$ rpki-client -vvf rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft File: 84ggnKyyxrgUysV4XUv002zElx8.mft (raw, json) Hash identifier: oSF5HR7768FjZm1pnNHe7AskhWi+3CF4BZbjQ6DJB+8= Subject key identifier: CE:29:EE:8F:76:58:31:0B:97:20:28:71:FD:93:C1:5A:B3:69:69:FB Authority key identifier: F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F Certificate issuer: /CN=A9138A50/serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Certificate serial: 04F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft Manifest number: 04F2 Signing time: Thu 16 Apr 2026 23:38:05 +0000 Manifest this update: Thu 16 Apr 2026 23:38:04 +0000 Manifest next update: Thu 23 Apr 2026 23:38:04 +0000 Files and hashes: 1: 84ggnKyyxrgUysV4XUv002zElx8.crl (hash: z9oHYKuuR0gEfiTmnYYFMC40oogXHlxab2dmA1szg74=) 2: 0DA4853256FC11EC8032440FC4F9AE02.roa (hash: 9TiMPZCiPjXqHR9KYA2Vwop1NQpu2NZ+fmkYgv1k0eQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138A50, serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Validity Not Before: Apr 16 23:38:04 2026 GMT Not After : Apr 23 23:38:04 2026 GMT Subject: CN=69e172dd-b15f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:19:dc:04:f5:d7:4a:00:9e:51:61:cc:71:ec: b1:90:e3:c4:f6:4d:6b:d2:20:57:f3:2f:38:7b:bd: 1a:3d:e6:a7:17:76:2d:54:8d:38:d3:2e:33:df:b8: 99:1d:03:6e:f3:8f:bf:70:7d:ed:c2:5a:6f:47:41: 92:b7:c7:76:d1:ba:ea:92:76:31:16:39:f0:d3:b1: 0d:76:d8:90:95:30:db:1d:cd:36:fb:13:b7:f4:9f: cc:8f:ca:64:a6:10:b8:f2:f5:2e:a4:cc:ff:d1:0a: 53:d3:40:c7:2b:11:fb:bc:96:c6:90:21:a4:99:85: 3f:d4:f2:ef:f8:71:df:53:38:19:9c:67:54:b7:ba: db:8b:92:f8:98:a1:e5:db:c0:dd:0a:14:da:06:a8: 9f:aa:33:f8:63:a6:d2:36:0b:87:3c:14:96:34:fc: fa:37:69:bb:9e:1b:82:32:8e:3d:bf:8e:b4:9b:8f: 05:af:46:83:0b:1c:d4:a2:6b:9b:e6:89:b6:be:69: 8f:e0:a2:b1:06:84:3f:c8:a4:75:f0:4b:06:30:ed: 7f:8a:c2:1f:93:8d:cc:50:b3:61:ad:ef:cf:2c:b5: 28:da:53:b8:9c:87:56:3a:cc:8e:b8:58:03:de:2b: da:e2:55:f1:3d:6b:0d:86:63:96:4b:d2:96:f5:36: 8b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:29:EE:8F:76:58:31:0B:97:20:28:71:FD:93:C1:5A:B3:69:69:FB X509v3 Authority Key Identifier: keyid:F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:67:fe:ca:ac:c3:28:b4:36:73:4e:5e:88:ca:37:90:a9:38: cc:fc:34:f5:15:69:39:0b:04:bb:3d:87:8a:a3:30:44:cf:60: 96:8f:8d:2c:aa:5a:43:5f:bf:07:ab:d0:7c:92:f9:cc:42:c0: 70:52:3e:80:13:a8:55:0a:62:2e:f8:bb:21:dd:07:3d:de:b1: 51:74:45:40:66:0e:da:7d:7d:1a:16:41:84:af:5a:27:bb:b0: 74:05:91:68:ed:e1:f8:c6:15:85:3d:d9:82:7a:e6:62:6d:2e: 44:b2:49:93:c8:78:98:88:b1:a3:f8:58:3d:e1:d5:f9:51:da: 9a:b2:36:84:91:a7:68:1d:74:42:38:15:df:e3:46:13:25:56: 5d:ef:1d:83:53:8b:5f:5d:95:b7:c2:18:b9:e6:f7:1b:42:fe: 5b:16:31:4f:15:8e:4e:15:30:18:d2:95:b1:c2:0f:33:a5:60: 7d:1e:51:9e:44:45:df:67:57:f6:da:b3:07:37:f6:de:fc:c1: 94:0d:0f:97:0a:93:2b:16:dc:ac:5b:c1:5c:5d:7a:ad:65:02: 33:0d:6d:d2:2b:49:8e:8e:2e:09:3a:5d:30:bc:40:4a:ff:db: 17:d5:67:13:f6:77:d6:a2:d3:06:13:c2:d3:fc:e3:85:1e:cf: b8:a4:f8:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhBNTAxMTAvBgNVBAUTKEYzODgyMDlDQUNCMkM2QjgxNENBQzU3ODVENEJGNEQz NkNDNDk3MUYwHhcNMjYwNDE2MjMzODA0WhcNMjYwNDIzMjMzODA0WjAYMRYwFAYD VQQDEw02OWUxNzJkZC1iMTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBncBPXXSgCeUWHMceyxkOPE9k1r0iBX8y84e70aPeanF3YtVI040y4z37iZ HQNu84+/cH3twlpvR0GSt8d20brqknYxFjnw07ENdtiQlTDbHc02+xO39J/Mj8pk phC48vUupMz/0QpT00DHKxH7vJbGkCGkmYU/1PLv+HHfUzgZnGdUt7rbi5L4mKHl 28DdChTaBqifqjP4Y6bSNguHPBSWNPz6N2m7nhuCMo49v460m48Fr0aDCxzUomub 5om2vmmP4KKxBoQ/yKR18EsGMO1/isIfk43MULNhre/PLLUo2lO4nIdWOsyOuFgD 3iva4lXxPWsNhmOWS9KW9TaL/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM4p7o92 WDELlyAocf2TwVqzaWn7MB8GA1UdIwQYMBaAFPOIIJysssa4FMrFeF1L9NNsxJcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEE1MC9DOUE3QTQzODU2 RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhyZ1V5c1Y0WFV2MDAyekVs eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0Z2duS3l5eHJnVXlzVjRYVXYwMDJ6RWx4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEE1MC9DOUE3QTQzODU2RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhy Z1V5c1Y0WFV2MDAyekVseDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiGf+yqzDKLQ2c05eiMo3kKk4zPw09RVpOQsEuz2HiqMwRM9glo+NLKpaQ1+/ B6vQfJL5zELAcFI+gBOoVQpiLvi7Id0HPd6xUXRFQGYO2n19GhZBhK9aJ7uwdAWR aO3h+MYVhT3ZgnrmYm0uRLJJk8h4mIixo/hYPeHV+VHamrI2hJGnaB10QjgV3+NG EyVWXe8dg1OLX12Vt8IYueb3G0L+WxYxTxWOThUwGNKVscIPM6VgfR5RnkRF32dX 9tqzBzf23vzBlA0PlwqTKxbcrFvBXF16rWUCMw1t0itJjo4uCTpdMLxASv/bF9Vn E/Z31qLTBhPC0/zjhR7PuKT4sg== -----END CERTIFICATE-----Generated at Fri Apr 17 23:02:02 2026 by rpki-client