5:9d:d9:73:ac:76:db:85:c4:5b: ae:aa:6d:3b:a8:07:68:65:b5:36:50:d0:d0:6d:c3:4b:24:ea: 66:70:91:ea:76:67:1b:eb:9b:07:97:94:ba:20:1d:5e:91:c1: 2c:84:04:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBNzUxMTAvBgNVBAUTKEJDNzBGMzc0QjcyOEM3QjcxMUMyNEE2ODI3Rjc0NzdB NDJCMjJBNEQwHhcNMjYwNDE3MDYyMjI3WhcNMjYwNDI0MDYyMjI3WjAYMRYwFAYD VQQDEw02OWUxZDFhMy04OTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDFWsVTF/M7JZowTMrM+OmzHAbyDVFIwDR2d/OU59Nz2buyFXvkQvklJdoDZ 1sosHEzCzylTbhQgaOGqGmKTF3pB7AoiU2nrH8l2ZjqJP8PcOTG5U2CdpMiICI5S cTV+WD0ltQzc6nRSTltJu21sbhupHtFTJiGG7iD0y4gjZzvQyyRJQUEg4Fb/uwBV H4xRT2WRL/56lqTAd6ykp0laA5V0czOex2VDs1TZfG75FtCAdscHw7ekJP/otShO dQCubDbTk4yWln/Spmc1rVvxal8AVVKXgAUgh1xieatdadiiWI2shxad0KxW2XR9 Et4brMHrN0MssfaSDFlqQ2ArLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHsdnrfA PPW4Aj6xdqHqLDCiNvKfMB8GA1UdIwQYMBaAFLxw83S3KMe3EcJKaCf3R3pCsipN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkE3NS9FRjVDRDZEQUY1 MzkxMUVGQjA5RkM4M0RDNEY5QUUwMi92SER6ZExjb3g3Y1J3a3BvSl9kSGVrS3lL azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkE3NS9FRjVDRDZEQUY1MzkxMUVGQjA5RkM4M0RDNEY5QUUwMi92SER6ZExjb3g3 Y1J3a3BvSl9kSGVrS3lLazAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFKspylHP0r7TCsp+y6rtMq9GTKAeCrBTWooMWCydIon0AArEaQ7wFDAzbtss 5f8prQQqOm+S9w0c7zlOkf2lUGSmdd2RuY698c4uAr1XO+ASibk0MAj8dqlUOATy Aa3e5Z1R24msgxFzpuIVEOjq0B7zbQojE0aBLg8nzMtG1kPQXc0wgxwtDpMaT7B6 XIhShRMpj2GNTytTW6uyKSd75NTnu+Je6wIY0OU7ge+mqmocmMZx6YbNw1UFGKgF sNVXfh5gi5I5R1C7COvt/Hu1ndlzrHbbhcRbrqptO6gHaGW1NlDQ0G3DSyTqZnCR 6nZnG+ubB5eUuiAdXpHBLIQEfA== -----END CERTIFICATE-----Generated at Fri Apr 17 09:46:19 2026 by rpki-client