$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: pYyr8fRXHMlT3xw80SNyCfOAA0n1Pe+YHt9zVnyhA4w= Subject key identifier: D2:68:61:B7:6F:DD:6B:C5:E1:89:F6:40:8B:EF:3D:5C:55:7E:D8:30 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B88 Signing time: Thu 16 Apr 2026 16:13:02 +0000 Manifest this update: Thu 16 Apr 2026 16:13:01 +0000 Manifest next update: Thu 23 Apr 2026 16:13:01 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: KA84wGUWGliHL3aR87lQ8J41HE5j9mNr4z6FeEJiwg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7051 (0x1b8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Apr 16 16:13:01 2026 GMT Not After : Apr 23 16:13:01 2026 GMT Subject: CN=69e10a8d-92bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:d5:db:01:a1:95:44:8d:1a:d1:00:f4:20:6a: 6c:44:bf:b1:1c:f3:c4:b4:cb:23:6e:41:d4:0a:25: eb:2c:27:0f:e3:95:16:4e:8a:16:19:2a:1e:84:4b: 34:56:44:fd:fe:2c:f8:d9:e3:8f:bc:e4:e7:dc:1b: d9:e5:1a:15:bd:61:1d:c1:46:68:bb:6d:81:7d:51: 80:f8:66:b9:c4:f5:4a:66:1f:a5:66:9c:60:88:d7: a2:bb:d8:5b:2a:2b:6f:33:98:89:d7:56:10:3c:b7: c6:73:fd:48:3a:1d:33:fa:ec:fb:18:49:9c:d7:5e: f1:08:56:e1:d5:a6:22:7a:02:71:e8:b7:01:2b:ae: 38:cc:37:47:f5:2e:c9:e2:6d:e9:10:bd:b8:e9:bf: e5:43:a4:ac:43:3b:5b:cb:fa:80:b5:41:39:0a:4d: db:45:6b:93:4a:e2:9b:0d:ab:a8:bb:d8:cb:c5:e0: fe:1a:66:c6:16:8b:9b:21:de:2b:d8:ea:72:29:78: 46:8c:14:2c:36:71:38:d3:8d:ba:99:52:4a:95:05: d8:36:81:c1:ca:54:73:b1:66:2a:cf:21:ec:57:ad: 01:69:e4:8b:1c:38:c3:de:48:d5:1b:7b:cf:17:60: 40:f9:c2:a8:54:69:bb:ee:60:68:1a:27:6c:52:47: 3f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:68:61:B7:6F:DD:6B:C5:E1:89:F6:40:8B:EF:3D:5C:55:7E:D8:30 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:11:49:96:f6:57:ff:83:4a:41:36:cd:37:03:8e:7d:71:59: 55:ae:57:eb:86:fa:7a:3d:10:56:02:c6:ee:35:dc:2a:99:65: 60:d9:b5:cf:af:db:0e:4b:c0:28:52:8f:3a:d0:fc:f9:a4:34: 87:05:a0:6c:75:97:a2:6f:d0:72:54:9a:24:e9:a1:a7:de:0b: 46:ea:83:ee:80:74:d1:32:14:8c:19:fc:6b:df:2a:e8:53:1f: 4d:a3:3e:1b:ad:2d:79:8e:9d:44:75:e7:57:17:b9:89:67:80: 40:57:73:79:f9:62:53:2d:37:e1:cd:21:ad:84:f3:26:c8:9a: f2:d2:18:b1:ae:c1:c1:9a:13:8f:f2:e1:7a:37:61:76:9c:a0: df:c0:48:1d:2a:b4:57:e2:f2:d8:70:d9:5d:62:94:6f:90:5b: bd:06:2c:03:99:8e:ad:cd:0b:1b:7c:77:29:57:66:cf:85:03: 5c:19:54:81:87:87:c2:4f:d4:e3:50:a4:a2:32:30:1f:ec:3e: cb:2e:0c:b7:7e:b6:2c:ae:6f:50:c6:db:7e:03:2b:54:99:6e: ac:ea:93:28:0d:78:fc:05:86:df:12:4b:6f:b3:b9:8d:b3:d1: c9:57:61:cb:31:e8:19:33:d0:fd:a4:73:81:c5:3a:9f:6d:81: b7:7f:a3:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjYwNDE2MTYxMzAxWhcNMjYwNDIzMTYxMzAxWjAYMRYwFAYD VQQDEw02OWUxMGE4ZC05MmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh9XbAaGVRI0a0QD0IGpsRL+xHPPEtMsjbkHUCiXrLCcP45UWTooWGSoehEs0 VkT9/iz42eOPvOTn3BvZ5RoVvWEdwUZou22BfVGA+Ga5xPVKZh+lZpxgiNeiu9hb KitvM5iJ11YQPLfGc/1IOh0z+uz7GEmc117xCFbh1aYiegJx6LcBK644zDdH9S7J 4m3pEL246b/lQ6SsQztby/qAtUE5Ck3bRWuTSuKbDauou9jLxeD+GmbGFoubId4r 2OpyKXhGjBQsNnE40426mVJKlQXYNoHBylRzsWYqzyHsV60BaeSLHDjD3kjVG3vP F2BA+cKoVGm77mBoGidsUkc/mQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNJoYbdv 3WvF4Yn2QIvvPVxVftgwMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXxFJlvZX/4NKQTbNNwOOfXFZVa5X64b6ej0QVgLG7jXcKpllYNm1z6/bDkvA KFKPOtD8+aQ0hwWgbHWXom/QclSaJOmhp94LRuqD7oB00TIUjBn8a98q6FMfTaM+ G60teY6dRHXnVxe5iWeAQFdzefliUy034c0hrYTzJsia8tIYsa7BwZoTj/Lhejdh dpyg38BIHSq0V+Ly2HDZXWKUb5BbvQYsA5mOrc0LG3x3KVdmz4UDXBlUgYeHwk/U 41CkojIwH+w+yy4Mt362LK5vUMbbfgMrVJlurOqTKA14/AWG3xJLb7O5jbPRyVdh yzHoGTPQ/aRzgcU6n22Bt3+jJQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:48:50 2026 by rpki-client