$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft File: plb2DT8RZBpXG9H_rSRg3UV2My0.mft (raw, json) Hash identifier: PQ1RhRXz7yn+WjZTqsckKVOqSM6G++0NUax6B3L8by4= Subject key identifier: B3:B5:3C:00:9E:DB:37:4B:9E:2E:53:7E:A0:9D:F0:08:C3:C5:E5:30 Authority key identifier: A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D Certificate issuer: /CN=A919986F/serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Certificate serial: 28DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft Manifest number: 28C8 Signing time: Thu 16 Apr 2026 15:33:48 +0000 Manifest this update: Thu 16 Apr 2026 15:33:47 +0000 Manifest next update: Thu 23 Apr 2026 15:33:47 +0000 Files and hashes: 1: plb2DT8RZBpXG9H_rSRg3UV2My0.crl (hash: cKeXOZJV8zmbjGvkaxS6xvnffmqmPQUpkkcNwVkOmeE=) 2: 27F621183B5D11EB97506B7AC4F9AE02.roa (hash: LoCmdUsK6L+TshugdKCnyVfyQSooI4RUEUwWon0yLJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10460 (0x28dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Validity Not Before: Apr 16 15:33:47 2026 GMT Not After : Apr 23 15:33:47 2026 GMT Subject: CN=69e1015c-8802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:87:2c:9d:c0:bd:1f:24:2b:5b:51:67:ba: 7b:4f:5f:9e:fe:ed:09:b0:94:85:e0:fe:ec:20:dc: 94:b6:e0:63:28:c4:c0:59:10:26:dc:96:b8:0c:7c: 60:1f:48:80:4d:8a:17:f3:30:e0:f3:c9:0e:8e:08: e1:94:3d:b7:1b:b0:7f:6d:d9:74:91:9f:9c:27:5e: 1e:51:54:51:f6:fd:08:af:14:21:6f:d5:96:90:dc: 07:31:09:c6:31:21:21:8f:11:98:29:75:ee:e3:43: be:9d:4e:d1:5d:ef:70:e1:c4:50:42:f1:1d:4f:b8: 21:54:0a:b8:ce:37:2c:c3:72:e6:c6:8c:f5:1a:65: fe:0f:f6:9c:eb:ee:88:33:8c:1f:f4:e9:c0:2f:43: ff:56:b2:85:0f:e1:e1:ba:4b:11:de:1e:6f:d8:56: 20:88:d9:df:25:46:8e:56:89:79:ee:81:ac:fb:a0: 7d:8a:e3:cf:98:c7:c1:d5:42:f3:39:d3:bd:db:00: 13:c3:62:35:b1:f5:7a:2d:9d:13:37:70:55:bf:90: d7:d6:b5:ad:cf:72:77:e4:41:87:2b:09:e5:9d:5c: d0:11:d6:81:6c:a7:31:37:cf:74:d2:0a:af:e4:3c: ac:02:23:72:02:dd:1a:58:e5:68:99:4f:f4:d0:ee: 7d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B5:3C:00:9E:DB:37:4B:9E:2E:53:7E:A0:9D:F0:08:C3:C5:E5:30 X509v3 Authority Key Identifier: keyid:A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:a1:97:b7:06:bb:7f:6a:dd:49:52:c6:aa:42:9f:ed:ad:e6: c8:d5:df:14:02:99:39:51:99:53:07:e3:62:8d:ed:97:0f:eb: 90:f7:34:db:7b:b2:26:3e:81:77:d4:b0:48:22:9b:d3:05:d2: df:9a:06:c1:b8:03:fb:e5:89:a6:63:c5:66:9e:e6:38:d1:a0: 25:a6:2a:fc:26:ea:66:49:56:1f:c0:58:f1:ce:06:ba:0c:a2: b9:03:86:23:f0:6b:8a:62:c5:9e:99:c4:4e:f2:db:6c:24:95: 93:9c:36:2d:98:a1:df:7b:4c:ea:86:91:0c:9d:c1:0d:3f:4e: 11:f0:1f:db:03:8f:01:5a:01:e7:5d:b4:3b:34:c6:2e:16:bf: ac:5b:96:0b:78:7a:d7:26:78:28:b5:c6:80:aa:c7:96:22:0b: e5:7f:18:81:71:1a:4a:54:b9:24:4c:2d:be:77:29:07:19:a8: 5b:af:03:fc:d4:37:70:0d:27:bc:02:fc:4d:ad:69:13:51:4c: be:5d:29:4b:a8:8d:5e:90:89:96:e6:79:4b:32:b8:af:76:79: 93:c5:02:3a:ef:d7:a4:c0:d4:fb:78:15:70:69:02:52:29:82: 1d:cf:b5:aa:8a:65:62:57:5e:2c:ea:b9:b5:ca:35:6d:ab:e8: ed:cc:7d:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKEE2NTZGNjBEM0YxMTY0MUE1NzFCRDFGRkFEMjQ2MERE NDU3NjMzMkQwHhcNMjYwNDE2MTUzMzQ3WhcNMjYwNDIzMTUzMzQ3WjAYMRYwFAYD VQQDEw02OWUxMDE1Yy04ODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArN+HLJ3AvR8kK1tRZ7p7T1+e/u0JsJSF4P7sINyUtuBjKMTAWRAm3Ja4DHxg H0iATYoX8zDg88kOjgjhlD23G7B/bdl0kZ+cJ14eUVRR9v0IrxQhb9WWkNwHMQnG MSEhjxGYKXXu40O+nU7RXe9w4cRQQvEdT7ghVAq4zjcsw3Lmxoz1GmX+D/ac6+6I M4wf9OnAL0P/VrKFD+HhuksR3h5v2FYgiNnfJUaOVol57oGs+6B9iuPPmMfB1ULz OdO92wATw2I1sfV6LZ0TN3BVv5DX1rWtz3J35EGHKwnlnVzQEdaBbKcxN8900gqv 5DysAiNyAt0aWOVomU/00O59CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLO1PACe 2zdLni5TfqCd8AjDxeUwMB8GA1UdIwQYMBaAFKZW9g0/EWQaVxvR/60kYN1FdjMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9FQzg3MEI4NjhG MkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpCcFhHOUhfclNSZzNVVjJN eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BsYjJEVDhSWkJwWEc5SF9yU1JnM1VWMk15MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9FQzg3MEI4NjhGMkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpC cFhHOUhfclNSZzNVVjJNeTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV6GXtwa7f2rdSVLGqkKf7a3myNXfFAKZOVGZUwfjYo3tlw/rkPc023uyJj6B d9SwSCKb0wXS35oGwbgD++WJpmPFZp7mONGgJaYq/CbqZklWH8BY8c4GugyiuQOG I/BrimLFnpnETvLbbCSVk5w2LZih33tM6oaRDJ3BDT9OEfAf2wOPAVoB5120OzTG Lha/rFuWC3h61yZ4KLXGgKrHliIL5X8YgXEaSlS5JEwtvncpBxmoW68D/NQ3cA0n vAL8Ta1pE1FMvl0pS6iNXpCJluZ5SzK4r3Z5k8UCOu/XpMDU+3gVcGkCUimCHc+1 qoplYldeLOq5tco1bavo7cx9kg== -----END CERTIFICATE-----Generated at Fri Apr 17 08:10:53 2026 by rpki-client