$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: TN/N+X/tlIQ1qiVTfSmgjDumzmT3iLhN01qUpDhBcjg= Subject key identifier: E1:D0:61:54:07:34:6D:C5:A6:FF:90:81:4A:F0:C8:36:3F:89:48:84 Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 072D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 0720 Signing time: Sat 18 Apr 2026 21:46:01 +0000 Manifest this update: Sat 18 Apr 2026 21:46:00 +0000 Manifest next update: Sat 25 Apr 2026 21:46:00 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: xFzgCYJzggQjC+xiiaXYlXrThrZF+A3g8GmrEcP8V+0=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: pwlC3i6Dw77h4VjdOciKa1OoCdf0YqgEjmXujNfwxJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 21:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1837 (0x72d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Apr 18 21:46:00 2026 GMT Not After : Apr 25 21:46:00 2026 GMT Subject: CN=69e3fb99-97a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2a:f4:4e:da:f1:9b:d8:dd:2e:34:d1:a7:ae: 68:22:84:cf:c2:ad:c1:ff:6b:76:d7:df:1a:0f:cd: 10:90:7f:fc:69:ab:00:e7:ef:47:07:9e:73:c8:ff: 69:a5:95:35:0d:5f:ab:7f:6c:b4:7a:bc:fd:e7:10: f1:74:2d:9a:99:03:ab:de:cc:56:f1:58:5c:1e:99: 4f:b3:f9:be:3a:0c:3d:99:1b:e7:34:68:a6:b0:2b: 80:18:cf:f8:79:bb:88:88:b7:bd:9d:79:86:b9:9b: a0:d8:4a:08:f7:fc:c9:33:bc:2d:b8:31:59:bd:8f: f5:2e:15:03:20:61:a0:0e:26:5a:70:0e:38:35:2d: 62:43:85:ca:3a:32:1f:cb:e5:3b:aa:12:38:bc:bb: a4:31:ed:80:78:ed:bd:88:1b:ae:89:27:e4:84:10: 0e:37:df:88:2b:79:84:71:0d:74:64:8e:c2:55:6d: b8:1e:e8:e6:73:14:d9:1f:65:02:07:5e:e0:ba:2d: 74:0b:6c:e9:2a:41:80:00:e8:96:4b:c3:c2:9a:41: b3:c4:09:47:d7:84:6b:30:bc:de:3b:06:86:ac:1b: 41:1f:11:d7:9b:c5:10:33:f2:d9:13:fa:3d:97:a5: 57:9c:36:76:f7:14:6b:4c:3e:3f:42:b5:97:dd:11: 7a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D0:61:54:07:34:6D:C5:A6:FF:90:81:4A:F0:C8:36:3F:89:48:84 X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:31:a1:d1:b7:d9:fa:c4:ef:21:dd:98:61:51:ec:70:30:ac: fe:7e:4f:ce:89:97:63:b0:da:91:39:d0:e7:b1:88:83:ee:91: ea:ce:9a:e1:65:9d:97:fc:ff:59:0e:47:91:de:b3:24:92:42: 0d:ec:90:b3:23:e0:81:d5:4b:e7:0b:6c:47:6b:0e:cb:7e:90: de:f8:85:d9:f9:fc:33:c8:1a:72:89:b8:bc:6d:4c:9f:3e:dd: 0b:22:7f:5e:36:93:8f:7d:cd:f5:ab:a5:8f:6d:c3:ec:88:82: b9:ff:6f:f4:7b:19:46:81:3f:19:f2:98:0d:f2:3f:33:ea:51: 26:ed:61:71:4d:7a:47:08:43:76:74:d5:89:53:39:91:24:05: 2e:84:1c:6c:54:19:35:77:09:e5:c0:15:8e:9e:0b:41:db:eb: 85:a9:e9:f6:33:be:27:13:bc:85:7d:84:7b:1d:40:0e:24:96: 8b:de:19:08:90:7f:df:46:b7:e2:0c:a0:dc:fc:ee:c7:51:e4: f8:32:80:80:a3:38:f9:a9:ec:bd:1b:8a:76:05:e6:f8:e5:5b: a8:62:02:99:9e:da:ba:48:08:05:0d:12:97:ec:55:9a:76:5b: d2:78:94:92:1b:42:6f:cc:0f:67:02:fd:45:06:90:e7:68:5d: 67:77:e9:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjYwNDE4MjE0NjAwWhcNMjYwNDI1MjE0NjAwWjAYMRYwFAYD VQQDEw02OWUzZmI5OS05N2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yr0Ttrxm9jdLjTRp65oIoTPwq3B/2t2198aD80QkH/8aasA5+9HB55zyP9p pZU1DV+rf2y0erz95xDxdC2amQOr3sxW8VhcHplPs/m+Ogw9mRvnNGimsCuAGM/4 ebuIiLe9nXmGuZug2EoI9/zJM7wtuDFZvY/1LhUDIGGgDiZacA44NS1iQ4XKOjIf y+U7qhI4vLukMe2AeO29iBuuiSfkhBAON9+IK3mEcQ10ZI7CVW24HujmcxTZH2UC B17gui10C2zpKkGAAOiWS8PCmkGzxAlH14RrMLzeOwaGrBtBHxHXm8UQM/LZE/o9 l6VXnDZ29xRrTD4/QrWX3RF6swIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOHQYVQH NG3Fpv+QgUrwyDY/iUiEMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuDGh0bfZ+sTvId2YYVHscDCs/n5PzomXY7DakTnQ57GIg+6R6s6a4WWdl/z/ WQ5Hkd6zJJJCDeyQsyPggdVL5wtsR2sOy36Q3viF2fn8M8gacom4vG1Mnz7dCyJ/ XjaTj33N9aulj23D7IiCuf9v9HsZRoE/GfKYDfI/M+pRJu1hcU16RwhDdnTViVM5 kSQFLoQcbFQZNXcJ5cAVjp4LQdvrhanp9jO+JxO8hX2Eex1ADiSWi94ZCJB/30a3 4gyg3Pzux1Hk+DKAgKM4+ansvRuKdgXm+OVbqGICmZ7aukgIBQ0Sl+xVmnZb0niU khtCb8wPZwL9RQaQ52hdZ3fpVQ== -----END CERTIFICATE-----Generated at Sun Apr 19 10:58:35 2026 by rpki-client