$ rpki-client -vvf rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft File: rBnGa8SzHOuTC6auDW63R7EKtgY.mft (raw, json) Hash identifier: YT4ne9h+JanoAOxY2lklcHXbFvB/DpFkxV+5tMdDhqk= Subject key identifier: BF:55:51:35:1B:16:EF:E1:39:55:24:C5:E0:7E:AD:0F:E8:32:C9:61 Authority key identifier: AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 Certificate issuer: /CN=A9141E28/serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Certificate serial: 3534 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft Manifest number: 3534 Signing time: Thu 16 Apr 2026 14:40:23 +0000 Manifest this update: Thu 16 Apr 2026 14:40:23 +0000 Manifest next update: Thu 23 Apr 2026 14:40:23 +0000 Files and hashes: 1: rBnGa8SzHOuTC6auDW63R7EKtgY.crl (hash: r7nNL65cxsmQbFy7AovQDXBBk6e3DH+HSFma8BxY4Jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13620 (0x3534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141E28, serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Validity Not Before: Apr 16 14:40:23 2026 GMT Not After : Apr 23 14:40:23 2026 GMT Subject: CN=69e0f4d7-274a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a9:1c:0c:0a:22:92:ac:0d:b5:ff:a4:32:4b: d8:1c:96:74:99:b9:e3:98:04:04:14:38:45:7e:10: 00:dd:f0:b8:7b:49:a6:66:e3:8d:de:d2:a4:cd:4e: 22:3b:5c:71:c7:76:d9:f6:29:71:57:ea:1e:5a:af: a1:e7:ab:7f:98:c6:b1:4b:55:83:f2:ae:c1:40:b4: e5:79:4e:c5:e5:c5:c2:e5:09:38:17:50:64:6a:74: 65:42:8b:e9:ef:80:52:77:1d:15:15:d9:46:84:38: d5:03:d3:2a:b4:8a:23:a5:86:8a:19:25:80:b5:2c: 34:93:cd:a5:99:49:a7:9e:16:2b:28:da:79:64:4d: a0:b3:2b:73:e4:45:0a:03:4e:45:24:5f:19:6d:89: 1b:d3:bf:c2:d2:49:29:4c:1b:d6:62:03:d8:d2:ec: ad:11:df:e3:e9:b8:aa:84:1f:ce:9f:29:25:cb:50: ab:38:fc:00:73:57:65:a3:29:bc:df:ae:1e:80:27: 0e:3c:b8:1a:d2:49:4b:e2:bd:7a:ca:f8:a7:14:f3: 3d:41:0e:36:dc:c8:9d:04:52:cc:d2:82:15:fd:38: 36:66:af:d9:0e:27:ed:b0:c0:fd:5d:49:7e:05:90: 1f:92:1f:a6:37:c2:57:a4:66:13:23:32:c5:93:25: 44:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:55:51:35:1B:16:EF:E1:39:55:24:C5:E0:7E:AD:0F:E8:32:C9:61 X509v3 Authority Key Identifier: keyid:AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:0d:5d:04:c0:53:a4:e6:3a:e2:00:ff:d1:e8:6c:4b:85:47: 2f:93:1d:87:63:b1:94:34:00:7e:19:7b:af:38:0b:08:78:d0: c6:de:08:c4:c5:ae:8d:17:c5:c4:a7:a1:3d:3c:29:7b:1c:75: bc:84:50:c0:2a:b2:8b:8f:de:3d:69:64:04:eb:1a:3e:94:f0: 49:83:3f:ba:b8:a8:47:9d:a5:5f:3a:45:e8:01:be:8c:71:c8: 95:6a:2b:df:56:cd:10:91:bc:ea:71:eb:16:68:de:b5:94:61: 4f:3e:68:81:0d:fb:a5:c0:0d:59:8c:5a:ab:03:77:ec:61:c8: c9:0a:44:02:02:27:a2:60:bc:9a:75:72:60:00:49:73:21:c5: 6e:f7:7e:c4:1e:53:a9:f5:6c:6a:77:35:86:51:1a:de:cb:b8: e0:a2:03:03:b6:9f:63:fc:5f:b7:92:99:28:8a:8e:03:09:4c: ce:91:67:da:e9:76:47:e3:e4:1d:f0:a6:d5:b2:e9:17:40:11: 49:da:0e:c1:b5:a9:e3:67:7f:3e:ca:13:25:d1:8f:fd:f6:15: 96:01:8d:84:39:c7:77:e6:c2:0c:39:21:3a:f8:d9:c6:07:f7: 97:2a:41:5e:73:ca:79:f9:5b:1f:a9:32:dc:50:1d:d8:7d:ca: e3:91:d6:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFFMjgxMTAvBgNVBAUTKEFDMTlDNjZCQzRCMzFDRUI5MzBCQTZBRTBENkVCNzQ3 QjEwQUI2MDYwHhcNMjYwNDE2MTQ0MDIzWhcNMjYwNDIzMTQ0MDIzWjAYMRYwFAYD VQQDEw02OWUwZjRkNy0yNzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7akcDAoikqwNtf+kMkvYHJZ0mbnjmAQEFDhFfhAA3fC4e0mmZuON3tKkzU4i O1xxx3bZ9ilxV+oeWq+h56t/mMaxS1WD8q7BQLTleU7F5cXC5Qk4F1BkanRlQovp 74BSdx0VFdlGhDjVA9MqtIojpYaKGSWAtSw0k82lmUmnnhYrKNp5ZE2gsytz5EUK A05FJF8ZbYkb07/C0kkpTBvWYgPY0uytEd/j6biqhB/Onykly1CrOPwAc1dloym8 364egCcOPLga0klL4r16yvinFPM9QQ423MidBFLM0oIV/Tg2Zq/ZDiftsMD9XUl+ BZAfkh+mN8JXpGYTIzLFkyVEawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL9VUTUb Fu/hOVUkxeB+rQ/oMslhMB8GA1UdIwQYMBaAFKwZxmvEsxzrkwumrg1ut0exCrYG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUUyOC84NDU4QjkxMDFE OEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhPdVRDNmF1RFc2M1I3RUt0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JCbkdhOFN6SE91VEM2YXVEVzYzUjdFS3RnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUUyOC84NDU4QjkxMDFEOEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhP dVRDNmF1RFc2M1I3RUt0Z1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlw1dBMBTpOY64gD/0ehsS4VHL5Mdh2OxlDQAfhl7rzgLCHjQxt4IxMWujRfF xKehPTwpexx1vIRQwCqyi4/ePWlkBOsaPpTwSYM/urioR52lXzpF6AG+jHHIlWor 31bNEJG86nHrFmjetZRhTz5ogQ37pcANWYxaqwN37GHIyQpEAgInomC8mnVyYABJ cyHFbvd+xB5TqfVsanc1hlEa3su44KIDA7afY/xft5KZKIqOAwlMzpFn2ul2R+Pk HfCm1bLpF0ARSdoOwbWp42d/PsoTJdGP/fYVlgGNhDnHd+bCDDkhOvjZxgf3lypB XnPKeflbH6ky3FAd2H3K45HWFQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:14:59 2026 by rpki-client