$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: tmrvrGysYaYJGrwW6NZ8NRsTdtVA6p5TqTbCCIHwiDU= Subject key identifier: 78:7F:D5:6B:C2:EC:E4:B7:8C:30:48:5D:3D:30:A6:AC:E3:71:C4:99 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 0226 Signing time: Fri 17 Apr 2026 00:16:01 +0000 Manifest this update: Fri 17 Apr 2026 00:16:00 +0000 Manifest next update: Fri 24 Apr 2026 00:16:00 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: NbtaUS1gW5AUKonU5eLVIjAbhwoazJPT9eGidFdE3KI=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: uapvI86Owy0hCkd8jvGFvt3U25CohwTWpZlwRgJoJH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Apr 17 00:16:00 2026 GMT Not After : Apr 24 00:16:00 2026 GMT Subject: CN=69e17bc1-88b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:57:52:5a:1f:e8:f8:fd:d2:cb:ae:3e:67:66: 7e:b6:9a:88:67:c6:32:2a:8c:d0:77:e1:5d:98:cb: 3f:89:f6:19:7d:58:65:1c:a6:b3:92:9e:01:da:ff: 28:c2:d3:93:34:bb:3b:c5:27:b7:e7:73:fa:46:7b: 59:47:50:b0:44:fc:7f:2c:34:61:c0:da:fe:c0:84: 8b:30:63:7c:2e:11:be:c7:34:72:e3:43:a0:21:4e: af:ac:d7:b0:1c:1d:f6:f8:fc:2f:53:71:c9:05:ba: 67:a4:34:f5:c3:54:2a:74:ac:0b:48:bc:f9:52:e0: fe:7d:aa:19:1e:30:38:c9:cd:52:ff:e3:1e:33:df: 4a:57:a1:e1:7c:bd:84:6d:ff:13:f8:19:43:1f:3d: 50:5c:45:63:14:49:46:58:37:0a:61:b7:3e:5a:5f: c9:3b:b9:71:a6:d0:e1:a4:c3:08:5c:1f:fc:00:e0: 74:c2:97:f8:b1:26:3b:4e:7d:fc:07:a9:37:fb:f7: 8a:23:e3:a2:b6:cc:b0:66:a0:a6:64:d9:8a:2e:5f: 46:f4:b6:0a:0e:52:2f:cb:dd:4b:f3:4f:1a:45:a7: ef:87:36:43:0c:85:46:01:66:bf:6e:09:62:c7:1e: fd:16:c2:3d:d5:8d:bd:55:b9:b3:dd:62:96:08:cc: 51:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7F:D5:6B:C2:EC:E4:B7:8C:30:48:5D:3D:30:A6:AC:E3:71:C4:99 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:8f:12:31:07:11:b6:8b:c6:a8:78:f9:10:f6:13:76:97:9b: 57:a7:0e:30:2d:58:2a:6d:11:ec:f5:54:ce:ae:9a:49:23:ab: ce:73:70:cf:6d:f1:24:97:ce:e9:b3:9e:3f:18:98:11:d4:72: f2:7e:90:e6:93:ed:74:3a:d6:15:b1:7c:a6:57:07:c1:a5:2a: 0c:a2:14:a7:67:7b:51:52:a8:b0:3d:a2:bd:00:99:dd:58:6d: 65:01:de:99:16:5b:6f:c0:3a:b3:90:33:4e:20:db:9a:45:fb: 43:e4:6b:4f:5f:86:ae:05:0a:4d:46:cf:4d:c6:79:81:b4:92: 7f:7c:d2:12:48:f4:08:f0:94:9d:70:e9:c5:92:ce:c5:67:ea: 73:b3:58:bf:78:2d:55:10:ae:26:03:67:d8:1f:94:d0:04:e3: e0:f7:74:9f:e1:33:78:43:54:24:fc:2b:cb:10:a0:c2:dd:07: 40:3f:cd:6e:10:08:67:d8:69:80:1a:99:ea:e9:a2:e5:ae:97: ad:74:2d:9c:53:7b:50:ad:4c:53:71:ab:48:87:78:5a:2c:cf: 41:c2:69:73:da:27:92:c6:cf:01:de:c3:1d:ed:04:e5:84:da: c9:ae:f1:4f:cb:81:bb:08:54:4b:15:6c:0a:e9:d9:4b:63:95: 70:2b:11:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjYwNDE3MDAxNjAwWhcNMjYwNDI0MDAxNjAwWjAYMRYwFAYD VQQDEw02OWUxN2JjMS04OGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1dSWh/o+P3Sy64+Z2Z+tpqIZ8YyKozQd+FdmMs/ifYZfVhlHKazkp4B2v8o wtOTNLs7xSe353P6RntZR1CwRPx/LDRhwNr+wISLMGN8LhG+xzRy40OgIU6vrNew HB32+PwvU3HJBbpnpDT1w1QqdKwLSLz5UuD+faoZHjA4yc1S/+MeM99KV6HhfL2E bf8T+BlDHz1QXEVjFElGWDcKYbc+Wl/JO7lxptDhpMMIXB/8AOB0wpf4sSY7Tn38 B6k3+/eKI+OitsywZqCmZNmKLl9G9LYKDlIvy91L808aRafvhzZDDIVGAWa/bgli xx79FsI91Y29Vbmz3WKWCMxRrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHh/1WvC 7OS3jDBIXT0wpqzjccSZMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJo8SMQcRtovGqHj5EPYTdpebV6cOMC1YKm0R7PVUzq6aSSOrznNwz23xJJfO 6bOePxiYEdRy8n6Q5pPtdDrWFbF8plcHwaUqDKIUp2d7UVKosD2ivQCZ3VhtZQHe mRZbb8A6s5AzTiDbmkX7Q+RrT1+GrgUKTUbPTcZ5gbSSf3zSEkj0CPCUnXDpxZLO xWfqc7NYv3gtVRCuJgNn2B+U0ATj4Pd0n+EzeENUJPwryxCgwt0HQD/NbhAIZ9hp gBqZ6umi5a6XrXQtnFN7UK1MU3GrSId4WizPQcJpc9onksbPAd7DHe0E5YTaya7x T8uBuwhUSxVsCunZS2OVcCsRDA== -----END CERTIFICATE-----Generated at Fri Apr 17 06:54:16 2026 by rpki-client