$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: GjwCQftN/yBMWm2Y9M1jpUsqfWjspFiLIzBQwYtCig0= Subject key identifier: 36:51:F7:87:17:FE:CF:CC:5D:72:74:74:7C:2F:A9:36:3A:DF:EA:70 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 0673 Signing time: Thu 16 Apr 2026 22:32:09 +0000 Manifest this update: Thu 16 Apr 2026 22:32:08 +0000 Manifest next update: Thu 23 Apr 2026 22:32:08 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: 5ArPRwVY+cRxYBQnDPbtNdqKHjUS3Li4z4S7n6qqi8U=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: 8NcFmfcZYrRsP7z1vxHhvTJh2ryA3DW6xQ/HYbHt6tE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Apr 16 22:32:08 2026 GMT Not After : Apr 23 22:32:08 2026 GMT Subject: CN=69e16368-9f00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a3:8e:71:6f:95:8e:90:5f:cf:ed:e6:2c:da: 52:c8:ba:77:22:3e:27:24:22:da:05:a9:25:b4:5e: 4d:f7:3c:4e:b9:b1:04:98:90:7f:4f:a0:a4:2a:c6: d1:32:be:7a:5e:05:40:3b:e4:f0:1d:50:57:4f:b2: 78:19:cb:7d:ab:02:46:03:ee:30:00:f9:b6:72:53: f6:e1:15:64:45:c0:a2:ad:13:9e:b0:6f:ea:6e:4c: 41:59:d0:43:19:f3:c2:69:e1:00:bd:48:dc:fb:62: 34:b0:ee:46:9d:54:94:ac:d8:af:1e:c4:07:90:4c: ef:42:2b:82:a4:52:12:1f:e1:35:18:c2:f1:e5:18: 08:8e:6c:d6:3e:0f:be:6e:05:d6:48:9f:63:89:cb: db:9a:55:68:56:d0:8a:49:da:fb:92:5c:e0:63:4a: f3:7a:7e:ba:d6:5b:16:d3:06:69:69:f9:3a:4a:b5: 0f:f3:f1:cd:be:52:29:bc:4b:0a:09:25:62:77:5c: 9d:5c:bf:4e:5e:e0:e4:18:7b:f4:d9:9f:c8:54:61: 3a:0d:9e:43:81:52:c3:f9:61:3b:13:81:11:05:e8: 57:3c:d2:a3:75:76:3f:d1:3d:ac:72:61:d3:66:2b: b8:37:6e:45:6a:56:28:cd:c4:9c:e6:27:80:e2:1f: 14:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:51:F7:87:17:FE:CF:CC:5D:72:74:74:7C:2F:A9:36:3A:DF:EA:70 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:95:2d:7d:82:e9:dc:1e:60:87:f5:45:3c:08:95:9d:1c:65: 3f:32:f7:f3:8a:99:cd:c2:03:8d:01:5f:cc:b3:97:e5:a7:a7: be:46:ca:88:fd:04:75:d0:61:ee:37:ba:73:21:fe:ae:67:d8: 50:fe:3d:57:fa:da:76:e0:e8:bd:83:d5:17:44:85:c0:f7:b1: 34:9d:14:73:57:59:d8:c0:2f:2d:90:1d:1b:ac:b3:8a:07:d7: d2:79:9d:b7:8f:82:30:ce:87:c1:c1:2c:4d:23:a0:4e:46:2b: 73:25:03:b8:f4:74:bd:df:32:d2:f4:0a:bf:b7:24:d9:7f:15: e7:35:c3:52:a8:43:43:bd:10:94:61:ab:d2:02:df:69:51:50: 43:e4:70:da:0b:e2:b2:11:b4:73:c8:3b:44:3c:35:15:12:f9: b6:d9:82:77:ce:04:bf:a0:40:36:0a:0e:07:41:55:bf:de:f1: 98:e1:29:2e:f9:fa:ba:53:ea:e3:c4:38:66:38:0f:91:1e:4c: fc:aa:db:c9:bb:d3:38:ef:d3:3e:5e:c6:81:08:80:37:f9:f1: 08:8d:b0:99:f8:75:09:68:62:77:fb:1b:0a:ff:49:ff:1f:6a: 37:d9:ac:ba:45:43:3b:ef:3a:92:d9:5a:42:5a:97:70:55:ad: 63:d7:6e:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjYwNDE2MjIzMjA4WhcNMjYwNDIzMjIzMjA4WjAYMRYwFAYD VQQDEw02OWUxNjM2OC05ZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKOOcW+VjpBfz+3mLNpSyLp3Ij4nJCLaBakltF5N9zxOubEEmJB/T6CkKsbR Mr56XgVAO+TwHVBXT7J4Gct9qwJGA+4wAPm2clP24RVkRcCirROesG/qbkxBWdBD GfPCaeEAvUjc+2I0sO5GnVSUrNivHsQHkEzvQiuCpFISH+E1GMLx5RgIjmzWPg++ bgXWSJ9jicvbmlVoVtCKSdr7klzgY0rzen661lsW0wZpafk6SrUP8/HNvlIpvEsK CSVid1ydXL9OXuDkGHv02Z/IVGE6DZ5DgVLD+WE7E4ERBehXPNKjdXY/0T2scmHT Ziu4N25FalYozcSc5ieA4h8UTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDZR94cX /s/MXXJ0dHwvqTY63+pwMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1ZUtfYLp3B5gh/VFPAiVnRxlPzL384qZzcIDjQFfzLOX5aenvkbKiP0EddBh 7je6cyH+rmfYUP49V/raduDovYPVF0SFwPexNJ0Uc1dZ2MAvLZAdG6yzigfX0nmd t4+CMM6HwcEsTSOgTkYrcyUDuPR0vd8y0vQKv7ck2X8V5zXDUqhDQ70QlGGr0gLf aVFQQ+Rw2gvishG0c8g7RDw1FRL5ttmCd84Ev6BANgoOB0FVv97xmOEpLvn6ulPq 48Q4ZjgPkR5M/KrbybvTOO/TPl7GgQiAN/nxCI2wmfh1CWhid/sbCv9J/x9qN9ms ukVDO+86ktlaQlqXcFWtY9duUA== -----END CERTIFICATE-----Generated at Fri Apr 17 13:37:54 2026 by rpki-client