$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: FYgJrl0QTm4fxR4/hwabjJpKjQ+0jRLJW6dwPk/OoXY= Subject key identifier: 5E:53:DC:A5:37:F4:21:AC:36:4F:32:DA:86:69:99:55:ED:75:2C:4E Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 0A3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 0A30 Signing time: Thu 16 Apr 2026 19:40:00 +0000 Manifest this update: Thu 16 Apr 2026 19:39:59 +0000 Manifest next update: Thu 23 Apr 2026 19:39:59 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: N6S9nInt9WczPLUNqoLrBnxXmzZTEDZ1RtPYDFq23FQ=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: AksdzM4PbXGL/XcGvbH1UmcYB82GNXMH4wOGUwrHV60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2621 (0xa3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Apr 16 19:39:59 2026 GMT Not After : Apr 23 19:39:59 2026 GMT Subject: CN=69e13b10-6b43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:44:ca:46:c5:b4:0e:75:96:10:f7:19:02:0a: cb:8b:83:d6:5e:d7:0f:52:67:e7:35:48:0f:6a:c7: 0b:0c:db:4f:dd:ac:ea:07:95:8e:30:d4:88:1d:a5: 60:21:00:c4:1a:8b:ce:51:fc:4d:d8:95:73:2c:5f: 69:2b:fb:59:6c:3d:c1:30:cd:93:f1:86:2d:10:b8: aa:e7:0a:a3:a6:41:23:e1:66:64:24:22:11:55:56: a8:c8:7e:d5:83:15:e2:7e:21:fe:3f:c4:a2:4b:e3: 40:a4:45:91:83:36:4c:2b:2f:36:de:7f:f7:44:94: a1:8c:e7:4b:8d:b3:00:e5:23:d0:0b:8b:a6:a7:70: 21:9c:f6:b9:e1:7f:c0:65:0f:49:71:20:11:55:6f: 0a:13:be:0e:2f:3e:7e:95:1b:55:d6:2b:2b:0e:d2: 66:c7:5d:77:8d:b0:55:d8:75:ad:8c:c1:68:84:a7: c7:66:43:cf:3e:da:ec:1f:32:ad:d5:96:57:e8:2f: 4f:6c:3d:dc:25:3d:db:99:c3:fe:6f:62:67:5c:63: 4a:db:17:04:f7:9e:4e:c0:2d:71:d9:74:f1:0d:c2: 6d:28:3b:96:b4:d9:3e:d2:bb:d0:e8:66:10:f1:b9: 20:2d:74:2a:06:22:fc:2a:42:1d:06:e7:36:fd:4a: 76:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:53:DC:A5:37:F4:21:AC:36:4F:32:DA:86:69:99:55:ED:75:2C:4E X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:b7:b9:2d:8f:87:91:35:47:26:1a:e9:fc:b3:c0:1f:9a:06: 77:3a:b2:1d:ce:fe:0f:1a:37:90:59:26:7a:74:38:8f:c5:64: e4:9c:97:36:93:3c:11:ab:d0:3f:5b:53:5d:2a:15:f8:69:80: 46:83:4d:89:7f:92:fd:88:5f:90:e6:11:4c:e9:c7:c6:44:a4: 95:66:01:a8:5f:cb:40:90:fe:58:2e:ec:cf:bb:e0:d1:3f:fb: 06:2a:4d:87:d9:69:3f:de:85:28:6f:fe:d0:b7:03:34:5a:41: 74:22:ec:0b:2a:4d:a0:cb:33:9a:7b:b9:0c:a9:c3:6e:45:5a: c3:ff:01:6b:01:f5:cb:06:13:f6:3d:5d:32:43:18:86:59:f2: 10:45:7e:6a:db:8d:b1:f0:30:ab:14:8c:86:c9:78:69:04:ce: 12:49:c9:90:dd:ec:9b:11:e1:18:c8:89:f4:6b:c7:da:6d:de: 36:c5:ac:f9:b6:44:3f:07:49:30:d3:48:e1:3f:37:e6:37:1f: 69:2c:34:e8:53:71:39:27:54:2e:39:10:bd:7e:95:86:83:1d: c0:67:09:59:93:fd:a1:f1:f0:38:ba:d4:68:d6:b1:ec:35:b8: 0b:a0:9e:d1:bd:4b:5f:97:1f:16:20:4b:58:90:98:aa:70:9a: 60:d4:8b:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjYwNDE2MTkzOTU5WhcNMjYwNDIzMTkzOTU5WjAYMRYwFAYD VQQDEw02OWUxM2IxMC02YjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlUTKRsW0DnWWEPcZAgrLi4PWXtcPUmfnNUgPascLDNtP3azqB5WOMNSIHaVg IQDEGovOUfxN2JVzLF9pK/tZbD3BMM2T8YYtELiq5wqjpkEj4WZkJCIRVVaoyH7V gxXifiH+P8SiS+NApEWRgzZMKy823n/3RJShjOdLjbMA5SPQC4ump3AhnPa54X/A ZQ9JcSARVW8KE74OLz5+lRtV1isrDtJmx113jbBV2HWtjMFohKfHZkPPPtrsHzKt 1ZZX6C9PbD3cJT3bmcP+b2JnXGNK2xcE955OwC1x2XTxDcJtKDuWtNk+0rvQ6GYQ 8bkgLXQqBiL8KkIdBuc2/Up2bwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF5T3KU3 9CGsNk8y2oZpmVXtdSxOMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQbe5LY+HkTVHJhrp/LPAH5oGdzqyHc7+Dxo3kFkmenQ4j8Vk5JyXNpM8EavQ P1tTXSoV+GmARoNNiX+S/YhfkOYRTOnHxkSklWYBqF/LQJD+WC7sz7vg0T/7BipN h9lpP96FKG/+0LcDNFpBdCLsCypNoMszmnu5DKnDbkVaw/8BawH1ywYT9j1dMkMY hlnyEEV+atuNsfAwqxSMhsl4aQTOEknJkN3smxHhGMiJ9GvH2m3eNsWs+bZEPwdJ MNNI4T835jcfaSw06FNxOSdULjkQvX6VhoMdwGcJWZP9ofHwOLrUaNax7DW4C6Ce 0b1LX5cfFiBLWJCYqnCaYNSLBQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:09:46 2026 by rpki-client