$ rpki-client -vvf rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft File: pdThiKsl2GlB4GvF8NK-mNClCi0.mft (raw, json) Hash identifier: d9T8EVWht8uWz5xxtBJkIsD02Z8vGchkqSQ26k+PTdY= Subject key identifier: FC:45:46:CB:EC:F5:FB:50:6B:5E:96:73:ED:69:2A:8A:BA:44:60:CC Authority key identifier: A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D Certificate issuer: /CN=A918E3C0/serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft Manifest number: 2D Signing time: Fri 17 Apr 2026 08:29:30 +0000 Manifest this update: Fri 17 Apr 2026 08:29:30 +0000 Manifest next update: Fri 24 Apr 2026 08:29:30 +0000 Files and hashes: 1: pdThiKsl2GlB4GvF8NK-mNClCi0.crl (hash: hapWhxG5G+JM680/lAceq1kLm2RgTz7hVjKk6khQZTE=) 2: 3EE95EC801B211F19B62C4E66C6F56BC.roa (hash: B0jnDdaxg9Qc3b+l9St8mXLfihlNO3bYzJFFHiKIOSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E3C0, serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Validity Not Before: Apr 17 08:29:30 2026 GMT Not After : Apr 24 08:29:30 2026 GMT Subject: CN=69e1ef6a-6baa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fe:42:a4:ab:4c:51:7b:fe:1c:fc:8d:4d:e9: 28:64:7d:c3:f5:8b:6e:a2:b3:7d:4b:b2:0c:f1:92: cd:b9:b1:a6:31:bd:df:bb:42:b1:75:30:88:f9:e0: b6:5f:88:bb:7a:2d:b6:ad:14:88:94:5f:e0:f0:49: 46:fe:b9:89:46:83:1e:31:42:a7:06:ed:38:13:7d: b7:a9:bd:66:c8:dd:23:87:0b:0e:75:ad:54:d5:f9: db:86:31:36:ac:4b:b4:34:10:fe:03:3b:ff:5c:81: f7:0d:bd:d9:89:65:d7:06:81:aa:a1:97:b9:cf:f6: 8b:cb:78:7b:39:00:e1:5e:19:a1:c0:e5:46:1d:c7: 83:7a:53:04:1b:57:8e:ad:5a:fa:f3:be:87:31:c8: 2f:90:f6:f2:32:47:23:52:7d:d5:45:32:c5:fc:7c: 6d:38:44:13:69:55:c1:f1:f6:f8:22:1c:7d:10:ad: ec:c2:0b:29:82:ca:30:2d:31:0b:17:4f:c8:0d:29: 2e:fd:cf:4d:97:39:c3:d7:1f:a5:65:be:0a:27:7f: ab:26:29:f1:38:35:9e:bc:28:71:83:67:49:d5:f8: b7:b2:38:8d:0d:00:53:af:1f:84:0d:e8:e1:34:29: 70:c5:b0:40:ef:f5:73:89:18:40:f6:cc:66:ae:41: d8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:45:46:CB:EC:F5:FB:50:6B:5E:96:73:ED:69:2A:8A:BA:44:60:CC X509v3 Authority Key Identifier: keyid:A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:de:01:74:09:7f:0a:9d:8c:29:19:9d:42:c2:5b:6b:64:41: 87:4d:f1:8f:7e:77:79:a9:8d:95:7d:85:19:87:40:2e:a2:b3: d7:10:94:a6:01:a8:f7:8e:49:c2:2c:3b:b5:b7:8f:b2:05:70: 18:74:1b:b8:e7:c2:d5:a4:24:4e:5c:5e:84:ff:30:c2:78:ad: 77:57:f4:fc:88:61:d9:25:62:38:9a:1e:f0:28:c2:82:96:47: 71:b9:a9:40:0e:c1:b5:2a:8a:4d:ef:1f:2e:0e:a5:44:8e:4e: b8:f9:90:c3:cb:66:ea:f6:41:71:8f:21:87:55:bb:2f:b5:97: 49:74:4a:1c:7f:72:f9:f9:a8:b9:90:8d:c0:cc:70:53:49:00: 97:c8:b5:a9:00:e1:e7:87:cc:1c:dd:7f:22:cb:ef:8a:5a:9a: f5:08:f4:42:08:f6:cd:ef:9e:7f:c6:ff:ec:df:b5:98:6e:c8: 38:1f:fa:45:f2:8c:c6:be:f3:d5:36:5d:d7:b9:fa:2a:37:70: 26:fd:c8:13:a8:5b:08:7a:a8:e8:15:ce:a0:d8:76:cd:e5:ef: a6:6e:e7:1f:13:05:03:d3:ed:54:34:19:a6:38:83:c2:26:f9: 39:f6:7e:bd:23:ef:a3:08:ad:4e:40:d1:1e:94:82:da:39:40: ca:16:64:ae -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTNDMDExMC8GA1UEBRMoQTVENEUxODhBQjI1RDg2OTQxRTA2QkM1RjBEMkJFOThE MEE1MEEyRDAeFw0yNjA0MTcwODI5MzBaFw0yNjA0MjQwODI5MzBaMBgxFjAUBgNV BAMTDTY5ZTFlZjZhLTZiYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCl/kKkq0xRe/4c/I1N6ShkfcP1i26is31Lsgzxks25saYxvd+7QrF1MIj54LZf iLt6LbatFIiUX+DwSUb+uYlGgx4xQqcG7TgTfbepvWbI3SOHCw51rVTV+duGMTas S7Q0EP4DO/9cgfcNvdmJZdcGgaqhl7nP9ovLeHs5AOFeGaHA5UYdx4N6UwQbV46t WvrzvocxyC+Q9vIyRyNSfdVFMsX8fG04RBNpVcHx9vgiHH0QrezCCymCyjAtMQsX T8gNKS79z02XOcPXH6Vlvgonf6smKfE4NZ68KHGDZ0nV+LeyOI0NAFOvH4QN6OE0 KXDFsEDv9XOJGED2zGauQdgvAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU/EVGy+z1 +1BrXpZz7WkqirpEYMwwHwYDVR0jBBgwFoAUpdThiKsl2GlB4GvF8NK+mNClCi0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFM0MwLzlBOEFEODUyMDFC MTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkdsQjRHdkY4TkstbU5DbENp MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGRUaGlLc2wyR2xCNEd2RjhOSy1tTkNsQ2kwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF M0MwLzlBOEFEODUyMDFCMTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkds QjRHdkY4TkstbU5DbENpMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBG3gF0CX8KnYwpGZ1CwltrZEGHTfGPfnd5qY2VfYUZh0AuorPXEJSmAaj3jknC LDu1t4+yBXAYdBu458LVpCROXF6E/zDCeK13V/T8iGHZJWI4mh7wKMKClkdxualA DsG1KopN7x8uDqVEjk64+ZDDy2bq9kFxjyGHVbsvtZdJdEocf3L5+ai5kI3AzHBT SQCXyLWpAOHnh8wc3X8iy++KWpr1CPRCCPbN755/xv/s37WYbsg4H/pF8ozGvvPV Nl3XufoqN3Am/cgTqFsIeqjoFc6g2HbN5e+mbucfEwUD0+1UNBmmOIPCJvk59n69 I++jCK1OQNEelILaOUDKFmSu -----END CERTIFICATE-----Generated at Fri Apr 17 19:28:25 2026 by rpki-client