$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: ZLafQ88ydLnDHz50eoqjbaILC2YoNG1usFfwRiXSQbA= Subject key identifier: CC:0C:09:AB:EB:EB:2E:2F:88:37:1A:F0:BC:1F:53:A5:1C:F3:4B:3C Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0944 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 0904 Signing time: Thu 16 Apr 2026 20:16:52 +0000 Manifest this update: Thu 16 Apr 2026 20:16:51 +0000 Manifest next update: Thu 23 Apr 2026 20:16:51 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: LTsYdtxLsyJe78kukOHij6rUEe0tWLN3kSxhzInMkow=) 2: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: GzxogbU8QiwwF++aswC6YdHu3ZoZCEYz5G0xx5UJTJQ=) 3: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: oRxcNHxks0xSpQQ3xzQ2CValnLK9KvTZJVfHvaOGSxM=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: VWFn1ywKze4+Ch1d/UV7Lhp1ynMlJZLSKyiTkidd1hM=) 5: 4EF79184489411ED86987260C4F9AE02.roa (hash: FW+6trj4ky9MIx0ol9teJ9/ApDWDbFtG0371+JMzJmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Apr 16 20:16:51 2026 GMT Not After : Apr 23 20:16:51 2026 GMT Subject: CN=69e143b3-5e20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:23:12:5c:c5:35:ab:94:82:91:ab:c7:d2:d6: 27:42:39:1f:97:b2:bf:bf:ec:43:eb:0b:aa:95:ce: d2:b1:19:87:e9:81:c2:56:97:f8:58:1b:8d:92:9e: fe:81:d1:43:f1:a2:b4:c6:ba:56:ae:b4:20:df:c1: c3:f6:ac:d6:dd:2c:f9:08:2c:6a:35:56:5d:24:d4: bc:83:e2:b7:42:2b:57:21:db:d4:1c:17:99:1c:ac: 05:79:1d:58:f7:56:60:ca:e9:91:c6:d3:2e:4d:0d: d9:f1:c7:c5:49:9d:f5:7e:ce:e3:a9:de:1e:7c:2d: 46:92:33:57:3a:18:5f:03:4d:fd:f7:98:92:6b:45: f7:4d:67:cb:8e:b2:42:c0:84:c8:dc:95:67:44:0c: b2:40:f3:da:da:68:9c:1e:c2:79:3e:eb:2a:ef:a8: 5b:2c:29:48:90:bf:e1:0c:01:25:2e:05:fb:bf:b7: 49:27:01:1e:d7:be:15:73:ad:5d:e5:2f:dc:d4:87: 5d:83:14:8a:34:98:6d:8f:ed:7c:b2:98:16:5b:50: 11:32:e4:08:96:8f:36:76:ba:40:ba:dc:ee:0e:b1: 77:2a:67:ea:17:35:fd:6a:12:e8:8e:7f:9f:86:96: 4c:80:ec:6b:1f:e5:30:f0:90:9a:9a:2b:9b:24:a4: 75:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0C:09:AB:EB:EB:2E:2F:88:37:1A:F0:BC:1F:53:A5:1C:F3:4B:3C X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:73:f2:29:d0:1b:22:c4:90:a5:52:00:00:5e:56:ea:a8:29: ec:f0:73:45:dc:71:de:9f:b8:77:14:1f:7b:0b:2e:b4:eb:f7: 3a:72:86:4f:f9:cc:c7:de:13:0e:9d:18:f9:4e:eb:d7:be:2c: ec:ef:8b:03:71:ac:01:9b:03:d6:ae:d6:9d:e3:0e:89:e1:81: ea:3f:96:95:78:81:c5:8d:8b:8c:d1:c1:94:fa:d6:a4:34:3d: 2e:9b:ff:a7:54:4e:8c:76:de:e6:88:a4:31:32:d2:62:ea:12: f3:94:7a:8f:45:79:e0:96:87:ed:42:c8:e7:97:63:d1:2d:b6: 43:f5:85:07:8d:ff:44:19:64:9a:95:77:c8:8b:90:de:22:5c: 62:b1:fc:aa:a1:89:26:9c:44:f0:1b:d2:8e:96:38:2d:91:b1: 4f:20:d1:87:bd:c7:dc:30:35:99:06:00:e7:4b:5a:3c:8b:d1: 95:9a:e6:6b:d7:60:18:c1:9e:fa:f0:73:3e:5f:b9:4a:1b:40: ee:14:ad:36:53:29:f3:a1:be:9d:f0:fe:72:64:2a:3a:2f:68: 9a:55:e8:34:7d:de:42:bd:99:93:6e:0f:a5:64:48:32:03:81: d9:85:c9:80:77:50:02:86:88:b5:d8:cb:1b:1d:ee:79:01:da: f7:29:25:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjYwNDE2MjAxNjUxWhcNMjYwNDIzMjAxNjUxWjAYMRYwFAYD VQQDEw02OWUxNDNiMy01ZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SMSXMU1q5SCkavH0tYnQjkfl7K/v+xD6wuqlc7SsRmH6YHCVpf4WBuNkp7+ gdFD8aK0xrpWrrQg38HD9qzW3Sz5CCxqNVZdJNS8g+K3QitXIdvUHBeZHKwFeR1Y 91ZgyumRxtMuTQ3Z8cfFSZ31fs7jqd4efC1GkjNXOhhfA03995iSa0X3TWfLjrJC wITI3JVnRAyyQPPa2micHsJ5Pusq76hbLClIkL/hDAElLgX7v7dJJwEe174Vc61d 5S/c1IddgxSKNJhtj+18spgWW1ARMuQIlo82drpAutzuDrF3KmfqFzX9ahLojn+f hpZMgOxrH+Uw8JCamiubJKR1eQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMwMCavr 6y4viDca8LwfU6Uc80s8MB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtHPyKdAbIsSQpVIAAF5W6qgp7PBzRdxx3p+4dxQfewsutOv3OnKGT/nMx94T Dp0Y+U7r174s7O+LA3GsAZsD1q7WneMOieGB6j+WlXiBxY2LjNHBlPrWpDQ9Lpv/ p1ROjHbe5oikMTLSYuoS85R6j0V54JaH7ULI55dj0S22Q/WFB43/RBlkmpV3yIuQ 3iJcYrH8qqGJJpxE8BvSjpY4LZGxTyDRh73H3DA1mQYA50taPIvRlZrma9dgGMGe +vBzPl+5ShtA7hStNlMp86G+nfD+cmQqOi9omlXoNH3eQr2Zk24PpWRIMgOB2YXJ gHdQAoaItdjLGx3ueQHa9yklyQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:38:56 2026 by rpki-client