$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: Q2uWKdqAVB+7JfrKmtoMNSzBoZg072Jx5RHgpXQCYs4= Subject key identifier: D9:00:54:BA:51:8E:71:36:23:89:1A:5A:8E:B7:84:A4:ED:E9:9C:98 Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 03A5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 039E Signing time: Fri 17 Apr 2026 00:19:29 +0000 Manifest this update: Fri 17 Apr 2026 00:19:28 +0000 Manifest next update: Fri 24 Apr 2026 00:19:28 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: RL/s1hqJF+FHefufDVO5JlENUHGY0wQN89S7zPtVzQ8=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: BIuosdWuF+4ep+QMwFKZ6npqwjzH0+zcNnprYLZ5I98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Apr 17 00:19:28 2026 GMT Not After : Apr 24 00:19:28 2026 GMT Subject: CN=69e17c90-b879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f8:e6:42:58:3e:48:53:d1:d2:1a:6b:00:01: e7:64:db:dc:c6:06:16:f6:73:59:d1:c2:1a:e1:bb: 4f:c4:83:32:fd:e9:9d:20:1b:64:96:b0:f8:45:3f: a5:02:82:50:89:3e:58:54:4c:7d:f3:7d:72:36:6a: 7d:31:ef:c1:64:6a:d9:68:be:71:d1:99:44:de:24: 81:c7:26:8a:53:5d:13:39:19:1a:23:7e:ef:77:d4: d9:59:93:04:d2:18:e0:ea:b5:fb:65:e6:54:5b:56: 87:0b:17:27:48:6a:d0:7c:da:e6:c9:72:7b:a5:77: 7d:d8:b5:92:3e:ec:7d:c8:43:bc:84:76:58:4e:19: b3:e7:05:c6:b3:43:0e:a1:c7:c7:63:34:5c:dc:e0: 79:f6:0f:b3:2e:9f:43:aa:5a:55:2b:b5:66:0a:9f: ca:0f:75:4e:11:1e:9b:ae:1b:3b:6d:95:31:81:9b: 50:a1:44:eb:0a:8a:2b:e9:3c:93:3e:f0:c3:7f:5a: e8:5f:70:8e:ff:f2:be:50:98:74:bc:81:c9:fd:70: 42:53:97:94:dc:d5:2f:92:52:56:41:30:28:b0:e6: 40:0a:e0:6a:d7:71:4e:db:0c:8e:20:64:0f:f1:47: 54:cf:66:d0:88:ac:72:bb:2c:23:1a:0d:6b:c9:65: 9f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:00:54:BA:51:8E:71:36:23:89:1A:5A:8E:B7:84:A4:ED:E9:9C:98 X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:bb:59:74:2e:52:f9:2b:73:4f:59:d2:52:aa:07:3b:93:10: 9a:bb:08:d8:b6:26:aa:f6:a7:ff:6c:bd:5e:41:6b:a3:b2:5b: 9f:d8:05:8f:7f:e4:fa:ea:22:fb:31:f8:5b:a8:f2:69:04:7b: 59:82:3d:9b:e9:bb:31:0a:1d:f2:d9:bf:64:dd:f7:c0:f8:79: e7:1a:8d:2f:df:2c:85:01:d8:35:98:c8:a2:0f:81:bb:2f:31: 7d:48:e6:a7:59:b2:af:51:27:ce:ba:10:41:17:25:0d:ff:1e: 52:33:ab:e1:0c:17:6f:c8:a9:d4:33:d0:32:7f:ff:09:37:cc: 4c:81:40:52:b7:32:ba:3a:d6:ea:f9:96:20:f0:2b:6c:cf:63: 3c:3b:a2:bb:b1:3a:3a:b4:ee:ea:a3:7f:7d:17:5f:dc:7b:df: f5:cc:cd:dd:16:25:92:25:98:ce:41:24:ef:52:96:64:0c:9f: 2a:75:15:e9:70:ed:1e:93:7d:eb:3a:41:4e:50:f0:03:fb:22: 8b:0f:93:7d:a3:3b:ac:44:e6:c4:67:86:e5:18:99:50:b9:68: 8c:97:89:72:32:08:da:79:ff:d3:f0:a1:79:cd:98:6b:bd:54: 27:96:d4:0b:37:24:d1:dd:21:87:65:35:cb:f4:a0:0d:02:53: 49:79:e0:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjYwNDE3MDAxOTI4WhcNMjYwNDI0MDAxOTI4WjAYMRYwFAYD VQQDEw02OWUxN2M5MC1iODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/jmQlg+SFPR0hprAAHnZNvcxgYW9nNZ0cIa4btPxIMy/emdIBtklrD4RT+l AoJQiT5YVEx9831yNmp9Me/BZGrZaL5x0ZlE3iSBxyaKU10TORkaI37vd9TZWZME 0hjg6rX7ZeZUW1aHCxcnSGrQfNrmyXJ7pXd92LWSPux9yEO8hHZYThmz5wXGs0MO ocfHYzRc3OB59g+zLp9DqlpVK7VmCp/KD3VOER6brhs7bZUxgZtQoUTrCoor6TyT PvDDf1roX3CO//K+UJh0vIHJ/XBCU5eU3NUvklJWQTAosOZACuBq13FO2wyOIGQP 8UdUz2bQiKxyuywjGg1ryWWfIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNkAVLpR jnE2I4kaWo63hKTt6ZyYMB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiLtZdC5S+StzT1nSUqoHO5MQmrsI2LYmqvan/2y9XkFro7Jbn9gFj3/k+uoi +zH4W6jyaQR7WYI9m+m7MQod8tm/ZN33wPh55xqNL98shQHYNZjIog+Buy8xfUjm p1myr1EnzroQQRclDf8eUjOr4QwXb8ip1DPQMn//CTfMTIFAUrcyujrW6vmWIPAr bM9jPDuiu7E6OrTu6qN/fRdf3Hvf9czN3RYlkiWYzkEk71KWZAyfKnUV6XDtHpN9 6zpBTlDwA/siiw+TfaM7rETmxGeG5RiZULlojJeJcjII2nn/0/Chec2Ya71UJ5bU Czck0d0hh2U1y/SgDQJTSXng0Q== -----END CERTIFICATE-----Generated at Fri Apr 17 17:25:40 2026 by rpki-client