$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: 9GSXCuUQ0zpuRJb4KbbRjOtvZiFZkODbmZvvBttFgKE= Subject key identifier: 75:48:18:F8:FA:C5:41:40:31:44:4C:BF:7D:96:A7:1D:33:93:53:50 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 35CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3587 Signing time: Sat 18 Apr 2026 14:27:05 +0000 Manifest this update: Sat 18 Apr 2026 14:27:04 +0000 Manifest next update: Sat 25 Apr 2026 14:27:04 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: PbIJeVmLB0WGJnLYigm6jEYsFcnZwp7bmK6bU7voBdo=) 2: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: Ix+QmO0rSCT4pyJs1dGC/MTdKFeZNsFKd69IpQPvvRw=) 3: B16ED608D4A311F09760561DC4F9AE02.roa (hash: KTE/5UmLg1Jx7p3qXHkj9a3Zu722Q28ccyfvFDypscA=) 4: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: 8+OhuWCy2Q/+5EOFBaBhHTBOjwb6o2MiQFSjk3LYjzg=) 5: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: ZbvAqdZRdRlZ0nK19Soo+W7fZP+M1TyK82wvNdqV5u4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:27:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13772 (0x35cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Apr 18 14:27:04 2026 GMT Not After : Apr 25 14:27:04 2026 GMT Subject: CN=69e394b8-975d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9a:f9:f7:0a:09:85:c5:d9:c0:d0:50:c5:23: ec:38:cb:1c:ad:f3:79:a9:44:da:99:07:e8:3d:ea: c9:84:ef:28:04:99:93:bd:46:a8:6a:3e:f0:91:e1: ad:66:60:8f:89:65:ba:9b:fe:1c:52:3b:6b:a9:01: 51:3b:f9:53:bf:29:29:61:18:2f:62:fe:23:41:59: 98:a0:ed:64:e0:36:f6:5d:69:6d:64:f0:80:84:01: 88:3b:89:9c:f6:eb:1d:54:8f:b5:44:ee:a9:5a:6e: 3b:95:f6:d4:9c:57:66:1d:1f:ec:df:aa:57:e2:62: ca:b5:29:be:f4:9e:9f:26:20:46:7c:a2:9f:e2:ba: 22:8a:da:45:60:b6:5c:e3:3a:94:5f:63:01:cb:e0: ef:e5:56:b6:40:0a:c4:5a:4a:60:2c:af:3a:69:53: 86:f8:1d:ba:f6:fa:73:75:96:9e:b2:32:33:ed:2c: 18:fb:c5:19:d2:37:57:19:8c:84:18:5d:16:9d:be: fb:ce:e4:d2:fb:e2:eb:22:d3:5c:ba:d9:23:8e:45: cf:6f:0b:b9:13:89:17:45:d1:03:f3:5a:18:fd:fe: cb:5d:f4:19:53:72:61:a8:61:78:ec:d7:0b:8f:ef: 55:15:8d:d0:51:82:57:f9:51:af:4a:31:81:d9:5c: 87:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:48:18:F8:FA:C5:41:40:31:44:4C:BF:7D:96:A7:1D:33:93:53:50 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:0b:95:e4:c1:dc:74:72:70:0c:04:6a:ae:1d:fa:dc:8d:19: 20:62:fd:c9:d2:11:be:0d:7f:8d:7f:0d:c5:6c:45:b2:c7:f9: a0:ac:f6:5b:05:8e:f2:df:9d:26:ee:43:0b:14:0b:de:e3:bc: df:06:4e:c1:a7:c5:1e:87:1e:c0:1b:79:40:ca:1e:eb:90:cd: f8:eb:ac:da:65:18:f4:c6:7c:49:74:24:55:9b:71:dd:6f:60: 14:f0:85:cd:99:28:eb:64:02:25:4f:67:d3:ec:ae:16:d6:be: e4:2c:9c:de:00:0f:ba:74:68:7a:01:19:a5:40:e5:ea:9e:bb: 9d:25:d2:0c:df:aa:b3:9c:be:10:f2:08:a9:d0:de:0c:73:e8: 7d:57:9e:e7:52:a5:ab:91:19:29:94:b2:05:54:c0:ce:c1:70: a2:52:7e:07:1f:41:38:7a:50:fb:b8:3a:00:7d:6f:9c:b8:be: 04:26:29:60:47:d1:0a:6b:43:83:02:2a:bd:3c:7c:92:8a:ca: 72:6f:cd:3e:d0:ab:6d:b9:b9:6b:69:60:c8:1e:8d:4d:5b:c2: f0:f0:ec:d9:03:27:2a:b8:43:c9:eb:3b:0f:df:bd:0e:06:fa: f6:1a:60:6c:76:d4:4a:bb:b3:fd:4b:81:4e:05:d2:a4:60:60: a9:35:30:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjYwNDE4MTQyNzA0WhcNMjYwNDI1MTQyNzA0WjAYMRYwFAYD VQQDEw02OWUzOTRiOC05NzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJr59woJhcXZwNBQxSPsOMscrfN5qUTamQfoPerJhO8oBJmTvUaoaj7wkeGt ZmCPiWW6m/4cUjtrqQFRO/lTvykpYRgvYv4jQVmYoO1k4Db2XWltZPCAhAGIO4mc 9usdVI+1RO6pWm47lfbUnFdmHR/s36pX4mLKtSm+9J6fJiBGfKKf4roiitpFYLZc 4zqUX2MBy+Dv5Va2QArEWkpgLK86aVOG+B269vpzdZaesjIz7SwY+8UZ0jdXGYyE GF0Wnb77zuTS++LrItNcutkjjkXPbwu5E4kXRdED81oY/f7LXfQZU3JhqGF47NcL j+9VFY3QUYJX+VGvSjGB2VyHHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHVIGPj6 xUFAMURMv32Wpx0zk1NQMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASguV5MHcdHJwDARqrh363I0ZIGL9ydIRvg1/jX8NxWxFssf5oKz2WwWO8t+d Ju5DCxQL3uO83wZOwafFHocewBt5QMoe65DN+Ous2mUY9MZ8SXQkVZtx3W9gFPCF zZko62QCJU9n0+yuFta+5Cyc3gAPunRoegEZpUDl6p67nSXSDN+qs5y+EPIIqdDe DHPofVee51Klq5EZKZSyBVTAzsFwolJ+Bx9BOHpQ+7g6AH1vnLi+BCYpYEfRCmtD gwIqvTx8korKcm/NPtCrbbm5a2lgyB6NTVvC8PDs2QMnKrhDyes7D9+9Dgb69hpg bHbUSruz/UuBTgXSpGBgqTUw0A== -----END CERTIFICATE-----Generated at Sun Apr 19 14:04:50 2026 by rpki-client