$ rpki-client -vvf rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.mft File: WKqOb2Cb9VgUA20moSpeKyUViTo.mft (raw, json) Hash identifier: +Wlj5EkMCWp+wppKNvF04sOqrVzBc3wEizQj3IEXXOg= Subject key identifier: B6:78:85:8A:C4:21:94:F6:6E:2B:00:06:F6:AF:06:AE:5A:B8:92:C4 Authority key identifier: 58:AA:8E:6F:60:9B:F5:58:14:03:6D:26:A1:2A:5E:2B:25:15:89:3A Certificate issuer: /CN=A914EBB2/serialNumber=58AA8E6F609BF55814036D26A12A5E2B2515893A Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKqOb2Cb9VgUA20moSpeKyUViTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.mft Manifest number: 3E Signing time: Fri 17 Apr 2026 04:44:09 +0000 Manifest this update: Fri 17 Apr 2026 04:44:09 +0000 Manifest next update: Fri 24 Apr 2026 04:44:09 +0000 Files and hashes: 1: WKqOb2Cb9VgUA20moSpeKyUViTo.crl (hash: byFEGPDp7lmw4OaLoTfxA1lloh7ZTjkdWv/mlHq0nvw=) 2: 651B78142DD711F187F45729B3833773.roa (hash: orGvvH8EtrQFqpfDS8Xvz4vEWTgyCI2f9BcO9d6cJBw=) 3: D23FC546011111F1B3598E67446F56BC.roa (hash: vcrWn/T7PWva5wilhUJF83D5sEdB2Zxd5D/0CZVE3OU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.crl rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKqOb2Cb9VgUA20moSpeKyUViTo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EBB2, serialNumber=58AA8E6F609BF55814036D26A12A5E2B2515893A Validity Not Before: Apr 17 04:44:09 2026 GMT Not After : Apr 24 04:44:09 2026 GMT Subject: CN=69e1ba99-4dcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:94:b5:4c:35:15:90:85:02:c8:59:6a:f8: 01:b1:35:92:3d:89:25:ef:38:36:b5:93:9d:49:35: 93:fd:f0:67:41:3f:fd:90:dd:25:d1:e7:56:84:dc: e6:0c:85:93:82:7f:fd:12:70:eb:3b:46:46:10:f8: 8b:a4:bb:52:85:56:17:61:df:8c:fa:3e:86:d8:79: f8:c0:11:4c:25:56:ba:7b:63:e3:1e:62:ed:8e:e3: 34:cd:d8:5a:1a:cf:77:38:3d:e4:10:8f:91:eb:fb: 76:17:71:f5:bc:99:da:a5:da:3c:33:a8:db:26:1c: e8:c6:a4:95:83:ea:85:06:61:31:9d:cf:8b:7d:31: c3:42:ae:92:fc:fe:46:8a:bc:9a:ec:86:e6:a5:d0: 38:9c:12:d9:e2:77:9e:e0:1d:8a:b0:49:c3:86:d2: b4:fc:3c:1d:b2:c4:5a:94:19:e1:2a:d6:b7:3e:4c: e5:b9:6b:b2:4e:4c:a9:95:5a:21:a2:ac:4b:5a:3d: 77:90:e5:b7:6b:96:59:63:2c:c0:3d:5e:7c:23:2c: cb:01:e6:fb:0a:05:16:95:e6:dd:9a:0f:4e:19:b7: 35:ed:a6:ed:89:3d:1d:06:b3:c5:ed:c3:58:c3:a6: 16:a9:5d:63:b9:ca:68:4c:2c:ff:5f:1f:da:cb:78: 79:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:78:85:8A:C4:21:94:F6:6E:2B:00:06:F6:AF:06:AE:5A:B8:92:C4 X509v3 Authority Key Identifier: