$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: Z4cLfo9sjPVIyB1DZHTnVtAobRQXpflhwbEwMuTPBqU= Subject key identifier: 68:82:A4:20:5C:77:89:59:3F:EC:37:47:19:A9:AD:D0:58:19:86:E2 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 088D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0876 Signing time: Thu 16 Apr 2026 20:35:02 +0000 Manifest this update: Thu 16 Apr 2026 20:35:02 +0000 Manifest next update: Thu 23 Apr 2026 20:35:02 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: H5aHs1YOa4q09Qzv+kawZq+13mXbY3H444lflhCiMRs=) 2: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: yYK7V7dW/D0eC17jG/LycZEBlM7X3W0O8v5bUzFm2dA=) 3: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: xE0G8jy0x1aFTqJiiedpm0HY07HDA+9aAMGkr13aJlo=) 4: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: X+7xi8ucS3fgs8IMY8mWHVyiqI68xFhirEd+62e8Rek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Apr 16 20:35:02 2026 GMT Not After : Apr 23 20:35:02 2026 GMT Subject: CN=69e147f6-f40d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a3:3c:d3:33:0a:90:f6:16:29:96:d3:0d:3d: 53:1f:f2:04:e9:6d:ca:2e:e7:c5:8c:0f:68:14:78: 24:f1:84:99:fa:fe:6e:26:ff:6a:f8:4b:84:77:a1: 36:aa:d8:e4:a0:b2:ca:3c:be:32:37:1f:70:72:3e: 28:37:c7:62:e5:e3:2a:85:4b:1e:45:8f:c1:10:72: 70:37:61:cf:f6:f5:6f:10:cb:c0:38:13:2d:e8:c6: 12:d1:a7:73:af:4b:ef:f6:2b:fb:3a:88:51:27:69: 68:a0:ef:a5:10:79:c4:14:7f:15:63:27:96:e5:f8: 4c:49:af:fa:6e:4e:e4:91:0e:27:6d:27:2f:6e:ff: 89:17:ee:41:72:8e:10:c1:aa:91:d4:05:b7:e7:26: 1b:b5:26:d4:91:27:b8:e9:1d:1c:f6:b1:bf:57:79: 6c:88:03:fa:fb:bd:b9:cc:63:a3:24:2a:b9:56:06: 14:a1:ca:0d:f1:ec:5c:b2:f2:49:db:02:86:0b:e3: d5:19:c6:23:e5:1a:bf:4c:90:b6:ef:36:d8:8a:b2: d7:e6:e8:f4:53:f6:00:d5:e0:a3:38:cf:d7:c1:50: ed:bf:82:9d:a1:10:c0:7c:3d:92:b1:c0:a8:4e:c8: 4f:af:82:e0:d1:d4:b9:09:54:55:d2:14:77:07:85: a6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:82:A4:20:5C:77:89:59:3F:EC:37:47:19:A9:AD:D0:58:19:86:E2 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:fd:f0:5d:6b:c3:8f:fe:40:70:ed:4a:37:22:5e:df:38:d4: 14:42:11:cf:86:b8:47:70:20:d4:b3:3c:b1:23:2a:ae:b0:ae: 3a:05:f1:4e:fe:94:0a:4c:94:38:52:03:45:68:fb:40:42:b6: b4:96:47:80:64:79:67:5b:00:4f:08:3f:fe:1d:14:59:0e:4c: 20:4c:18:0f:03:31:b6:83:66:0c:0e:dd:ab:f5:e5:2d:d1:6f: 1c:46:f7:f2:bb:aa:17:49:a3:b7:9e:c0:2b:c1:db:3a:09:27: 0c:a3:09:ff:5c:dd:cc:50:58:f4:5c:df:75:a7:f9:89:2b:13: 86:7f:6b:5f:59:3e:85:a9:0a:67:a3:ff:53:4e:70:7b:49:53: 76:0d:1a:97:19:82:6f:42:28:8d:7e:a4:39:5c:10:bb:7e:07: ae:68:82:36:4b:3e:3f:bf:a7:b9:80:88:91:68:e7:2f:be:d8: 33:09:de:bd:5c:f6:a9:57:b4:7a:39:f7:58:be:62:de:6e:77: 90:12:05:0e:ec:09:94:99:49:a7:93:9c:b3:9b:08:72:d2:4c: b0:3f:8e:1b:eb:65:9c:80:e3:c7:da:f0:77:22:8d:16:02:99: 10:9e:d1:a3:6f:5c:58:c9:e7:84:47:d5:06:0b:85:d4:7b:7d: b0:61:8a:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjYwNDE2MjAzNTAyWhcNMjYwNDIzMjAzNTAyWjAYMRYwFAYD VQQDEw02OWUxNDdmNi1mNDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaM80zMKkPYWKZbTDT1TH/IE6W3KLufFjA9oFHgk8YSZ+v5uJv9q+EuEd6E2 qtjkoLLKPL4yNx9wcj4oN8di5eMqhUseRY/BEHJwN2HP9vVvEMvAOBMt6MYS0adz r0vv9iv7OohRJ2looO+lEHnEFH8VYyeW5fhMSa/6bk7kkQ4nbScvbv+JF+5Bco4Q waqR1AW35yYbtSbUkSe46R0c9rG/V3lsiAP6+725zGOjJCq5VgYUocoN8excsvJJ 2wKGC+PVGcYj5Rq/TJC27zbYirLX5uj0U/YA1eCjOM/XwVDtv4KdoRDAfD2SscCo TshPr4Lg0dS5CVRV0hR3B4WmFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGiCpCBc d4lZP+w3RxmprdBYGYbiMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfv3wXWvDj/5AcO1KNyJe3zjUFEIRz4a4R3Ag1LM8sSMqrrCuOgXxTv6UCkyU OFIDRWj7QEK2tJZHgGR5Z1sATwg//h0UWQ5MIEwYDwMxtoNmDA7dq/XlLdFvHEb3 8ruqF0mjt57AK8HbOgknDKMJ/1zdzFBY9Fzfdaf5iSsThn9rX1k+hakKZ6P/U05w e0lTdg0alxmCb0IojX6kOVwQu34HrmiCNks+P7+nuYCIkWjnL77YMwnevVz2qVe0 ejn3WL5i3m53kBIFDuwJlJlJp5Ocs5sIctJMsD+OG+tlnIDjx9rwdyKNFgKZEJ7R o29cWMnnhEfVBguF1Ht9sGGKOg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:22:06 2026 by rpki-client