$ rpki-client -vvf rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft File: xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft (raw, json) Hash identifier: L9R8eN81jS5tkeJbzfLH9+Fh6hI04BqORMzAcVPBLIA= Subject key identifier: 9E:F1:D8:13:FC:F4:C4:05:E8:95:A2:D7:7F:DA:B0:9A:B7:57:A6:8A Authority key identifier: C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D Certificate issuer: /CN=A914CA5C/serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Certificate serial: 0443 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft Manifest number: 0432 Signing time: Fri 17 Apr 2026 00:14:51 +0000 Manifest this update: Fri 17 Apr 2026 00:14:50 +0000 Manifest next update: Fri 24 Apr 2026 00:14:50 +0000 Files and hashes: 1: xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl (hash: DjIX2CSY7FpfkQdoYABIPfFxfGyBFnWYNe02VjxQwHQ=) 2: 0663DADAEEF511F0AEB0B1D83B6F56BC.roa (hash: q5IvURlRSZM1tbSnIUK7mrAYKjf2ufDxWX6LFHw5WEY=) 3: 892F26B4EEF411F0A51D99D83B6F56BC.roa (hash: j2S/9hhdR71OoPWxIwP3TFKjgMgXC3Tmdl7QnGCMX8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1091 (0x443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CA5C, serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Validity Not Before: Apr 17 00:14:50 2026 GMT Not After : Apr 24 00:14:50 2026 GMT Subject: CN=69e17b7b-4d5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:95:50:b3:43:76:64:14:1c:31:61:59:f6:f6: 25:3f:58:72:db:48:f1:c4:f8:e2:bd:24:0e:c4:6e: d0:e4:5d:3e:68:f9:3d:22:1b:a9:ec:a8:e5:8b:59: 0c:07:75:ae:df:53:5e:2a:58:2b:c0:5c:63:ed:2c: a2:8a:fa:8b:1b:48:e4:be:54:e0:e5:5d:c0:c5:41: 6f:a4:eb:3a:74:ab:77:61:31:59:2e:04:4d:6a:32: 23:b4:04:43:9a:66:18:ee:3e:6c:44:f8:06:85:fd: 4e:32:c1:60:a4:f3:42:dc:d0:15:86:17:63:b8:fb: 84:f8:c8:16:e8:50:ec:fb:05:60:4f:e8:ec:4d:69: 20:40:7f:91:4b:e1:14:c9:1d:d4:e1:fd:7c:e5:20: 9c:9c:2f:a4:1e:85:fe:8b:a6:61:56:f1:dc:86:b8: b0:1c:5a:54:57:8e:34:f1:15:ea:36:97:45:d4:64: 45:66:cd:a4:94:e7:2d:b2:48:1f:ac:4f:eb:b2:75: da:6c:90:5f:29:ad:6d:af:0f:60:aa:ed:87:48:01: 41:96:f6:29:65:dd:38:4c:69:81:d8:a9:9a:33:3b: c2:3e:2b:81:54:9d:40:2a:1b:c3:c2:76:68:28:01: 14:e1:58:09:22:23:78:73:8a:1e:0d:d3:e3:99:a5: be:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F1:D8:13:FC:F4:C4:05:E8:95:A2:D7:7F:DA:B0:9A:B7:57:A6:8A X509v3 Authority Key Identifier: keyid:C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:07:26:76:0d:69:23:4e:2d:81:ee:f5:af:95:da:19:6a:60: 81:00:7a:9b:6b:74:8d:16:99:28:f9:2c:d7:f5:84:9a:ee:95: aa:56:bb:8d:05:ea:e3:f7:c0:93:49:d2:bc:d6:da:28:52:a5: 59:79:b9:da:12:cb:70:cd:98:a2:9f:90:48:ec:82:bc:1e:87: cf:a7:0b:bc:6b:7a:19:f4:5e:4e:cb:74:53:cd:ca:80:ed:7b: 14:c7:41:2c:bc:61:a5:eb:32:85:32:a0:43:42:b3:ed:53:8f: 3f:5c:94:77:ef:94:bd:6e:80:8c:d0:ad:6f:aa:af:fd:a8:ce: 6b:24:88:5f:66:7b:41:34:7f:8d:f2:ad:bb:7f:09:7a:64:e3: 2f:37:91:f0:19:07:5e:4b:7a:c5:23:e3:cd:96:fb:f1:51:2b: 84:a7:bb:f5:df:25:e6:a1:11:43:b1:93:c0:78:ee:73:e1:93: d5:a0:ed:5b:b4:c0:98:ce:a7:26:a0:2d:d2:53:d5:b8:72:99: 53:8d:56:8b:a4:f1:ed:81:a9:52:f0:7e:a8:bb:91:3c:61:9c: aa:d1:cd:1a:bc:e2:49:4d:ae:29:55:5f:ba:bb:b2:b6:6d:4b: 41:c9:db:c9:f1:17:4d:d1:5b:c8:02:da:68:ad:61:14:91:82: 7c:8e:a6:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENBNUMxMTAvBgNVBAUTKEM0M0QxOUM2RDM5NzExMkEyQUZFRDQ2NjYxMjJGQzU3 NkI0Nzg4NkQwHhcNMjYwNDE3MDAxNDUwWhcNMjYwNDI0MDAxNDUwWjAYMRYwFAYD VQQDEw02OWUxN2I3Yi00ZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJVQs0N2ZBQcMWFZ9vYlP1hy20jxxPjivSQOxG7Q5F0+aPk9Ihup7Kjli1kM B3Wu31NeKlgrwFxj7SyiivqLG0jkvlTg5V3AxUFvpOs6dKt3YTFZLgRNajIjtARD mmYY7j5sRPgGhf1OMsFgpPNC3NAVhhdjuPuE+MgW6FDs+wVgT+jsTWkgQH+RS+EU yR3U4f185SCcnC+kHoX+i6ZhVvHchriwHFpUV4408RXqNpdF1GRFZs2klOctskgf rE/rsnXabJBfKa1trw9gqu2HSAFBlvYpZd04TGmB2KmaMzvCPiuBVJ1AKhvDwnZo KAEU4VgJIiN4c4oeDdPjmaW+GQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ7x2BP8 9MQF6JWi13/asJq3V6aKMB8GA1UdIwQYMBaAFMQ9GcbTlxEqKv7UZmEi/FdrR4ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0E1Qy82NTEwRTMxMEE0 NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVTb3FfdFJtWVNMOFYydEhp RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEMFp4dE9YRVNvcV90Um1ZU0w4VjJ0SGlHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0E1Qy82NTEwRTMxMEE0NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVT b3FfdFJtWVNMOFYydEhpRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIwcmdg1pI04tge71r5XaGWpggQB6m2t0jRaZKPks1/WEmu6Vqla7jQXq4/fA k0nSvNbaKFKlWXm52hLLcM2Yop+QSOyCvB6Hz6cLvGt6GfReTst0U83KgO17FMdB LLxhpesyhTKgQ0Kz7VOPP1yUd++UvW6AjNCtb6qv/ajOaySIX2Z7QTR/jfKtu38J emTjLzeR8BkHXkt6xSPjzZb78VErhKe79d8l5qERQ7GTwHjuc+GT1aDtW7TAmM6n JqAt0lPVuHKZU41Wi6Tx7YGpUvB+qLuRPGGcqtHNGrziSU2uKVVfuruytm1LQcnb yfEXTdFbyALaaK1hFJGCfI6meQ== -----END CERTIFICATE-----Generated at Fri Apr 17 08:08:40 2026 by rpki-client