keyid:58:AA:8E:6F:60:9B:F5:58:14:03:6D:26:A1:2A:5E:2B:25:15:89:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKqOb2Cb9VgUA20moSpeKyUViTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:5c:4b:24:0e:a7:46:18:f6:a0:0e:24:f4:03:2c:02:80:ff: e4:e2:09:18:15:b0:8f:68:55:b7:53:1b:f6:be:a2:cf:6d:13: 13:fb:25:da:4e:1e:3a:43:2c:47:c5:73:04:29:ef:fd:3d:9a: f3:d7:85:c3:fc:1f:07:76:04:e3:28:10:fc:7a:41:1c:3c:07: ef:8f:d8:c1:4f:5f:24:28:83:a0:97:a5:77:b6:1b:90:1a:f7: 41:2a:41:4d:d1:6b:83:9d:7b:54:04:8a:cc:d3:c7:9a:78:12: bb:7f:e5:00:f3:2b:27:31:39:93:a9:38:ca:85:f7:1e:e7:8d: e0:47:2b:f2:f9:f9:ea:89:17:83:43:46:d1:35:d4:c8:f7:b7: 7f:a8:1b:88:f6:6f:fb:59:e4:0f:b1:7d:1a:d6:7e:d2:35:f4: 67:1d:49:0b:89:05:da:9b:17:56:53:45:19:6d:37:34:47:90: de:04:dc:17:17:c0:83:0d:d6:ba:da:de:38:ff:6f:e0:d0:95: 9c:ce:40:60:9c:be:b3:b3:e8:5c:40:3c:7a:fd:12:de:d1:e1: 79:55:8b:a3:73:51:f8:b3:91:73:65:55:c8:bc:92:be:44:0c: 62:9e:d3:67:37:1d:6f:d3:a0:fc:7d:d9:16:25:73:cc:0d:19: 59:02:72:48 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RUJCMjExMC8GA1UEBRMoNThBQThFNkY2MDlCRjU1ODE0MDM2RDI2QTEyQTVFMkIy NTE1ODkzQTAeFw0yNjA0MTcwNDQ0MDlaFw0yNjA0MjQwNDQ0MDlaMBgxFjAUBgNV BAMTDTY5ZTFiYTk5LTRkY2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQKpS1TDUVkIUCyFlq+AGxNZI9iSXvODa1k51JNZP98GdBP/2Q3SXR51aE3OYM hZOCf/0ScOs7RkYQ+Iuku1KFVhdh34z6PobYefjAEUwlVrp7Y+MeYu2O4zTN2Foa z3c4PeQQj5Hr+3YXcfW8mdql2jwzqNsmHOjGpJWD6oUGYTGdz4t9McNCrpL8/kaK vJrshual0DicEtnid57gHYqwScOG0rT8PB2yxFqUGeEq1rc+TOW5a7JOTKmVWiGi rEtaPXeQ5bdrllljLMA9XnwjLMsB5vsKBRaV5t2aD04ZtzXtpu2JPR0Gs8Xtw1jD phapXWO5ymhMLP9fH9rLeHmlAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUtniFisQh lPZuKwAG9q8Grlq4ksQwHwYDVR0jBBgwFoAUWKqOb2Cb9VgUA20moSpeKyUViTow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFQkIyL0YwOTFGMDcwRUQw RjExRjBBODEwMzQwNEExRUU1MjhFL1dLcU9iMkNiOVZnVUEyMG1vU3BlS3lVVmlU by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0txT2IyQ2I5VmdVQTIwbW9TcGVLeVVWaVRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF QkIyL0YwOTFGMDcwRUQwRjExRjBBODEwMzQwNEExRUU1MjhFL1dLcU9iMkNiOVZn VUEyMG1vU3BlS3lVVmlUby5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCjXEskDqdGGPagDiT0AywCgP/k4gkYFbCPaFW3Uxv2vqLPbRMT+yXaTh46QyxH xXMEKe/9PZrz14XD/B8HdgTjKBD8ekEcPAfvj9jBT18kKIOgl6V3thuQGvdBKkFN 0WuDnXtUBIrM08eaeBK7f+UA8ysnMTmTqTjKhfce543gRyvy+fnqiReDQ0bRNdTI 97d/qBuI9m/7WeQPsX0a1n7SNfRnHUkLiQXamxdWU0UZbTc0R5DeBNwXF8CDDda6 2t44/2/g0JWczkBgnL6zs+hcQDx6/RLe0eF5VYujc1H4s5FzZVXIvJK+RAxintNn Nx1v06D8fdkWJXPMDRlZAnJI -----END CERTIFICATE-----Generated at Fri Apr 17 14:01:27 2026 by rpki-client