$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: 0qE31gG1iNAxBnC1DTNpjiPeixobl+hgyvwclGtYO4M= Subject key identifier: 3A:AD:90:16:10:88:E6:AE:EA:5C:D6:84:61:C7:DB:A3:D6:EC:C2:EA Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 0710 Signing time: Thu 16 Apr 2026 21:50:31 +0000 Manifest this update: Thu 16 Apr 2026 21:50:30 +0000 Manifest next update: Thu 23 Apr 2026 21:50:30 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: pGQqUE5eQRZG1QcMuaYjYIgGHwu4BSh2xniVmSTLNl4=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: Y8iJThI3UQs6h5LHq/2D1bpcHDn8+qLI7yAh/AJOyS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Apr 16 21:50:30 2026 GMT Not After : Apr 23 21:50:30 2026 GMT Subject: CN=69e159a7-d7d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f1:f8:a7:41:3d:b3:5b:db:11:a3:49:d3:70: 8a:60:50:51:9e:7d:77:34:43:7c:20:2c:23:1a:9e: eb:69:d4:85:69:b3:7f:ef:fb:47:d6:20:93:90:f9: d4:52:22:32:88:12:91:6e:a1:3a:98:c4:35:b3:29: ec:d0:26:40:b6:27:30:6c:e1:0a:b2:d0:58:d4:41: 38:ac:3d:29:eb:98:d3:2f:cf:73:f2:04:57:ee:c1: 6d:d9:6e:76:66:c8:ee:29:87:61:28:ca:51:22:5a: a2:e3:35:61:78:6f:1d:2e:ad:fa:f2:e5:23:6b:d6: 7b:75:da:b9:97:78:ba:3c:cf:48:8b:34:57:c2:34: 9f:ff:ca:03:bd:12:fc:c2:6c:06:c9:59:ca:3d:30: 27:28:4c:e0:83:3d:79:36:5f:4c:2f:09:c5:f5:4c: e4:28:85:b7:a1:7f:ec:be:ec:46:16:b7:d2:24:2c: 38:85:8c:15:7b:29:8f:ff:3e:df:56:0d:ea:fb:b8: c2:f1:c5:38:f9:d8:76:cb:c7:3a:59:4b:83:2a:cd: 99:78:03:1d:9c:f9:9d:d6:d2:69:2b:f2:f3:c6:46: 8c:8a:e5:1e:27:fb:1a:e1:3c:78:af:d4:56:4b:09: 03:0a:e1:6a:bd:15:5b:69:6f:21:79:e9:17:23:df: b4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:AD:90:16:10:88:E6:AE:EA:5C:D6:84:61:C7:DB:A3:D6:EC:C2:EA X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:12:85:3b:86:f7:90:41:d8:0a:97:8b:36:ee:e0:12:fe:41: fb:29:fd:b4:74:ca:20:59:f9:ce:7a:4e:b8:43:84:4d:77:6e: 11:76:06:30:83:c4:ee:f9:52:9a:03:24:68:85:68:eb:dc:23: b4:72:98:c4:6d:f4:f5:04:01:c0:d9:1f:d5:41:cc:f9:58:ce: 8f:9d:af:d1:4d:88:cb:70:dd:5a:81:46:58:a9:72:97:1a:4d: 8f:f6:27:8f:13:66:9a:97:4a:1b:a0:42:55:2c:c1:56:ab:f9: 51:c6:31:32:7b:6e:50:e6:a5:c5:3a:7c:99:c7:20:c1:fc:21: b3:44:c3:bf:03:13:4a:f2:c8:74:df:11:ae:e6:80:92:90:aa: f1:7c:4b:3e:79:92:c8:77:ae:46:30:f1:92:49:b3:e0:9c:1e: 73:d4:a1:6d:a6:01:09:ae:4f:c2:0d:73:70:ae:68:6b:b1:a4: cb:f9:ce:1f:27:d0:82:6b:3e:d1:9c:77:83:60:e6:2c:03:a2: 96:39:a2:7f:7e:11:bd:c8:c7:b9:22:c2:84:68:6e:66:98:d3: 21:26:f8:e3:f1:82:fd:b5:6e:98:77:fa:67:f8:f9:72:7b:fc: 59:22:c4:e1:96:98:c2:12:88:3b:31:fd:c6:5c:87:51:80:94: 7a:8f:94:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjYwNDE2MjE1MDMwWhcNMjYwNDIzMjE1MDMwWjAYMRYwFAYD VQQDEw02OWUxNTlhNy1kN2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfH4p0E9s1vbEaNJ03CKYFBRnn13NEN8ICwjGp7radSFabN/7/tH1iCTkPnU UiIyiBKRbqE6mMQ1syns0CZAticwbOEKstBY1EE4rD0p65jTL89z8gRX7sFt2W52 ZsjuKYdhKMpRIlqi4zVheG8dLq368uUja9Z7ddq5l3i6PM9IizRXwjSf/8oDvRL8 wmwGyVnKPTAnKEzggz15Nl9MLwnF9UzkKIW3oX/svuxGFrfSJCw4hYwVeymP/z7f Vg3q+7jC8cU4+dh2y8c6WUuDKs2ZeAMdnPmd1tJpK/LzxkaMiuUeJ/sa4Tx4r9RW SwkDCuFqvRVbaW8heekXI9+0eQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDqtkBYQ iOau6lzWhGHH26PW7MLqMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYxKFO4b3kEHYCpeLNu7gEv5B+yn9tHTKIFn5znpOuEOETXduEXYGMIPE7vlS mgMkaIVo69wjtHKYxG309QQBwNkf1UHM+VjOj52v0U2Iy3DdWoFGWKlylxpNj/Yn jxNmmpdKG6BCVSzBVqv5UcYxMntuUOalxTp8mccgwfwhs0TDvwMTSvLIdN8RruaA kpCq8XxLPnmSyHeuRjDxkkmz4Jwec9ShbaYBCa5Pwg1zcK5oa7Gky/nOHyfQgms+ 0Zx3g2DmLAOiljmif34RvcjHuSLChGhuZpjTISb44/GC/bVumHf6Z/j5cnv8WSLE 4ZaYwhKIOzH9xlyHUYCUeo+UIA== -----END CERTIFICATE-----Generated at Fri Apr 17 09:43:41 2026 by rpki-client