$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: +4o9bXYPVtIciw2qSUQK2EnDoH5f+pXVL3+tUbx2i9A= Subject key identifier: CC:59:F3:8E:2E:7D:A3:88:56:23:29:0F:83:65:E0:7D:BA:F0:E5:2E Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 06F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 06E9 Signing time: Thu 16 Apr 2026 19:15:07 +0000 Manifest this update: Thu 16 Apr 2026 19:15:07 +0000 Manifest next update: Thu 23 Apr 2026 19:15:07 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: VITuERKsIg1qdJlLendATB55uBjOWYEtKutLw/Tekz0=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: UhjZCQXMTH4EcImSo4POBU6QddKCD4qTUt+kDu3goss=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: 2RPaofcBmVRp+rnkKNh5LcywLDf5c7LR9zPp5ibVZFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1784 (0x6f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Apr 16 19:15:07 2026 GMT Not After : Apr 23 19:15:07 2026 GMT Subject: CN=69e1353b-0327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2b:b4:67:8e:62:75:99:43:14:a7:08:4b:ed: 05:e7:55:ed:c2:7e:de:e4:8e:cb:c7:34:48:7d:5a: 1d:b8:a9:6e:67:13:cf:d6:02:f8:c3:e9:f5:e2:1d: d6:ab:9e:ba:0b:c2:a9:8e:bf:94:12:e1:aa:84:11: 31:2d:89:54:83:09:a0:15:80:52:53:c2:4e:94:e9: 79:07:fb:c9:b6:eb:7e:5f:1e:5f:51:85:38:b7:bc: 63:f2:55:1c:d3:f7:b6:40:0c:27:d6:32:ad:d5:de: 21:84:0a:be:d6:76:93:8b:db:1a:9c:38:79:b3:11: d7:dd:de:18:3a:2d:15:0d:d4:3e:36:26:4c:92:ec: d6:66:92:97:d4:75:4d:a3:d3:6f:3c:5b:fa:6a:60: 51:89:ea:7d:d9:b0:1d:90:00:3f:b8:d4:3b:e6:03: ee:77:5a:f4:fc:7e:06:8c:61:7c:bb:38:f3:91:08: 8d:89:ec:6d:f8:a4:80:67:56:d7:bd:ec:df:52:0c: 5c:01:5d:5c:55:d9:27:89:11:94:7c:b9:42:aa:cd: 56:96:d0:a4:68:79:e4:c2:90:03:1d:30:4e:32:eb: 76:51:1b:01:e7:39:b3:61:84:5a:aa:88:00:5c:84: ee:7b:4b:ba:4c:35:39:b1:79:8a:48:45:02:e3:41: ad:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:59:F3:8E:2E:7D:A3:88:56:23:29:0F:83:65:E0:7D:BA:F0:E5:2E X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:71:04:d9:a4:d0:7f:41:d1:f1:96:ec:31:7d:de:62:97:ff: 78:b5:59:4e:3a:92:86:44:1c:a1:1c:fb:50:6f:10:66:44:4c: 81:3c:40:6a:16:5c:39:1f:77:8a:dc:27:d6:b4:b0:2a:31:93: 28:de:7c:c9:00:17:43:03:d4:ad:1a:de:5d:45:7b:b9:99:b9: d9:48:90:4b:27:a9:65:10:c3:e8:b6:0f:57:b0:bb:1b:bc:7d: a6:76:ec:4e:85:5f:86:90:90:db:3c:79:6e:ec:7a:47:0d:fd: c5:1a:1c:9b:36:b2:13:56:62:e3:6e:6a:a6:78:2c:d6:f9:cf: 27:85:3f:64:b9:8e:77:47:02:be:11:7e:8f:c5:4f:31:5a:37: 50:aa:39:b4:af:fd:f9:6e:a0:54:ac:f6:d5:65:23:ef:07:8a: 8a:91:1c:54:a0:c4:15:ae:2d:92:57:f9:52:08:16:03:ea:7a: 94:d1:63:7f:52:25:62:38:c9:c9:1d:52:b3:b1:18:83:f1:0f: f2:7d:b3:0a:df:f4:12:96:ee:2b:65:5d:cc:ec:b3:15:ff:68: 99:d7:bc:bb:5d:ca:8a:ba:bf:8b:25:f0:88:87:2a:f8:2b:ca: 58:d1:bd:bb:53:53:32:34:34:64:27:a9:da:9d:9b:72:4c:ff: b5:5a:62:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjYwNDE2MTkxNTA3WhcNMjYwNDIzMTkxNTA3WjAYMRYwFAYD VQQDEw02OWUxMzUzYi0wMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Su0Z45idZlDFKcIS+0F51Xtwn7e5I7LxzRIfVoduKluZxPP1gL4w+n14h3W q566C8Kpjr+UEuGqhBExLYlUgwmgFYBSU8JOlOl5B/vJtut+Xx5fUYU4t7xj8lUc 0/e2QAwn1jKt1d4hhAq+1naTi9sanDh5sxHX3d4YOi0VDdQ+NiZMkuzWZpKX1HVN o9NvPFv6amBRiep92bAdkAA/uNQ75gPud1r0/H4GjGF8uzjzkQiNiext+KSAZ1bX vezfUgxcAV1cVdkniRGUfLlCqs1WltCkaHnkwpADHTBOMut2URsB5zmzYYRaqogA XITue0u6TDU5sXmKSEUC40GtEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMxZ844u faOIViMpD4Nl4H268OUuMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANnEE2aTQf0HR8ZbsMX3eYpf/eLVZTjqShkQcoRz7UG8QZkRMgTxAahZcOR93 itwn1rSwKjGTKN58yQAXQwPUrRreXUV7uZm52UiQSyepZRDD6LYPV7C7G7x9pnbs ToVfhpCQ2zx5bux6Rw39xRocmzayE1Zi425qpngs1vnPJ4U/ZLmOd0cCvhF+j8VP MVo3UKo5tK/9+W6gVKz21WUj7weKipEcVKDEFa4tklf5UggWA+p6lNFjf1IlYjjJ yR1Ss7EYg/EP8n2zCt/0EpbuK2VdzOyzFf9omde8u13Kirq/iyXwiIcq+CvKWNG9 u1NTMjQ0ZCep2p2bckz/tVpidA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:58:56 2026 by rpki-client