$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft File: iXa1-0jy5BEdeNWjzVovyhlhOXo.mft (raw, json) Hash identifier: XZz17bgUE9h1qcMrw2IoVy8c6u4hO4SYI67vg2sdDa0= Subject key identifier: D5:AA:35:32:CC:C9:C2:7B:47:6E:B3:6C:AC:A0:A5:63:CB:B2:91:B7 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 02C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft Manifest number: 02AF Signing time: Fri 17 Apr 2026 01:23:51 +0000 Manifest this update: Fri 17 Apr 2026 01:23:50 +0000 Manifest next update: Fri 24 Apr 2026 01:23:50 +0000 Files and hashes: 1: iXa1-0jy5BEdeNWjzVovyhlhOXo.crl (hash: w44diYJZR6mlD3qL1JtfKK5vzFX4E+WHRaIp54F1Q9Y=) 2: FBE538ECC55511F0B6ACB62BC4F9AE02.roa (hash: zqFlnoiRJ96ipkTg+cLy44fvbC4N/hd7GgD9UC/f7t4=) 3: A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa (hash: ldho/4dcBhvMSFZNQSotx0OQwqa0gAe9if7fkQE4P7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Apr 17 01:23:50 2026 GMT Not After : Apr 24 01:23:50 2026 GMT Subject: CN=69e18ba7-a7bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:86:4b:48:1f:ab:33:38:06:b4:1d:3b:fa:05: 87:68:6b:e0:55:da:9b:79:c5:e5:01:45:d1:29:9a: 0f:85:30:d3:60:22:ae:1c:46:30:bf:57:ff:83:b4: ff:7c:d8:14:59:e0:ce:46:af:a1:22:f4:be:ee:8e: a5:ba:e8:9e:16:ef:df:0b:fe:82:c0:01:d6:8d:27: 96:f0:34:5a:af:12:74:48:e3:5a:86:47:bb:26:28: 8e:93:11:e1:85:52:ba:6a:24:d2:d2:d9:d3:14:21: c5:7d:0e:c8:2e:b3:fc:e3:85:8b:9b:4a:30:4c:79: 72:3c:3c:6c:01:8b:aa:bc:bb:5b:39:39:b7:6c:ba: 5c:e4:b9:7a:c6:81:f0:3a:65:22:26:18:d6:46:93: 18:50:a5:8f:43:23:a9:26:dc:26:de:4d:56:76:2f: 5f:52:6f:c9:8b:7b:05:bd:ce:36:cb:a5:c9:7b:68: f0:de:76:bd:e3:0a:ac:52:d4:9c:84:c7:2a:1d:0e: db:ca:8a:a9:e2:c0:49:2f:d3:0c:f7:21:0e:35:32: fb:d1:ae:4f:77:13:6f:d4:34:16:6f:c1:79:df:34: cf:a6:6d:1a:72:eb:fa:68:64:c7:04:53:a9:33:e7: 58:85:c3:ed:cb:c0:92:f8:26:0c:0e:e2:44:0c:14: 91:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:AA:35:32:CC:C9:C2:7B:47:6E:B3:6C:AC:A0:A5:63:CB:B2:91:B7 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:c6:1a:5f:63:cf:72:79:5a:87:29:7c:db:ce:79:2e:7a:7e: 6f:d7:43:2f:e1:3b:0a:25:00:d5:3c:9c:fe:16:7e:d3:8a:3f: 4f:4b:c0:a2:2a:80:29:99:b1:ae:04:f3:74:fb:a0:0b:6b:3c: a3:c8:b9:45:70:0c:0c:44:02:3d:a9:ff:d0:83:76:10:02:99: a1:e1:54:18:15:1e:09:11:f0:42:f8:4b:b7:0b:f1:c3:b8:b1: 3a:d7:ae:de:3d:a5:23:e0:39:7f:a4:90:fc:be:2c:14:c3:c8: 84:65:7e:8f:30:01:c2:90:51:ca:93:0b:12:51:b6:4c:2d:c7: 36:a1:8d:a5:38:42:03:c8:d1:56:a4:ed:f2:f5:5d:22:93:c7: 48:a4:02:d1:4e:76:16:15:f8:46:ba:f7:12:45:96:dd:ae:0e: 6c:b4:92:48:36:c1:f6:61:54:27:f3:62:f2:82:e1:52:9f:26: f3:85:9f:86:be:25:3e:cb:e4:f0:c7:61:c8:49:de:2b:ab:e6: ed:ea:7d:74:38:0e:3b:1f:cc:f4:cb:12:e8:ce:a8:a5:59:09: a0:63:a9:e8:57:00:7a:ac:9a:16:ca:30:e8:fe:f3:ea:a1:b1: 38:49:2d:f3:a8:d5:d7:d6:4a:56:11:c8:a0:d3:45:05:25:da: c2:8d:1a:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjYwNDE3MDEyMzUwWhcNMjYwNDI0MDEyMzUwWjAYMRYwFAYD VQQDEw02OWUxOGJhNy1hN2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIZLSB+rMzgGtB07+gWHaGvgVdqbecXlAUXRKZoPhTDTYCKuHEYwv1f/g7T/ fNgUWeDORq+hIvS+7o6luuieFu/fC/6CwAHWjSeW8DRarxJ0SONahke7JiiOkxHh hVK6aiTS0tnTFCHFfQ7ILrP844WLm0owTHlyPDxsAYuqvLtbOTm3bLpc5Ll6xoHw OmUiJhjWRpMYUKWPQyOpJtwm3k1Wdi9fUm/Ji3sFvc42y6XJe2jw3na94wqsUtSc hMcqHQ7byoqp4sBJL9MM9yEONTL70a5PdxNv1DQWb8F53zTPpm0acuv6aGTHBFOp M+dYhcPty8CS+CYMDuJEDBSR+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNWqNTLM ycJ7R26zbKygpWPLspG3MB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM3Ri8zQjdCREFCRTNGQzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVC RWRlTldqelZvdnlobGhPWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXcYaX2PPcnlahyl82855Lnp+b9dDL+E7CiUA1Tyc/hZ+04o/T0vAoiqAKZmx rgTzdPugC2s8o8i5RXAMDEQCPan/0IN2EAKZoeFUGBUeCRHwQvhLtwvxw7ixOteu 3j2lI+A5f6SQ/L4sFMPIhGV+jzABwpBRypMLElG2TC3HNqGNpThCA8jRVqTt8vVd IpPHSKQC0U52FhX4Rrr3EkWW3a4ObLSSSDbB9mFUJ/Ni8oLhUp8m84Wfhr4lPsvk 8MdhyEneK6vm7ep9dDgOOx/M9MsS6M6opVkJoGOp6FcAeqyaFsow6P7z6qGxOEkt 86jV19ZKVhHIoNNFBSXawo0aOg== -----END CERTIFICATE-----Generated at Fri Apr 17 15:27:18 2026 by rpki-client