$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: YCIkL6LRgRgTlwmawwqr1jaHKy2bqdrH0m17Pd0iK1g= Subject key identifier: 86:55:81:C4:07:E7:6E:11:9C:13:F7:B2:74:CB:07:4D:92:DB:3E:E4 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 0160 Signing time: Fri 17 Apr 2026 04:38:47 +0000 Manifest this update: Fri 17 Apr 2026 04:38:46 +0000 Manifest next update: Fri 24 Apr 2026 04:38:46 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: G+AKG00dk29gwIUK2PSQz0APH8opFN32W/kQCP6YsRQ=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: b75sAYMEIXYdDT25gmVHvykzgLoZpS+x22joZCKSsl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Apr 17 04:38:46 2026 GMT Not After : Apr 24 04:38:46 2026 GMT Subject: CN=69e1b956-3cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:48:c1:b7:71:03:6d:fa:84:b0:06:0b:19:07: 0a:22:2e:9b:b3:ea:32:7d:7d:a9:d7:1b:52:78:4e: b8:a9:dc:96:4f:ec:98:c8:3f:b4:0f:80:5e:99:54: 93:fa:b0:3a:14:09:3d:65:ba:ef:76:64:45:04:60: 0b:1e:03:42:7c:53:ef:63:bd:6d:bd:e1:ad:9a:e7: b2:40:30:69:9e:f7:3e:c0:5f:e3:f0:6b:47:fa:ad: af:57:0f:e6:dd:5c:b8:7a:26:b6:2f:48:fd:4b:87: 65:f8:0a:65:62:24:d3:f6:72:52:72:27:01:e3:89: 4f:98:9e:5a:d6:00:0b:0a:f4:11:66:d5:f0:9e:2e: dc:4c:b6:74:fe:9d:24:2c:99:f8:64:50:43:9c:40: e2:41:7e:4a:4c:9d:73:51:00:d6:80:16:6f:4c:dd: 65:b7:d9:1c:3b:fb:61:b3:e0:23:f9:1b:b1:42:67: ea:2a:37:2d:a5:cb:49:37:36:45:f8:23:26:ae:6c: 9b:00:3b:73:4e:f8:1b:83:18:1e:88:9c:ea:4a:dc: e2:da:5f:0c:4f:8b:49:fc:0d:9f:91:3d:fd:fc:64: 59:46:e4:f6:b6:cc:f5:97:71:71:be:79:ae:c1:d7: d3:f4:ea:ed:da:1c:a5:5f:bb:7a:f3:f7:60:bb:82: a1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:55:81:C4:07:E7:6E:11:9C:13:F7:B2:74:CB:07:4D:92:DB:3E:E4 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:12:9a:72:84:29:37:4a:81:a4:69:59:b3:64:03:3b:2b:74: af:9d:6d:b3:3e:04:1f:41:61:00:a7:c9:cc:be:cf:8c:3f:6b: 7d:4f:7a:48:2c:39:3b:94:2a:5d:6d:2e:62:00:72:33:bc:e0: 9b:11:b3:5d:73:20:2b:db:df:d1:11:ca:9d:f2:d3:b2:4f:39: 23:2c:d8:09:7d:08:f4:2c:63:f0:ec:af:56:58:11:c5:68:36: 72:22:3f:fe:64:e9:68:58:77:f1:41:f8:9b:24:f8:de:cf:c9: 1a:71:30:5d:ce:51:cf:6b:5b:ea:55:d5:5b:c3:43:38:22:cc: cd:a7:8f:19:2b:ec:4a:9b:79:c6:b6:80:21:17:65:05:67:49: a6:49:9f:9b:f5:4d:76:32:2a:c8:0a:3e:71:d0:d4:eb:17:6b: ff:a1:cf:67:20:a7:9b:07:c3:de:77:aa:a1:b4:1a:86:1e:26: df:c8:10:71:53:7e:a3:24:7b:4d:3d:0c:ac:e9:9c:98:f7:cc: 12:99:6c:6e:2f:02:98:d5:20:e7:14:9f:4a:72:0e:4c:e8:82: 4b:c9:8c:b2:08:1e:f9:10:27:0b:4d:88:65:80:73:2f:b1:8d: 35:e1:de:e4:0c:00:a5:ad:7a:4b:a7:50:cc:63:37:01:19:4c: 72:e9:19:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjYwNDE3MDQzODQ2WhcNMjYwNDI0MDQzODQ2WjAYMRYwFAYD VQQDEw02OWUxYjk1Ni0zY2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUjBt3EDbfqEsAYLGQcKIi6bs+oyfX2p1xtSeE64qdyWT+yYyD+0D4BemVST +rA6FAk9ZbrvdmRFBGALHgNCfFPvY71tveGtmueyQDBpnvc+wF/j8GtH+q2vVw/m 3Vy4eia2L0j9S4dl+AplYiTT9nJScicB44lPmJ5a1gALCvQRZtXwni7cTLZ0/p0k LJn4ZFBDnEDiQX5KTJ1zUQDWgBZvTN1lt9kcO/ths+Aj+RuxQmfqKjctpctJNzZF +CMmrmybADtzTvgbgxgeiJzqStzi2l8MT4tJ/A2fkT39/GRZRuT2tsz1l3Fxvnmu wdfT9Ort2hylX7t68/dgu4Kh2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIZVgcQH 524RnBP3snTLB02S2z7kMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEBKacoQpN0qBpGlZs2QDOyt0r51tsz4EH0FhAKfJzL7PjD9rfU96SCw5O5Qq XW0uYgByM7zgmxGzXXMgK9vf0RHKnfLTsk85IyzYCX0I9Cxj8OyvVlgRxWg2ciI/ /mTpaFh38UH4myT43s/JGnEwXc5Rz2tb6lXVW8NDOCLMzaePGSvsSpt5xraAIRdl BWdJpkmfm/VNdjIqyAo+cdDU6xdr/6HPZyCnmwfD3neqobQahh4m38gQcVN+oyR7 TT0MrOmcmPfMEplsbi8CmNUg5xSfSnIOTOiCS8mMsgge+RAnC02IZYBzL7GNNeHe 5AwApa16S6dQzGM3ARlMcukZEw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:34:32 2026 by rpki-client