$ rpki-client -vvf rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft File: zDdqaPyj4J8M61wsuRs02xTD68k.mft (raw, json) Hash identifier: HCq+39ubnZiONOn6sRQBmuqLcicpwvFbcX7WNeuppWE= Subject key identifier: 67:E3:0A:75:E5:47:FC:4C:77:D0:BD:9F:6C:F1:C2:3D:6D:E0:BB:CA Authority key identifier: CC:37:6A:68:FC:A3:E0:9F:0C:EB:5C:2C:B9:1B:34:DB:14:C3:EB:C9 Certificate issuer: /CN=A914DCD4/serialNumber=CC376A68FCA3E09F0CEB5C2CB91B34DB14C3EBC9 Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft Manifest number: 41 Signing time: Wed 15 Apr 2026 08:05:01 +0000 Manifest this update: Wed 15 Apr 2026 08:05:01 +0000 Manifest next update: Wed 22 Apr 2026 08:05:01 +0000 Files and hashes: 1: zDdqaPyj4J8M61wsuRs02xTD68k.crl (hash: e35KR/kp89X3CEKlKLo9NxrQBcCj875Xr2DhakOBVrQ=) 2: E611D250118111F1BD19AAF2323D8C67.roa (hash: ZlY819q3BVvBAVN3kikGmOs572rGxvo+Slai0R6y0MM=) 3: 2A8244EEE1AB11F0A6B6CFD64A6F56BC.roa (hash: EqLKG4uPYdf+DEH4UJyfrFpvPeTolC1wKzTsRMJAbCw=) 4: 8056379A118511F1AFA21CD3333D8C67.roa (hash: a+0zEEh0IkQBVa10yTGuRhVRnpnLL42o4daj18Tc6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.crl rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 08:05:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DCD4, serialNumber=CC376A68FCA3E09F0CEB5C2CB91B34DB14C3EBC9 Validity Not Before: Apr 15 08:05:01 2026 GMT Not After : Apr 22 08:05:01 2026 GMT Subject: CN=69df46ad-b553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5e:c8:40:50:a5:03:d0:e8:7c:e5:7c:fa:c8: 8e:15:da:2a:5e:1d:d1:6d:9a:81:d9:75:05:d3:f0: 4c:4a:9d:b7:b2:94:c0:df:a4:c3:19:19:ff:c7:c7: 44:85:5b:42:12:b6:02:ff:4e:2c:5b:ba:ff:af:5b: 5a:ea:be:28:eb:0c:4e:3e:8e:12:bc:82:83:cd:d1: 4a:c5:1c:23:15:c2:3a:41:78:f3:41:69:82:d4:db: 65:dd:c2:ec:36:06:9d:3d:cf:b6:61:e6:d7:2b:67: 87:47:e2:9e:1b:8f:84:23:22:ab:6d:6b:33:e6:41: 07:8a:9e:b0:ba:f1:b9:5f:0c:4f:83:d6:7d:00:ef: e4:4e:fd:29:2b:d4:6b:a6:03:df:db:e8:7c:fb:07: 99:50:b1:3c:06:19:3e:cc:2e:21:90:f9:6e:34:15: 5c:84:88:23:b4:16:61:73:9e:7a:5f:4d:df:c4:bf: 3a:b6:57:e9:07:cb:46:15:c9:52:e6:7f:24:98:0f: 64:69:fa:95:52:80:ab:c4:35:8e:56:1d:7c:41:3a: 64:26:0c:c3:5b:00:27:be:a4:21:69:ec:ef:dc:69: a2:e3:7a:d4:86:78:70:3a:12:14:ef:e9:59:20:2c: 19:4b:cb:e4:30:2d:c9:e2:8d:e4:96:f2:59:f1:11: 55:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E3:0A:75:E5:47:FC:4C:77:D0:BD:9F:6C:F1:C2:3D:6D:E0:BB:CA X509v3 Authority Key Identifier: