$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: IJrVWDLhWO4k3airdQqMsx4HtaQvCxM/jptqNOEJJi4= Subject key identifier: 74:96:6C:9F:8D:2F:54:9D:4D:4A:3C:7E:81:E1:6B:22:F3:C5:20:32 Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0F2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0F1F Signing time: Thu 16 Apr 2026 17:30:29 +0000 Manifest this update: Thu 16 Apr 2026 17:30:29 +0000 Manifest next update: Thu 23 Apr 2026 17:30:29 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: tYXkhojQBoNVfzCI0tFUmb2mQxGjpGs2ekne4Gsq/3g=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: epuRJDNpLBRjInLcr8wNqAbigHvQWwNVcLarPZoddFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3882 (0xf2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Apr 16 17:30:29 2026 GMT Not After : Apr 23 17:30:29 2026 GMT Subject: CN=69e11cb5-b910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9d:74:14:e7:14:e3:9c:fa:11:26:e6:fc:56: d6:bc:82:df:3f:9e:22:c4:8f:16:df:89:31:48:7c: c4:9c:bb:c1:97:0e:e7:c2:15:d6:4d:3d:ae:e5:80: 39:91:f5:9d:09:06:55:4b:0e:9c:fd:18:ca:93:aa: 93:fd:8c:cd:25:32:2a:1c:cd:35:23:19:27:27:7a: dc:48:e2:84:63:e5:6c:9d:2f:57:b7:1b:a0:e7:db: 72:ed:30:0b:eb:c3:fb:58:17:6c:ba:72:64:09:82: f5:87:24:b5:0f:8e:cc:14:e7:16:1e:50:3b:d2:32: 89:7c:fb:c9:30:f5:11:5d:07:b7:42:9d:79:be:13: 65:c3:97:3a:8e:40:3e:35:04:62:a3:71:9e:79:6e: d1:2c:85:0c:e7:33:c9:6b:53:58:fa:ba:f8:4b:9c: 88:d3:c5:49:15:5c:0d:05:54:85:b3:47:9a:68:15: b1:a0:11:d5:10:22:a5:fa:76:6d:e9:58:88:78:b8: e3:e0:4a:8d:b8:c3:0d:29:92:be:92:e2:3f:fb:d7: 9a:60:cd:d8:9c:b4:43:9a:70:0b:44:75:58:76:14: 80:f6:06:84:95:0e:c9:c3:26:f7:a1:8f:14:50:08: f6:da:18:8e:77:3d:d3:f6:42:fc:09:b5:1c:88:aa: be:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:96:6C:9F:8D:2F:54:9D:4D:4A:3C:7E:81:E1:6B:22:F3:C5:20:32 X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:c7:58:ec:fc:9d:20:13:fb:86:b9:b4:75:c2:b2:83:b7:76: 5e:bd:98:34:b8:7e:d5:a2:e9:eb:6f:ca:22:1c:51:4b:85:3e: 23:95:9e:df:b1:4b:1a:92:6b:de:c2:8f:e0:40:05:f7:41:59: d6:51:bb:3b:4e:32:96:d3:d3:46:db:69:42:3a:3f:ae:be:ba: 92:8b:18:fe:df:82:ee:32:c8:e0:1c:9e:ff:19:f6:f8:b3:e7: 9f:70:b2:bd:eb:9a:97:50:3b:38:57:83:e4:1b:65:20:eb:e5: b3:91:41:9e:58:00:f9:c6:8a:7d:bc:49:ee:10:54:2b:ec:eb: 77:e2:09:57:56:23:97:35:05:c9:0e:d4:fd:43:9e:9a:d0:31: 30:fb:df:7c:79:a2:95:9e:f0:51:54:56:4f:3d:12:22:a9:68: a9:51:3e:2c:57:0d:39:bf:c4:42:2b:c2:56:ff:4c:6a:d4:20: 6d:06:ad:8b:51:d8:a9:18:11:00:54:ba:a9:89:27:48:f8:17: cf:fa:3a:72:ac:b0:bb:ea:e3:1c:0a:1b:f4:74:e1:99:0f:b3: f1:7e:ae:67:21:7f:28:10:3c:0b:ac:3c:bd:b8:75:73:43:58: 6d:52:9f:7f:d6:d9:c0:3c:bc:c7:ec:81:46:df:5a:3a:6b:19: e7:ab:16:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjYwNDE2MTczMDI5WhcNMjYwNDIzMTczMDI5WjAYMRYwFAYD VQQDEw02OWUxMWNiNS1iOTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsp10FOcU45z6ESbm/FbWvILfP54ixI8W34kxSHzEnLvBlw7nwhXWTT2u5YA5 kfWdCQZVSw6c/RjKk6qT/YzNJTIqHM01IxknJ3rcSOKEY+VsnS9Xtxug59ty7TAL 68P7WBdsunJkCYL1hyS1D47MFOcWHlA70jKJfPvJMPURXQe3Qp15vhNlw5c6jkA+ NQRio3GeeW7RLIUM5zPJa1NY+rr4S5yI08VJFVwNBVSFs0eaaBWxoBHVECKl+nZt 6ViIeLjj4EqNuMMNKZK+kuI/+9eaYM3YnLRDmnALRHVYdhSA9gaElQ7Jwyb3oY8U UAj22hiOdz3T9kL8CbUciKq+3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHSWbJ+N L1SdTUo8foHhayLzxSAyMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGcdY7PydIBP7hrm0dcKyg7d2Xr2YNLh+1aLp62/KIhxRS4U+I5We37FLGpJr 3sKP4EAF90FZ1lG7O04yltPTRttpQjo/rr66kosY/t+C7jLI4Bye/xn2+LPnn3Cy veual1A7OFeD5BtlIOvls5FBnlgA+caKfbxJ7hBUK+zrd+IJV1YjlzUFyQ7U/UOe mtAxMPvffHmilZ7wUVRWTz0SIqloqVE+LFcNOb/EQivCVv9MatQgbQati1HYqRgR AFS6qYknSPgXz/o6cqywu+rjHAob9HThmQ+z8X6uZyF/KBA8C6w8vbh1c0NYbVKf f9bZwDy8x+yBRt9aOmsZ56sWmA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:57:58 2026 by rpki-client