$ rpki-client -vvf rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft File: dK-15U8HPzwgdjJdKsf3AA4uaoY.mft (raw, json) Hash identifier: aYN17a7JaLtJl3Xz6i80j6+byTk9TgLLjCOZhfP0dNI= Subject key identifier: DF:7F:B5:63:AC:03:2A:33:57:25:58:8D:36:5C:0D:5E:C8:11:6D:B6 Authority key identifier: 74:AF:B5:E5:4F:07:3F:3C:20:76:32:5D:2A:C7:F7:00:0E:2E:6A:86 Certificate issuer: /CN=A916EDC2/serialNumber=74AFB5E54F073F3C2076325D2AC7F7000E2E6A86 Certificate serial: 03E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft Manifest number: 03DE Signing time: Fri 17 Apr 2026 00:26:43 +0000 Manifest this update: Fri 17 Apr 2026 00:26:43 +0000 Manifest next update: Fri 24 Apr 2026 00:26:43 +0000 Files and hashes: 1: dK-15U8HPzwgdjJdKsf3AA4uaoY.crl (hash: a1r2GROCrfh3ypA5qH1sXdoiHj1dZftkvdpgoXwuECU=) 2: 5E8E08E8C26211ECBFC22B20C4F9AE02.roa (hash: C2lCkbVI1XaonZAwyhCohh9dLONbvb2hit8qWW3O4Ec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.crl rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EDC2, serialNumber=74AFB5E54F073F3C2076325D2AC7F7000E2E6A86 Validity Not Before: Apr 17 00:26:43 2026 GMT Not After : Apr 24 00:26:43 2026 GMT Subject: CN=69e17e43-10d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:54:d4:7d:35:ef:72:79:4d:7e:ab:ba:5c:6c: b2:9a:66:52:df:0b:15:d9:55:cb:3c:3e:45:06:19: d5:2d:83:37:1b:50:74:5a:cf:0c:41:33:2b:80:93: 78:4e:c7:10:50:b9:6a:4b:1a:f6:0b:b8:70:25:a7: 59:fc:d4:12:b9:aa:31:45:2d:c4:08:3f:4c:ee:1f: 64:e7:6e:dc:86:7f:07:98:dc:ea:70:b4:50:dc:34: 7e:de:65:8d:0d:ac:f1:68:73:01:93:da:9d:1b:62: c9:3c:d0:59:88:d7:34:d1:b7:35:22:7d:14:7e:73: a3:82:7a:8c:e7:fd:98:bf:94:f6:c5:38:77:d8:bf: 9f:95:01:4c:94:55:1b:81:20:13:0b:d3:95:7d:6b: 9b:d3:49:b0:ff:0d:05:8b:07:10:31:9b:ec:b9:a7: ad:8b:bb:50:4a:de:06:e3:9a:7f:18:05:82:fa:57: 0e:54:70:8b:70:66:7d:a1:0f:20:df:61:3f:34:85: b7:56:69:0a:41:34:6d:80:48:07:b1:1e:82:0f:73: 66:ee:e6:49:c4:3e:d3:1f:3c:f8:6d:b6:12:87:0d: 79:04:9b:3f:41:05:41:6b:9e:ec:88:bd:dd:75:e1: 2d:37:1b:87:97:ff:dc:16:49:bb:d0:e7:a6:2c:75: 1d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7F:B5:63:AC:03:2A:33:57:25:58:8D:36:5C:0D:5E:C8:11:6D:B6 X509v3 Authority Key Identifier: keyid:74:AF:B5:E5:4F:07:3F:3C:20:76:32:5D:2A:C7:F7:00:0E:2E:6A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:30:bb:cb:fa:42:ba:9c:e0:50:3d:c2:a1:08:ba:e5:be:63: 