keyid:CC:37:6A:68:FC:A3:E0:9F:0C:EB:5C:2C:B9:1B:34:DB:14:C3:EB:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:3f:a0:82:26:a4:40:1d:94:d0:b2:44:89:12:1f:26:02:61: 6e:8c:47:22:2a:d3:94:1d:c6:a9:4f:9c:49:21:07:b7:87:7c: 70:62:c0:c9:96:6c:86:5c:19:ab:df:2a:64:f4:b7:58:16:fb: a6:51:4c:84:7e:98:cd:28:ba:e0:28:57:f6:cb:08:64:f0:6d: 3c:99:76:ef:12:8f:40:e1:f6:98:8c:7c:01:4f:f2:47:40:20: 3a:8e:61:f3:0b:5b:b4:9c:c4:e4:3c:dc:e3:6d:aa:2a:03:56: 9e:c7:58:18:ee:0a:c3:a9:7b:b0:68:63:b9:e1:19:53:04:28: e6:d4:7c:09:27:f3:fd:29:26:56:c6:a1:80:a4:5f:88:bb:9d: ed:57:df:f4:45:9d:b2:eb:6c:89:4c:ec:51:b0:4e:c8:fe:7d: fd:82:b1:d2:81:19:3b:01:b5:80:96:28:01:35:54:a7:cf:1e: a0:d7:46:1c:27:b0:bb:82:8a:81:66:e5:4c:3b:20:08:e6:e2: 15:13:e9:20:8e:26:d1:5d:c1:2a:62:83:37:78:1b:c7:99:e9: 42:22:8d:7a:1f:bb:28:59:be:46:0a:71:92:49:62:76:9f:83: 08:6e:67:0b:2b:7d:a9:e6:b3:60:de:13:17:74:3a:af:c6:e0: 61:85:2c:9e -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RENENDExMC8GA1UEBRMoQ0MzNzZBNjhGQ0EzRTA5RjBDRUI1QzJDQjkxQjM0REIx NEMzRUJDOTAeFw0yNjA0MTUwODA1MDFaFw0yNjA0MjIwODA1MDFaMBgxFjAUBgNV BAMTDTY5ZGY0NmFkLWI1NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOXshAUKUD0Oh85Xz6yI4V2ipeHdFtmoHZdQXT8ExKnbeylMDfpMMZGf/Hx0SF W0IStgL/Tixbuv+vW1rqvijrDE4+jhK8goPN0UrFHCMVwjpBePNBaYLU22Xdwuw2 Bp09z7Zh5tcrZ4dH4p4bj4QjIqttazPmQQeKnrC68blfDE+D1n0A7+RO/Skr1Gum A9/b6Hz7B5lQsTwGGT7MLiGQ+W40FVyEiCO0FmFznnpfTd/Evzq2V+kHy0YVyVLm fySYD2Rp+pVSgKvENY5WHXxBOmQmDMNbACe+pCFp7O/caaLjetSGeHA6EhTv6Vkg LBlLy+QwLcnijeSW8lnxEVUbAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUZ+MKdeVH /Ex30L2fbPHCPW3gu8owHwYDVR0jBBgwFoAUzDdqaPyj4J8M61wsuRs02xTD68kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQ0Q0L0IxNzFEQjUwRTFB QTExRjBBRkNFODRCODRBNkY1NkJDL3pEZHFhUHlqNEo4TTYxd3N1UnMwMnhURDY4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvekRkcWFQeWo0SjhNNjF3c3VSczAyeFRENjhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE Q0Q0L0IxNzFEQjUwRTFBQTExRjBBRkNFODRCODRBNkY1NkJDL3pEZHFhUHlqNEo4 TTYxd3N1UnMwMnhURDY4ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAGP6CCJqRAHZTQskSJEh8mAmFujEciKtOUHcapT5xJIQe3h3xwYsDJlmyGXBmr 3ypk9LdYFvumUUyEfpjNKLrgKFf2ywhk8G08mXbvEo9A4faYjHwBT/JHQCA6jmHz C1u0nMTkPNzjbaoqA1aex1gY7grDqXuwaGO54RlTBCjm1HwJJ/P9KSZWxqGApF+I u53tV9/0RZ2y62yJTOxRsE7I/n39grHSgRk7AbWAligBNVSnzx6g10YcJ7C7goqB ZuVMOyAI5uIVE+kgjibRXcEqYoM3eBvHmelCIo16H7soWb5GCnGSSWJ2n4MIbmcL K32p5rNg3hMXdDqvxuBhhSye -----END CERTIFICATE-----Generated at Fri Apr 17 08:08:51 2026 by rpki-client