$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: /3LuVeKq21w0jIUXmTgfhABmSZOc6Orbq8tfPcUNBAo= Subject key identifier: 9F:99:B8:A4:05:9C:5D:BD:61:9F:DF:A7:44:FB:04:E9:9F:22:B7:B2 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 023B Signing time: Fri 17 Apr 2026 02:20:28 +0000 Manifest this update: Fri 17 Apr 2026 02:20:27 +0000 Manifest next update: Fri 24 Apr 2026 02:20:27 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: 8mK4O4IfZ2YmqWkQdSiRfTpkw0mcylyx/pmWE9Vkvp4=) 2: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: sE0FXcv6AB6dmDFKiWcu8KQiOOpk2VVY0iuOGiUmgoI=) 3: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: GKQTSqIzwIY4GOth+FkYLT5SOAlB26R/4wVLOg8mq+Q=) 4: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: LUHYZ/6kqurL/jOA9WsqOIbXqqpGM7KM4Mk7l+DENE0=) 5: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RremoPLYHwOMsWIoI3OXSWs8zLNwfSA8SoWwpFXqkZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Apr 17 02:20:27 2026 GMT Not After : Apr 24 02:20:27 2026 GMT Subject: CN=69e198eb-fb22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:1d:0d:f6:04:bb:ce:64:18:29:fd:44:8f:0e: 35:0b:0a:2a:a9:98:f3:4b:3b:42:16:c3:02:f0:0f: b1:f0:e6:9f:a7:93:46:31:4b:56:50:85:cb:fd:62: 03:01:75:e7:9f:81:44:79:9b:46:ba:1e:23:58:ba: bf:e4:e4:f2:8c:f0:0f:fb:78:e7:1e:c6:3b:c7:4d: ea:e8:73:a0:63:50:8c:af:eb:09:b9:a5:28:31:a8: 9b:dd:51:b2:aa:e5:3e:16:a3:4f:35:8f:bf:9d:30: dd:86:94:42:f8:73:43:c7:1b:14:dc:f2:bc:ec:72: c9:bb:c8:05:f1:27:62:4a:76:f0:22:b6:73:29:81: 26:a6:5e:88:b6:12:20:87:12:24:80:8a:2d:fe:e2: d4:d6:63:c8:60:11:86:e7:cf:40:09:e3:ec:f9:23: 76:aa:78:3e:4e:49:08:a0:b6:67:1a:dc:c8:1b:aa: 80:cd:97:17:8b:00:c3:38:b6:db:51:f8:4e:b6:c0: e6:4d:ad:ab:c8:65:fb:f3:63:00:35:11:49:43:fc: 96:93:55:33:2b:f8:b7:99:2c:a9:16:27:07:83:3f: b3:f8:4c:02:68:24:7e:c0:bb:73:13:88:95:64:96: 79:03:bb:13:6b:cd:3f:43:54:24:6d:07:1b:05:68: aa:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:99:B8:A4:05:9C:5D:BD:61:9F:DF:A7:44:FB:04:E9:9F:22:B7:B2 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:71:fe:6f:64:f2:7f:90:95:55:14:6b:16:fc:f8:67:33:93: e9:bb:97:ef:99:60:45:f3:29:b3:a6:6c:cb:a7:d9:a2:20:80: e8:46:38:b7:48:be:bb:59:d3:e7:0b:28:49:c8:73:8d:cc:11: d9:ec:44:8e:cd:c7:6a:e7:7f:b2:31:9e:c9:96:9e:93:df:bb: 21:f9:4e:1b:ba:ad:f1:b8:e2:19:47:68:53:f2:46:ab:a4:d9: f3:f3:70:0f:01:3d:55:e0:9e:29:f1:49:64:07:77:1f:60:30: 64:26:55:bf:06:91:74:85:59:01:cb:b2:df:20:86:13:7c:d6: a6:a3:32:83:d9:64:8a:64:d4:58:f9:58:f6:8e:9f:6d:d0:31: c6:fb:dc:f5:ff:42:11:4f:bf:b6:c2:e9:27:32:56:2f:a8:c8: da:11:eb:e3:5e:bb:44:ac:3b:3c:31:6e:31:98:f1:78:7b:26: 95:35:3a:5e:40:6f:48:9f:55:22:b5:53:fe:eb:56:3c:3e:88: e5:48:6f:f2:ef:85:73:5d:33:fd:1e:db:2b:9e:07:70:6c:5e: 21:e0:2a:09:dc:cf:4f:6a:25:bf:9b:8e:04:c4:00:9d:9e:4f: 77:e1:0c:1d:49:e0:53:02:89:fc:8c:0d:90:52:1a:79:ab:13: 9f:ec:8c:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjYwNDE3MDIyMDI3WhcNMjYwNDI0MDIyMDI3WjAYMRYwFAYD VQQDEw02OWUxOThlYi1mYjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+B0N9gS7zmQYKf1Ejw41CwoqqZjzSztCFsMC8A+x8Oafp5NGMUtWUIXL/WID AXXnn4FEeZtGuh4jWLq/5OTyjPAP+3jnHsY7x03q6HOgY1CMr+sJuaUoMaib3VGy quU+FqNPNY+/nTDdhpRC+HNDxxsU3PK87HLJu8gF8SdiSnbwIrZzKYEmpl6IthIg hxIkgIot/uLU1mPIYBGG589ACePs+SN2qng+TkkIoLZnGtzIG6qAzZcXiwDDOLbb UfhOtsDmTa2ryGX782MANRFJQ/yWk1UzK/i3mSypFicHgz+z+EwCaCR+wLtzE4iV ZJZ5A7sTa80/Q1QkbQcbBWiqlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ+ZuKQF nF29YZ/fp0T7BOmfIreyMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABnH+b2Tyf5CVVRRrFvz4ZzOT6buX75lgRfMps6Zsy6fZoiCA6EY4t0i+u1nT 5wsoSchzjcwR2exEjs3Haud/sjGeyZaek9+7IflOG7qt8bjiGUdoU/JGq6TZ8/Nw DwE9VeCeKfFJZAd3H2AwZCZVvwaRdIVZAcuy3yCGE3zWpqMyg9lkimTUWPlY9o6f bdAxxvvc9f9CEU+/tsLpJzJWL6jI2hHr4167RKw7PDFuMZjxeHsmlTU6XkBvSJ9V IrVT/utWPD6I5Uhv8u+Fc10z/R7bK54HcGxeIeAqCdzPT2olv5uOBMQAnZ5Pd+EM HUngUwKJ/IwNkFIaeasTn+yMxA== -----END CERTIFICATE-----Generated at Fri Apr 17 06:53:09 2026 by rpki-client