$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: 7yVPglTt4xiJRK+Y4U53FXZ+D2Tg/KcD9nYr3DCIHKg= Subject key identifier: FE:F9:F4:F0:1B:AA:A0:8C:6F:9A:B6:F0:7A:6E:F4:0B:B4:64:DC:64 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0DD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0DC5 Signing time: Thu 16 Apr 2026 17:49:04 +0000 Manifest this update: Thu 16 Apr 2026 17:49:04 +0000 Manifest next update: Thu 23 Apr 2026 17:49:04 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: QDVxdRdD2vJulvr6Mkf45bJznPgu4VCCDBV7UR0b2iU=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: DwDMBzTdLVQ0ELyjY5S8is56cxQg9X2S+eZse3Y+xqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3537 (0xdd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Apr 16 17:49:04 2026 GMT Not After : Apr 23 17:49:04 2026 GMT Subject: CN=69e12110-94f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:df:d7:5e:fb:fe:46:bb:b5:22:49:49:69:45: 22:bf:de:f7:88:9c:59:5f:30:24:ab:9b:5c:ee:10: ca:33:41:4c:33:9e:22:87:09:54:10:3a:00:96:cc: 39:cf:12:15:0c:a0:42:e4:35:58:40:85:78:85:bd: d6:f3:c3:52:0c:94:28:68:36:fd:00:44:04:c5:7a: f0:cb:04:88:e0:80:6f:78:31:28:35:1e:54:a2:27: 25:64:6d:ce:70:34:bd:f6:9e:2a:8d:84:ca:8f:9e: e7:11:bc:80:48:0c:9d:a1:88:e5:ed:e7:d1:74:a3: da:c8:d3:2c:00:e5:4f:5c:e0:d6:a2:cd:af:9a:75: 54:8b:61:b3:79:71:fa:76:d4:94:31:96:54:18:ee: 58:4a:fc:7a:4c:c8:60:bf:18:ee:ed:4d:a5:67:f7: 71:2e:46:e4:94:43:1e:b5:77:e6:f8:80:a1:24:92: b9:1e:d9:8e:0d:70:0e:f1:08:e6:d2:93:08:dd:80: f4:2d:00:3b:e1:59:df:1f:c6:21:13:67:26:4f:25: 1b:e1:70:11:cf:f2:fa:54:d8:c4:85:61:ca:9c:c8: e0:f1:79:ac:59:76:c5:11:b6:bc:f5:1b:4f:89:8a: fe:bf:2e:5d:6e:f2:aa:2d:74:95:f0:4c:05:65:21: e9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F9:F4:F0:1B:AA:A0:8C:6F:9A:B6:F0:7A:6E:F4:0B:B4:64:DC:64 X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:0a:71:97:ca:84:69:53:0a:27:23:ce:16:3e:2c:4d:bd:87: 22:13:58:11:25:aa:af:2e:c8:d7:0d:12:b6:36:a5:3e:b2:d8: 92:05:3e:2c:92:4b:66:a7:94:96:29:16:1c:ef:88:ab:b2:20: 25:3d:d0:0b:f9:1e:89:2a:8c:b0:66:25:eb:09:66:84:8c:a6: e1:b9:8c:fc:6b:f6:4c:f5:d6:1e:32:3e:e3:40:67:5d:52:37: 6f:6e:c5:d5:c7:68:79:af:ef:be:ce:27:19:0d:07:22:01:b9: aa:6a:c1:3d:3f:af:b1:cf:09:59:c4:5d:e5:cb:79:8a:f0:60: 4f:ee:3e:9d:2b:06:12:bb:14:06:cb:9f:67:d2:69:8a:64:26: e7:7b:7f:c8:89:35:8f:7b:58:f4:b0:a2:cd:d4:59:a8:e7:98: c1:66:e3:c3:f3:15:5f:7b:5d:2c:f5:63:28:4c:52:b7:d5:ae: 63:49:a3:1f:e5:c3:74:26:db:4d:7e:6f:54:30:75:4d:84:26: c8:13:92:a9:1d:8e:25:e8:e0:5f:f6:57:60:a7:68:8d:6d:60: 21:00:51:39:32:0d:7f:2e:02:e0:13:bd:66:df:7f:90:b0:b8: 58:c4:45:ee:d9:9d:2c:60:88:87:ce:9b:dd:c0:f9:db:94:24: 6c:16:c4:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjYwNDE2MTc0OTA0WhcNMjYwNDIzMTc0OTA0WjAYMRYwFAYD VQQDEw02OWUxMjExMC05NGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3d/XXvv+Rru1IklJaUUiv973iJxZXzAkq5tc7hDKM0FMM54ihwlUEDoAlsw5 zxIVDKBC5DVYQIV4hb3W88NSDJQoaDb9AEQExXrwywSI4IBveDEoNR5UoiclZG3O cDS99p4qjYTKj57nEbyASAydoYjl7efRdKPayNMsAOVPXODWos2vmnVUi2GzeXH6 dtSUMZZUGO5YSvx6TMhgvxju7U2lZ/dxLkbklEMetXfm+IChJJK5HtmODXAO8Qjm 0pMI3YD0LQA74VnfH8YhE2cmTyUb4XARz/L6VNjEhWHKnMjg8XmsWXbFEba89RtP iYr+vy5dbvKqLXSV8EwFZSHp6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP759PAb qqCMb5q28Hpu9Au0ZNxkMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1gpxl8qEaVMKJyPOFj4sTb2HIhNYESWqry7I1w0StjalPrLYkgU+LJJLZqeU likWHO+Iq7IgJT3QC/keiSqMsGYl6wlmhIym4bmM/Gv2TPXWHjI+40BnXVI3b27F 1cdoea/vvs4nGQ0HIgG5qmrBPT+vsc8JWcRd5ct5ivBgT+4+nSsGErsUBsufZ9Jp imQm53t/yIk1j3tY9LCizdRZqOeYwWbjw/MVX3tdLPVjKExSt9WuY0mjH+XDdCbb TX5vVDB1TYQmyBOSqR2OJejgX/ZXYKdojW1gIQBROTINfy4C4BO9Zt9/kLC4WMRF 7tmdLGCIh86b3cD525QkbBbEQw== -----END CERTIFICATE-----Generated at Fri Apr 17 07:07:23 2026 by rpki-client