63:97:76:4a:e6:a3:79:d8:61:e8:8e:24:3f:80:0a:01:24:4c: 18:2e:a0:7c:0d:38:20:14:c1:50:47:63:14:3d:70:0b:e5:b4: 57:cc:1c:2a:7c:8a:48:52:f8:ad:7b:73:10:89:59:1c:ea:d0: 6c:c5:53:5c:ee:34:61:b2:0f:f7:8c:50:50:b2:0b:38:19:55: 80:0d:cc:7f:76:6f:b9:08:27:53:1b:93:f9:df:eb:74:a9:5d: 2a:18:b2:d4:e6:a7:a9:52:48:6e:fa:90:7a:99:5e:70:ec:6a: 56:12:c0:a1:e3:43:38:c6:35:4c:32:f8:d5:01:ad:0e:ee:39: 35:63:e7:c8:cb:65:de:71:d3:5a:93:27:e0:08:14:dd:06:20: 66:08:f4:7e:c8:83:00:54:97:93:8e:bf:9b:68:0f:e1:1e:18: 66:bf:2a:30:2e:99:5a:ad:50:db:4a:63:f7:b1:f4:91:87:55: bc:5d:6f:4b:bc:a7:32:8f:b2:f5:dc:49:e4:6a:ea:77:ff:bc: 52:af:7f:bc:18:ca:81:00:dc:19:47:6d:ad:64:f7:ff:07:5b: 8d:f5:56:52:dd:4b:ea:d9:79:ff:e4:63:67:3e:92:d7:fa:e3: 20:1f:84:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEQzIxMTAvBgNVBAUTKDc0QUZCNUU1NEYwNzNGM0MyMDc2MzI1RDJBQzdGNzAw MEUyRTZBODYwHhcNMjYwNDE3MDAyNjQzWhcNMjYwNDI0MDAyNjQzWjAYMRYwFAYD VQQDEw02OWUxN2U0My0xMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlTUfTXvcnlNfqu6XGyymmZS3wsV2VXLPD5FBhnVLYM3G1B0Ws8MQTMrgJN4 TscQULlqSxr2C7hwJadZ/NQSuaoxRS3ECD9M7h9k527chn8HmNzqcLRQ3DR+3mWN DazxaHMBk9qdG2LJPNBZiNc00bc1In0UfnOjgnqM5/2Yv5T2xTh32L+flQFMlFUb gSATC9OVfWub00mw/w0FiwcQMZvsuaeti7tQSt4G45p/GAWC+lcOVHCLcGZ9oQ8g 32E/NIW3VmkKQTRtgEgHsR6CD3Nm7uZJxD7THzz4bbYShw15BJs/QQVBa57siL3d deEtNxuHl//cFkm70OemLHUd8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN9/tWOs AyozVyVYjTZcDV7IEW22MB8GA1UdIwQYMBaAFHSvteVPBz88IHYyXSrH9wAOLmqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RURDMi8zNkVCMjMyOEMy NUYxMUVDOEMzQjAwMURDNEY5QUUwMi9kSy0xNVU4SFB6d2dkakpkS3NmM0FBNHVh b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RLLTE1VThIUHp3Z2RqSmRLc2YzQUE0dWFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RURDMi8zNkVCMjMyOEMyNUYxMUVDOEMzQjAwMURDNEY5QUUwMi9kSy0xNVU4SFB6 d2dkakpkS3NmM0FBNHVhb1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASzC7y/pCupzgUD3CoQi65b5jY5d2Suajedhh6I4kP4AKASRMGC6gfA04IBTB UEdjFD1wC+W0V8wcKnyKSFL4rXtzEIlZHOrQbMVTXO40YbIP94xQULILOBlVgA3M f3ZvuQgnUxuT+d/rdKldKhiy1OanqVJIbvqQeplecOxqVhLAoeNDOMY1TDL41QGt Du45NWPnyMtl3nHTWpMn4AgU3QYgZgj0fsiDAFSXk46/m2gP4R4YZr8qMC6ZWq1Q 20pj97H0kYdVvF1vS7ynMo+y9dxJ5Grqd/+8Uq9/vBjKgQDcGUdtrWT3/wdbjfVW Ut1L6tl5/+RjZz6S1/rjIB+E7g== -----END CERTIFICATE-----Generated at Sat Apr 18 00:01:44 2026 by rpki-client