$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: PvwOp9tYbS1Ori2vry7LsIlciRa+o76m8aYZi+EKr78= Subject key identifier: 78:D1:86:CA:B5:D7:2C:D5:F2:58:C8:31:96:F4:8A:F9:41:2A:09:76 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0520 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 04FA Signing time: Thu 16 Apr 2026 16:57:49 +0000 Manifest this update: Thu 16 Apr 2026 16:57:48 +0000 Manifest next update: Thu 23 Apr 2026 16:57:48 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: Dva+JeX/xQRBgMNjm41q+STPaOmGOQ8wP+TDvAdm43k=) 2: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: 76p1LWBSiAURuIgRIP/lu1qZCJd79sZFpOsF7Mk4V7g=) 3: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Ylv7wHI65XMnQYhoDyQSygUwHrURYMjzNieL/UaPiGU=) 4: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: 5Z7fKb2b95O7xf2REenK7dbH8KrSrAmTwTpVkXBeeOI=) 5: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: bjkkedoEzbUfC4GQvKwdaQZgxgq0YTl5qOigfpRvGaU=) 6: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HtAUxiV2GGFLsnw5Ftue8AlO9jul/mJwmhYMXTb/CeY=) 7: 1479C514596A11ECB1394271C4F9AE02.roa (hash: wpAJJYnFAicDNwa71hcmrPmPcdiAdvkl0r/mHo7+0do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Apr 16 16:57:48 2026 GMT Not After : Apr 23 16:57:48 2026 GMT Subject: CN=69e1150d-6527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2d:12:90:18:14:a7:46:6d:0c:fc:6d:75:3a: 24:d6:75:1c:75:28:89:44:dc:66:a8:ac:89:99:a5: 3a:c8:ee:91:aa:85:24:14:47:20:98:25:6b:dc:1f: da:39:b0:8f:44:94:51:c7:88:e4:a1:ac:a4:90:e9: 41:ed:bd:f1:58:26:41:52:b9:32:e0:52:d4:e9:b8: b1:90:9c:f7:a1:d5:b2:82:36:2e:32:bf:95:e0:05: a2:88:12:c7:78:a8:ff:cc:47:a3:8b:f1:50:09:37: c1:be:6b:1c:b9:ba:ac:e2:b9:77:83:e0:e7:52:87: 33:c4:18:f2:c4:2f:96:6d:c1:00:d6:d6:8f:9e:7a: 7d:c0:95:20:91:2b:b8:6e:d3:25:b3:fa:17:51:4a: 41:52:fc:3d:6c:68:6f:a9:3c:a8:c1:1f:b9:15:d1: 89:51:7d:32:4d:28:c8:e6:93:2c:ae:3d:13:b8:a2: 70:6f:60:1e:f3:54:6d:ef:71:43:b4:8e:9e:17:52: cb:f3:07:01:3a:bf:8b:d9:3f:e3:2e:ce:37:6b:2d: 4e:28:3d:0f:27:e6:41:0b:64:a6:bb:ab:e7:06:06: 30:ce:c4:2d:dc:74:27:7b:eb:bd:4c:36:02:94:25: cf:02:8f:1f:66:93:8e:3f:16:12:ed:a4:f9:d5:ce: f0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D1:86:CA:B5:D7:2C:D5:F2:58:C8:31:96:F4:8A:F9:41:2A:09:76 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:3b:2e:fe:ff:b1:f3:82:19:a7:26:65:c5:24:58:79:71:f8: 32:de:bc:6f:7e:ef:50:67:83:1e:c3:b5:c0:6b:33:fc:d7:5a: 7d:f3:4c:18:20:a6:03:25:60:f3:96:6c:8a:37:06:99:83:36: a4:48:ed:e2:42:0f:62:13:e8:c0:88:f6:2a:30:03:17:43:46: b7:df:ad:89:95:3d:16:57:72:2c:ea:46:24:24:ed:3c:fa:ea: 0d:01:f0:87:23:7f:79:ea:98:b5:94:c8:b8:39:42:bc:16:97: 66:6d:26:93:7c:2b:97:b3:2e:9e:99:8f:70:ea:29:92:3f:9f: c1:e5:b6:7c:f7:ee:46:6b:9f:d1:a0:31:9d:b3:91:00:15:6e: fe:77:a4:0b:30:29:1c:66:db:63:97:c4:40:be:67:92:e5:3a: 75:cd:73:40:be:60:84:1b:9a:d6:a1:95:8f:09:3b:a8:06:5a: 5c:4b:4a:5a:13:82:52:69:45:6c:8d:70:ca:79:ad:b1:be:e3: 88:6b:c8:cc:83:ef:04:a1:ec:5f:d0:e5:48:5a:d8:5e:64:71: bc:13:1c:fe:54:8c:48:ec:ee:f7:73:c1:df:b2:a9:07:41:63: 5c:b7:a9:b0:b3:6a:63:7b:39:a1:7a:64:c1:3c:c3:91:0a:f2: b7:8d:fe:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjYwNDE2MTY1NzQ4WhcNMjYwNDIzMTY1NzQ4WjAYMRYwFAYD VQQDEw02OWUxMTUwZC02NTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0S0SkBgUp0ZtDPxtdTok1nUcdSiJRNxmqKyJmaU6yO6RqoUkFEcgmCVr3B/a ObCPRJRRx4jkoaykkOlB7b3xWCZBUrky4FLU6bixkJz3odWygjYuMr+V4AWiiBLH eKj/zEeji/FQCTfBvmscubqs4rl3g+DnUoczxBjyxC+WbcEA1taPnnp9wJUgkSu4 btMls/oXUUpBUvw9bGhvqTyowR+5FdGJUX0yTSjI5pMsrj0TuKJwb2Ae81Rt73FD tI6eF1LL8wcBOr+L2T/jLs43ay1OKD0PJ+ZBC2Smu6vnBgYwzsQt3HQne+u9TDYC lCXPAo8fZpOOPxYS7aT51c7w5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHjRhsq1 1yzV8ljIMZb0ivlBKgl2MB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANjsu/v+x84IZpyZlxSRYeXH4Mt68b37vUGeDHsO1wGsz/NdaffNMGCCmAyVg 85ZsijcGmYM2pEjt4kIPYhPowIj2KjADF0NGt9+tiZU9FldyLOpGJCTtPPrqDQHw hyN/eeqYtZTIuDlCvBaXZm0mk3wrl7MunpmPcOopkj+fweW2fPfuRmuf0aAxnbOR ABVu/nekCzApHGbbY5fEQL5nkuU6dc1zQL5ghBua1qGVjwk7qAZaXEtKWhOCUmlF bI1wynmtsb7jiGvIzIPvBKHsX9DlSFrYXmRxvBMc/lSMSOzu93PB37KpB0FjXLep sLNqY3s5oXpkwTzDkQryt43+qQ== -----END CERTIFICATE-----Generated at Fri Apr 17 09:45:14 2026 by rpki-client