$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft File: a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft (raw, json) Hash identifier: JLpppT2GNA+jg1l33jeP86fly6i7n5kMffwH7geLmmg= Subject key identifier: 97:FC:EE:21:45:2A:C2:FC:67:81:B4:D6:8B:51:F4:9E:5D:52:53:9C Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft Manifest number: 01E0 Signing time: Fri 17 Apr 2026 03:10:51 +0000 Manifest this update: Fri 17 Apr 2026 03:10:51 +0000 Manifest next update: Fri 24 Apr 2026 03:10:51 +0000 Files and hashes: 1: a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl (hash: iKk8Ez455zTS7yzT/tRGs9CQ5HWpjAgoXmW5h7+zZNM=) 2: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (hash: qK+khHCIuI//dPRwyz9oPvFPdzHoY4nUbkit8bRPNhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA, serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Apr 17 03:10:51 2026 GMT Not After : Apr 24 03:10:51 2026 GMT Subject: CN=69e1a4bb-dda7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6f:de:da:5b:10:20:63:57:30:6b:88:3f:8a: 63:36:33:c8:d9:a0:93:12:4f:c8:cb:3e:89:13:51: 02:69:c2:2c:b3:9a:da:8c:28:eb:69:46:5f:8b:f5: d3:29:9d:39:d1:d6:97:6e:12:5c:f9:c1:1e:2c:0c: 7d:d0:f1:ef:9b:0a:3a:7f:1c:ef:7c:da:b4:3a:38: 9d:d2:ab:02:8d:4d:62:8f:a1:9b:35:fa:b8:0f:83: b0:6b:b3:5c:15:a1:87:90:9a:0e:8d:b8:19:6e:80: cc:0c:f4:4a:a3:24:39:de:48:2f:e7:8e:6c:2a:6a: f5:9e:73:3f:20:20:66:6e:89:a5:aa:12:f6:77:b5: c8:d7:ce:a9:74:0b:f2:d0:af:8f:58:60:00:ba:0f: 3a:e9:f3:f1:8d:b5:10:a8:68:ad:ba:ca:42:97:29: 0b:17:ac:37:a8:99:a9:43:48:9b:c1:0a:77:28:41: 4c:33:29:aa:f7:01:b0:f9:15:ec:f5:48:24:e1:02: e0:9b:82:b0:60:40:cf:90:f5:83:11:52:24:d9:6b: 82:24:90:75:a7:a7:c5:9d:41:35:f0:6a:f9:e5:6e: 06:87:68:ae:eb:cd:01:ec:d7:0f:ce:a3:86:75:6f: 1d:76:e8:17:d9:4c:f9:77:4b:63:6c:ba:cc:c2:5f: 35:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:FC:EE:21:45:2A:C2:FC:67:81:B4:D6:8B:51:F4:9E:5D:52:53:9C X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d7:c7:a2:22:9b:c0:be:a6:12:f0:05:62:b0:45:19:74:33: b2:9a:52:bd:35:fd:52:93:71:03:7f:01:5e:22:4f:ee:a7:82: 92:46:57:30:d9:f3:4c:d1:d2:a4:93:44:fe:07:28:ba:19:73: fe:55:1d:ab:83:25:19:2c:e1:9f:b2:ec:7d:67:0a:93:aa:51: 2a:a8:ae:fd:07:cb:b6:90:59:b4:04:42:5d:6a:6c:ac:e7:66: fc:b5:0a:ca:47:76:a2:19:4a:1b:bb:7c:2e:18:95:58:47:22: 9c:1e:46:0e:04:67:9b:20:16:9e:09:ba:35:6c:2d:c2:c2:9b: e2:27:cc:6c:12:58:62:25:c1:bf:13:c9:6d:f7:62:f8:79:24: a6:e2:3b:be:a8:40:b2:19:cb:88:05:a5:e9:59:5c:25:f0:a2: 47:15:41:0a:6f:e4:bc:1d:f3:2c:ff:85:23:24:9e:44:d0:dd: ef:c5:aa:e3:3e:b7:cd:b5:7b:a0:44:21:b5:5c:66:c6:85:6c: 9e:c1:18:c6:1c:a5:1c:62:12:08:a5:ac:0a:be:83:17:6b:4f: de:92:c9:25:cf:fd:25:0c:75:76:f5:41:84:59:3d:12:20:4e: 00:b0:8b:c6:87:5b:e2:6e:1c:dd:2d:10:99:7f:a8:5d:de:c7: 4c:6b:8c:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjYwNDE3MDMxMDUxWhcNMjYwNDI0MDMxMDUxWjAYMRYwFAYD VQQDEw02OWUxYTRiYi1kZGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW/e2lsQIGNXMGuIP4pjNjPI2aCTEk/Iyz6JE1ECacIss5rajCjraUZfi/XT KZ050daXbhJc+cEeLAx90PHvmwo6fxzvfNq0Ojid0qsCjU1ij6GbNfq4D4Owa7Nc FaGHkJoOjbgZboDMDPRKoyQ53kgv545sKmr1nnM/ICBmbomlqhL2d7XI186pdAvy 0K+PWGAAug866fPxjbUQqGituspClykLF6w3qJmpQ0ibwQp3KEFMMymq9wGw+RXs 9Ugk4QLgm4KwYEDPkPWDEVIk2WuCJJB1p6fFnUE18Gr55W4Gh2iu680B7NcPzqOG dW8ddugX2Uz5d0tjbLrMwl81hwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJf87iFF KsL8Z4G01otR9J5dUlOcMB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFBQS8wQ0E3N0M4MjVDNDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgy WFB1UjhTRXNLTTl6UDV3clUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD9fHoiKbwL6mEvAFYrBFGXQzsppSvTX9UpNxA38BXiJP7qeCkkZXMNnzTNHS pJNE/gcouhlz/lUdq4MlGSzhn7LsfWcKk6pRKqiu/QfLtpBZtARCXWpsrOdm/LUK ykd2ohlKG7t8LhiVWEcinB5GDgRnmyAWngm6NWwtwsKb4ifMbBJYYiXBvxPJbfdi +HkkpuI7vqhAshnLiAWl6VlcJfCiRxVBCm/kvB3zLP+FIySeRNDd78Wq4z63zbV7 oEQhtVxmxoVsnsEYxhylHGISCKWsCr6DF2tP3pLJJc/9JQx1dvVBhFk9EiBOALCL xodb4m4c3S0QmX+oXd7HTGuM/g== -----END CERTIFICATE-----Generated at Fri Apr 17 07:28:36 2026 by rpki-client