$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft File: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft (raw, json) Hash identifier: /wZEu8AmpapyWlHdZqFK5A647SU7eYTv/17m/blOUxg= Subject key identifier: 4B:80:94:C4:2C:9D:B7:A4:DA:1D:BB:8D:DE:4B:CC:9D:94:4A:DA:20 Authority key identifier: D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 Certificate issuer: /CN=A9116B0C/serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft Manifest number: 37 Signing time: Fri 17 Apr 2026 08:19:38 +0000 Manifest this update: Fri 17 Apr 2026 08:19:38 +0000 Manifest next update: Fri 24 Apr 2026 08:19:38 +0000 Files and hashes: 1: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl (hash: 9FPXaa2qyuW1Du0lfASnwMeRfT7GRMPkWNoJhH055Jo=) 2: 2235EF78F12011F0BFBF3F154E6F56BC.roa (hash: PdAz+4W9gV7DG5blKrt0fnM9lwbclCTxlZE4svm7VgA=) 3: F5568448F11C11F0AC52AD484D6F56BC.roa (hash: FSRnxAS3d/oxWCt/mXgTvn1rm5+e0wMamnNqPiiIkGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B0C, serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Validity Not Before: Apr 17 08:19:38 2026 GMT Not After : Apr 24 08:19:38 2026 GMT Subject: CN=69e1ed1a-f84f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dd:18:73:4f:01:d3:e7:39:04:00:a0:ad:ef: 49:0e:db:f0:7a:23:b7:49:97:70:67:21:8c:14:08: ad:ae:ba:d6:5f:ba:b3:89:ca:7b:8f:cb:8d:25:97: 88:d0:ba:ad:fc:a0:fd:23:f9:cf:24:65:3e:81:19: 25:fc:8d:fd:b6:9a:bc:ad:82:69:ad:61:a2:23:0e: 43:11:f9:0e:9d:b1:8c:d5:96:95:d8:d6:a8:20:af: da:8c:7d:8b:d5:9d:7f:59:c4:bd:8e:00:7a:ea:bd: ed:ff:79:9f:d3:35:19:32:10:55:54:c7:ec:41:fa: 86:91:3b:dd:d0:2f:e5:ef:74:c2:8d:e8:a1:3d:f3: 68:1c:e5:f7:a6:9f:9d:0a:45:de:58:5a:67:bf:99: e9:eb:ef:7b:96:8e:68:89:79:00:e0:6c:2b:e1:ff: de:3f:ca:09:9a:69:b2:d8:88:e3:c6:44:76:f8:89: 8f:37:b1:7b:44:c2:a7:41:4c:ce:41:dd:ef:c0:35: 49:57:bb:92:9c:b3:21:86:c7:aa:b0:42:8e:b3:5c: 23:fb:7a:a6:7a:b1:6b:5b:90:54:7f:d9:0e:6e:dd: aa:71:5f:04:83:11:e9:f1:0a:7c:8a:34:9c:72:06: 3d:c6:01:e5:cf:b0:1d:6e:57:7b:80:07:66:a9:5a: 5b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:80:94:C4:2C:9D:B7:A4:DA:1D:BB:8D:DE:4B:CC:9D:94:4A:DA:20 X509v3 Authority Key Identifier: keyid:D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ed:a7:7c:83:69:22:a6:54:bd:94:e2:24:ff:e8:1b:04:2b: a0:e3:51:09:b7:c1:31:95:da:d6:94:9e:6b:bf:47:2c:5d:13: 58:4c:a5:b6:60:a3:98:b6:ca:8b:08:42:8a:2e:37:d6:e8:50: 93:f3:ed:d0:cc:ab:7a:3c:7f:7b:c9:fb:5a:a3:cf:59:10:31: e6:1c:6c:e2:53:31:12:c7:56:34:c2:cd:ac:b5:59:52:c1:ae: 6f:b6:57:ce:cc:3f:86:3b:da:df:a6:1d:93:69:68:44:78:b9: 38:6a:7e:5c:5b:84:7a:ad:2e:d0:63:0b:c4:c4:ed:2b:94:97: f7:d9:fe:4e:77:7e:0c:c4:cd:2b:59:6c:4a:8d:4b:0e:3c:ca: 87:77:cc:e9:d9:7b:2c:35:54:a1:58:28:1d:b4:59:d7:ea:56: 10:d8:b6:53:68:7f:4f:a5:88:25:e6:a9:04:c9:4b:8e:ff:bc: ff:6e:82:12:6c:1c:03:bd:ae:31:d0:35:8d:21:e8:ba:b7:c3: 1c:7d:55:eb:7d:bc:dc:3b:79:e8:13:33:af:a5:e2:6d:80:9c: 50:be:ed:0e:1b:5f:16:ed:f2:91:07:63:1e:74:c7:fa:b4:38: 09:06:dc:42:de:e0:0d:a5:5c:0b:71:1b:49:fb:79:65:26:04: 59:9c:79:10 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NkIwQzExMC8GA1UEBRMoRDVCMTY3Njg5MTRBODBDOTMxMjQ2Mjk2MTBDQzQwNTAy QUFFRDBFOTAeFw0yNjA0MTcwODE5MzhaFw0yNjA0MjQwODE5MzhaMBgxFjAUBgNV BAMTDTY5ZTFlZDFhLWY4NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC23RhzTwHT5zkEAKCt70kO2/B6I7dJl3BnIYwUCK2uutZfurOJynuPy40ll4jQ uq38oP0j+c8kZT6BGSX8jf22mrytgmmtYaIjDkMR+Q6dsYzVlpXY1qggr9qMfYvV nX9ZxL2OAHrqve3/eZ/TNRkyEFVUx+xB+oaRO93QL+XvdMKN6KE982gc5femn50K Rd5YWme/menr73uWjmiJeQDgbCvh/94/ygmaabLYiOPGRHb4iY83sXtEwqdBTM5B 3e/ANUlXu5KcsyGGx6qwQo6zXCP7eqZ6sWtbkFR/2Q5u3apxXwSDEenxCnyKNJxy Bj3GAeXPsB1uV3uAB2apWlt7AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUS4CUxCyd t6TaHbuN3kvMnZRK2iAwHwYDVR0jBBgwFoAU1bFnaJFKgMkxJGKWEMxAUCqu0Okw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2QjBDL0I2MTM4NkU2RjEx QzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01reEpHS1dFTXhBVUNxdTBP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWJGbmFKRktnTWt4SkdLV0VNeEFVQ3F1ME9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2 QjBDL0I2MTM4NkU2RjExQzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01r eEpHS1dFTXhBVUNxdTBPay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBI7ad8g2kiplS9lOIk/+gbBCug41EJt8ExldrWlJ5rv0csXRNYTKW2YKOYtsqL CEKKLjfW6FCT8+3QzKt6PH97yftao89ZEDHmHGziUzESx1Y0ws2stVlSwa5vtlfO zD+GO9rfph2TaWhEeLk4an5cW4R6rS7QYwvExO0rlJf32f5Od34MxM0rWWxKjUsO PMqHd8zp2XssNVShWCgdtFnX6lYQ2LZTaH9PpYgl5qkEyUuO/7z/boISbBwDva4x 0DWNIei6t8McfVXrfbzcO3noEzOvpeJtgJxQvu0OG18W7fKRB2MedMf6tDgJBtxC 3uANpVwLcRtJ+3llJgRZnHkQ -----END CERTIFICATE-----Generated at Fri Apr 17 18:11:25 2026 by rpki-client