$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: YxSURqsjSy5+2S3+9enB576RMQMvO+LqilaE6XgSZ/s= Subject key identifier: D5:D1:EE:66:DA:81:D6:6C:C8:A0:D6:22:F8:AD:26:E5:78:20:4B:A8 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 03C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 03BF Signing time: Fri 17 Apr 2026 00:34:23 +0000 Manifest this update: Fri 17 Apr 2026 00:34:23 +0000 Manifest next update: Fri 24 Apr 2026 00:34:23 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: sO5k1cjeLNXyg/I4vJIwt3TSOCki/8TSwqPcQXUZdno=) 2: 4BBDE05299B011F0B174EC14C4F9AE02.roa (hash: l281WaGzYU7dCqEFuYzIN6MgvSUnWoKB+RqON01Yd2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 969 (0x3c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Apr 17 00:34:23 2026 GMT Not After : Apr 24 00:34:23 2026 GMT Subject: CN=69e1800f-da01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:62:77:5c:83:b5:69:cb:59:ed:1d:e6:b3: 64:c1:46:cd:9e:7e:ef:f9:c8:f0:6c:c9:71:3e:d0: a0:b8:67:05:7a:05:0d:0f:71:3c:e3:7e:ad:b2:5d: a7:6b:92:23:ad:b9:30:ef:f9:7f:8a:0f:f5:6d:f1: cf:1e:d2:81:45:c3:c3:aa:95:8b:ba:19:a5:91:d6: d1:45:20:a4:0b:41:34:f6:51:48:d5:5b:1d:d0:aa: e0:29:0e:03:aa:84:27:52:ef:e4:18:16:23:91:80: 89:7b:42:d6:eb:5f:4c:0b:58:e4:41:e7:3d:27:d9: eb:3b:ae:09:c1:8f:39:26:69:f9:e6:f0:a5:b2:4b: ad:ea:a6:75:48:22:4e:00:93:2d:5a:ed:92:4c:ec: ec:24:8d:82:d0:79:02:ea:c7:19:29:8a:f4:28:a5: ba:da:cc:aa:31:b6:ba:91:6a:48:78:69:5e:bf:37: 04:ea:4f:cf:47:9a:20:3b:9f:3b:af:c5:24:3a:5c: 9e:fb:66:32:75:3e:44:f2:18:30:a1:0b:eb:d1:73: b9:30:02:06:9c:c1:9a:f5:9d:94:e6:22:23:35:c3: 46:5c:8b:33:20:e8:da:da:64:b4:3a:58:38:d6:cf: a6:89:04:5c:23:ab:97:5d:ee:83:f3:a3:f6:67:b9: 93:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D1:EE:66:DA:81:D6:6C:C8:A0:D6:22:F8:AD:26:E5:78:20:4B:A8 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:69:c1:b5:29:7c:85:c9:d2:4d:a3:44:63:bb:d8:a1:55:f9: d0:9e:4e:a7:7d:bb:ed:39:ae:57:84:41:e1:da:be:d6:61:1b: 4f:19:b0:a5:80:47:33:d8:31:a0:aa:59:06:f2:34:ba:a9:60: 6b:8b:f9:fd:c4:b5:26:97:e6:0e:55:d6:ba:66:0c:fb:d7:9c: 91:6f:54:17:0b:b8:a4:87:c0:0f:3e:53:49:ac:53:40:35:3d: ca:54:3c:66:aa:57:15:28:1d:58:67:24:8f:16:e3:06:c3:2f: eb:60:c5:d4:33:b0:84:80:ed:b7:9b:b5:be:18:ef:bb:16:ad: 5d:66:8b:51:06:a0:42:1a:e7:fc:0d:a1:61:e4:79:17:6b:72: a8:c7:c9:36:b1:9d:fd:2f:f2:a9:91:16:b1:2c:b5:18:3e:0f: e1:58:03:80:8d:85:3f:6a:ae:8d:c5:57:c6:b7:69:36:60:ce: 9c:5f:da:dd:37:d8:8c:13:0f:f4:75:b7:21:a4:c5:e4:d7:f0: bf:c1:8b:b6:fe:06:69:ed:10:00:4b:f3:20:b1:ce:1f:0c:4e: cf:70:09:ff:83:a2:e7:25:af:a2:14:b0:23:e1:de:a0:8c:ef: 22:cf:1a:7e:65:96:e3:57:22:fb:25:b5:24:83:4a:1f:d4:2d: ea:17:7a:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjYwNDE3MDAzNDIzWhcNMjYwNDI0MDAzNDIzWjAYMRYwFAYD VQQDEw02OWUxODAwZi1kYTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhtid1yDtWnLWe0d5rNkwUbNnn7v+cjwbMlxPtCguGcFegUND3E8436tsl2n a5Ijrbkw7/l/ig/1bfHPHtKBRcPDqpWLuhmlkdbRRSCkC0E09lFI1Vsd0KrgKQ4D qoQnUu/kGBYjkYCJe0LW619MC1jkQec9J9nrO64JwY85Jmn55vClskut6qZ1SCJO AJMtWu2STOzsJI2C0HkC6scZKYr0KKW62syqMba6kWpIeGlevzcE6k/PR5ogO587 r8UkOlye+2YydT5E8hgwoQvr0XO5MAIGnMGa9Z2U5iIjNcNGXIszIOja2mS0Olg4 1s+miQRcI6uXXe6D86P2Z7mTWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNXR7mba gdZsyKDWIvitJuV4IEuoMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqGnBtSl8hcnSTaNEY7vYoVX50J5Op3277TmuV4RB4dq+1mEbTxmwpYBHM9gx oKpZBvI0uqlga4v5/cS1JpfmDlXWumYM+9eckW9UFwu4pIfADz5TSaxTQDU9ylQ8 ZqpXFSgdWGckjxbjBsMv62DF1DOwhIDtt5u1vhjvuxatXWaLUQagQhrn/A2hYeR5 F2tyqMfJNrGd/S/yqZEWsSy1GD4P4VgDgI2FP2qujcVXxrdpNmDOnF/a3TfYjBMP 9HW3IaTF5Nfwv8GLtv4Gae0QAEvzILHOHwxOz3AJ/4Oi5yWvohSwI+HeoIzvIs8a fmWW41ci+yW1JINKH9Qt6hd64w== -----END CERTIFICATE-----Generated at Fri Apr 17 12:29:51 2026 by rpki-client