$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: LmySoiu8PuSf8XNUTFKHqQ7jvG+p+iuvI7WIekyK6mg= Subject key identifier: 48:CC:A9:06:10:9B:1C:6A:55:C2:9E:A5:6D:18:0C:30:FC:EE:3D:1B Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2CE2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2CDF Signing time: Thu 16 Apr 2026 14:26:27 +0000 Manifest this update: Thu 16 Apr 2026 14:26:26 +0000 Manifest next update: Thu 23 Apr 2026 14:26:26 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: KOE6/PmRUHCbdCvm0DGa6IFDGi9o7fWv76mmbuJBuaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11490 (0x2ce2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Apr 16 14:26:26 2026 GMT Not After : Apr 23 14:26:26 2026 GMT Subject: CN=69e0f193-47a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:76:d0:81:3a:e8:00:c6:76:fc:b1:7a:0d:de: 47:f7:1e:6c:e9:c1:d5:67:68:77:28:5a:ac:5a:69: 39:30:e8:8d:99:de:59:f4:07:eb:39:7f:e2:72:af: fb:34:8f:5f:b3:e3:e1:8a:4f:93:34:84:8c:28:83: 08:b8:f4:ba:8d:6b:6b:20:ca:e7:40:5e:27:71:8f: e7:01:90:2f:2e:94:bf:98:2e:53:b3:05:52:f6:09: 44:de:94:6a:94:1f:7b:b8:99:6d:9f:70:16:bd:f1: a4:6d:71:cd:ba:ef:35:30:20:ea:16:01:be:fe:74: 3e:44:4c:1f:64:33:4e:69:e5:48:03:1f:c8:11:5c: fa:3d:6a:fa:0f:60:aa:36:49:2d:f7:3a:76:29:97: 99:19:a1:7b:fc:09:a3:7f:dc:fd:60:66:ab:41:b6: 39:d4:e7:86:c4:2d:ad:6b:46:37:9e:80:34:79:9b: b9:7c:39:be:b6:02:70:e6:dc:9d:96:86:ce:20:fe: 66:50:17:fe:63:58:b6:6a:23:b4:19:68:84:18:f8: 14:3e:2e:54:e5:12:2e:af:9e:02:b0:f5:8f:d6:ef: c3:92:e9:e2:74:00:38:bc:ca:0b:08:a5:c2:14:49: 36:96:23:7a:66:8d:0a:46:33:4e:c5:9f:de:c0:ee: 5d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CC:A9:06:10:9B:1C:6A:55:C2:9E:A5:6D:18:0C:30:FC:EE:3D:1B X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:05:87:f2:05:18:b2:e2:ef:5e:54:b3:26:e1:91:08:d3:14: 04:a9:8c:be:ba:7d:e3:10:8b:cb:98:65:7a:ca:42:ce:73:fd: fa:db:08:ef:95:5c:7a:23:e3:9b:c4:d8:2e:fe:84:6e:f2:37: 86:e4:49:c1:63:cf:21:be:83:b5:0e:e8:58:14:c6:e9:c9:89: df:c5:8a:4c:c6:c7:24:1c:71:d5:f1:cb:64:35:7c:78:51:fe: 6a:92:38:ba:a2:41:ac:58:5b:cb:48:e4:18:40:3a:1f:02:2f: a9:89:84:b7:0d:8a:4c:be:2e:17:e5:6e:da:06:a8:50:e2:8c: 88:ac:e8:16:5a:ef:c0:6a:f0:74:eb:58:82:cc:d4:12:53:19: dd:b4:ba:12:e8:f2:65:6f:e5:9a:5e:15:20:83:43:34:23:53: 69:9a:4e:40:55:24:9e:db:70:8c:02:d3:02:b7:f1:c0:d4:c0: a8:fb:ab:11:b0:d4:db:85:8b:fa:d2:1a:cc:b9:16:ca:9d:2d: 7f:76:6c:9c:6e:76:ae:33:26:7e:c0:c8:84:f5:6a:95:be:cb: 30:47:56:5c:fc:49:c1:82:fe:8f:2f:4b:e9:99:04:83:d3:ae: 6b:f1:5a:57:4e:ce:ba:64:f9:df:83:64:d2:ac:4e:79:07:4f: 1f:bf:95:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjYwNDE2MTQyNjI2WhcNMjYwNDIzMTQyNjI2WjAYMRYwFAYD VQQDEw02OWUwZjE5My00N2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XbQgTroAMZ2/LF6Dd5H9x5s6cHVZ2h3KFqsWmk5MOiNmd5Z9AfrOX/icq/7 NI9fs+Phik+TNISMKIMIuPS6jWtrIMrnQF4ncY/nAZAvLpS/mC5TswVS9glE3pRq lB97uJltn3AWvfGkbXHNuu81MCDqFgG+/nQ+REwfZDNOaeVIAx/IEVz6PWr6D2Cq Nkkt9zp2KZeZGaF7/Amjf9z9YGarQbY51OeGxC2ta0Y3noA0eZu5fDm+tgJw5tyd lobOIP5mUBf+Y1i2aiO0GWiEGPgUPi5U5RIur54CsPWP1u/DkunidAA4vMoLCKXC FEk2liN6Zo0KRjNOxZ/ewO5dAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEjMqQYQ mxxqVcKepW0YDDD87j0bMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASQWH8gUYsuLvXlSzJuGRCNMUBKmMvrp94xCLy5hlespCznP9+tsI75VceiPj m8TYLv6EbvI3huRJwWPPIb6DtQ7oWBTG6cmJ38WKTMbHJBxx1fHLZDV8eFH+apI4 uqJBrFhby0jkGEA6HwIvqYmEtw2KTL4uF+Vu2gaoUOKMiKzoFlrvwGrwdOtYgszU ElMZ3bS6EujyZW/lml4VIINDNCNTaZpOQFUknttwjALTArfxwNTAqPurEbDU24WL +tIazLkWyp0tf3ZsnG52rjMmfsDIhPVqlb7LMEdWXPxJwYL+jy9L6ZkEg9Oua/Fa V07OumT534Nk0qxOeQdPH7+VhA== -----END CERTIFICATE-----Generated at Fri Apr 17 22:32:09 2026 by rpki-client