$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: eEP4/rx65hmaaHyNwKKK9iFHhuv/AVi8pa7X+N4VXXQ= Subject key identifier: 36:BC:D8:1B:D6:97:9E:67:F4:EF:8E:02:2B:5A:98:96:6F:D6:1B:7C Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: 014E Signing time: Sun 19 Apr 2026 05:05:08 +0000 Manifest this update: Sun 19 Apr 2026 05:05:08 +0000 Manifest next update: Sun 26 Apr 2026 05:05:08 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: S3nv58talLh1WOsd40WyUYbWnl8U/WcLPAf43Vyb9/M=) 2: F0CEC2E2663811F089040A3DC4F9AE02.roa (hash: zSJXhjcxuRoRMZAMSvVxgLmiPMxSJBBZzT41UMv2hwY=) 3: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: 9HNmZVsE8qMY9qG/jp14H0D4amK1SUgdtWzVlZ7OP6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Apr 19 05:05:08 2026 GMT Not After : Apr 26 05:05:08 2026 GMT Subject: CN=69e46284-619c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9d:2a:a8:31:a4:8d:8c:5a:bc:b5:93:05:69: 1c:65:d7:0b:69:ca:ae:f9:82:25:54:49:fd:2d:f4: 86:45:11:58:39:35:c9:45:f8:1a:47:16:ff:76:10: f9:d1:c2:dd:30:49:a1:34:48:82:22:5d:ce:09:3d: 08:4f:43:4e:bc:1d:e9:df:23:9e:a7:3a:10:a7:ab: ab:7a:58:ef:73:6c:3e:64:2c:a4:51:84:b9:2a:84: 0e:5c:a7:ab:5e:12:bc:96:3e:b2:9d:8f:95:23:12: a0:32:b9:3f:c3:2c:8c:ae:06:18:29:7a:6f:0a:c4: 0d:1f:48:dd:c6:8f:45:52:1d:3c:7d:1b:46:2a:4d: 87:1c:af:5f:9a:d4:ba:f1:99:b1:10:4b:be:56:18: 7a:8d:02:bc:0e:f2:36:da:f5:3c:c9:55:6f:f0:54: 0f:89:80:e3:fa:57:43:09:98:e8:b5:94:8d:fb:86: c3:7d:57:47:57:ca:a1:45:6c:21:7f:8f:00:43:0a: 99:46:e8:43:3a:8f:41:6e:39:84:4a:d3:6b:af:e8: 37:c6:c6:1d:94:6e:92:39:02:ee:56:17:60:57:df: ac:be:33:0a:2e:d4:e4:66:99:dd:cb:04:2f:1b:bb: d8:32:83:e9:97:cb:9f:71:ac:fd:a7:1c:54:b3:cd: a5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:BC:D8:1B:D6:97:9E:67:F4:EF:8E:02:2B:5A:98:96:6F:D6:1B:7C X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:98:b4:d9:df:c0:64:2e:a8:03:8c:82:4d:eb:bf:d1:28:b7: bf:79:51:88:6b:f8:dd:ad:79:84:2b:d8:a2:f8:27:fc:e6:b8: 4c:01:1f:22:29:33:be:1e:78:c6:28:c7:c2:07:8c:52:72:a1: cb:c7:ca:2d:2a:4a:01:e8:16:39:60:47:a3:64:33:e8:63:12: 03:aa:b2:0e:88:d1:a2:17:51:33:16:7a:0d:9c:4a:ca:c7:b9: 8c:2c:9a:48:b2:6a:ed:11:64:40:ac:50:da:2e:73:f4:66:35: 93:92:0d:6a:0c:59:6a:80:29:a6:f6:84:15:48:e5:cd:55:99: e1:e7:6c:5c:dc:2e:2f:bd:6f:be:5f:a4:c7:e0:e4:d9:46:32: a2:23:45:e9:d7:5a:aa:5f:c8:62:41:15:fe:a7:1d:25:3b:13: c7:2e:59:3a:f4:8d:e5:fc:bc:44:a5:0c:63:2e:49:0b:fe:b5: 7a:cd:1a:1c:bf:4d:4c:64:3e:9d:4f:b2:c2:0b:27:65:39:63: cf:31:90:c6:9d:aa:84:5a:4f:4c:ca:f5:77:7a:02:ab:89:d0: 8c:25:de:20:12:98:d7:b5:c1:c7:04:dd:8d:09:50:8f:a6:58: c9:d0:ea:36:7d:ec:2e:10:cd:d3:bb:ee:fa:c8:ee:da:c8:ba: 48:ea:7e:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjYwNDE5MDUwNTA4WhcNMjYwNDI2MDUwNTA4WjAYMRYwFAYD VQQDEw02OWU0NjI4NC02MTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZ0qqDGkjYxavLWTBWkcZdcLacqu+YIlVEn9LfSGRRFYOTXJRfgaRxb/dhD5 0cLdMEmhNEiCIl3OCT0IT0NOvB3p3yOepzoQp6ureljvc2w+ZCykUYS5KoQOXKer XhK8lj6ynY+VIxKgMrk/wyyMrgYYKXpvCsQNH0jdxo9FUh08fRtGKk2HHK9fmtS6 8ZmxEEu+Vhh6jQK8DvI22vU8yVVv8FQPiYDj+ldDCZjotZSN+4bDfVdHV8qhRWwh f48AQwqZRuhDOo9BbjmEStNrr+g3xsYdlG6SOQLuVhdgV9+svjMKLtTkZpndywQv G7vYMoPpl8ufcaz9pxxUs82lgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDa82BvW l55n9O+OAitamJZv1ht8MB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYpi02d/AZC6oA4yCTeu/0Si3v3lRiGv43a15hCvYovgn/Oa4TAEfIikzvh54 xijHwgeMUnKhy8fKLSpKAegWOWBHo2Qz6GMSA6qyDojRohdRMxZ6DZxKyse5jCya SLJq7RFkQKxQ2i5z9GY1k5INagxZaoAppvaEFUjlzVWZ4edsXNwuL71vvl+kx+Dk 2UYyoiNF6ddaql/IYkEV/qcdJTsTxy5ZOvSN5fy8RKUMYy5JC/61es0aHL9NTGQ+ nU+ywgsnZTljzzGQxp2qhFpPTMr1d3oCq4nQjCXeIBKY17XBxwTdjQlQj6ZYydDq Nn3sLhDN07vu+sju2si6SOp+0g== -----END CERTIFICATE-----Generated at Sun Apr 19 08:59:48 2026 by rpki-client