$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: LwEmUkoW22D9ny2UUHPZv/CfDPVqHF1czL1IO3T2lB8= Subject key identifier: 80:97:6C:7A:28:71:D8:F1:C2:D7:27:7D:AB:B3:D6:CE:12:85:0C:D3 Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: 0249 Signing time: Fri 17 Apr 2026 02:10:39 +0000 Manifest this update: Fri 17 Apr 2026 02:10:38 +0000 Manifest next update: Fri 24 Apr 2026 02:10:38 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: VyKqPNXo7ud5ejrP7m/zZtT60Ko2OVlNGhZCTohecW0=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: y+Wimi0nOKR+CCaPEyUVlyF7NSoOO3qXylD3M4nU6+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: Apr 17 02:10:38 2026 GMT Not After : Apr 24 02:10:38 2026 GMT Subject: CN=69e1969e-e03b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:13:58:05:77:55:f8:6e:ae:88:c3:38:0f:f5: 4b:41:70:76:01:1c:23:28:68:d0:57:ce:21:84:9b: 59:a4:37:5b:1b:7b:91:e2:9c:f6:f5:a1:5f:38:7b: 03:35:ad:d6:2e:ad:35:61:00:d2:92:c3:bf:18:7d: 82:5b:52:33:4f:f5:27:fc:45:1e:a9:50:44:ad:2e: 1d:98:9d:9a:32:84:27:fd:f7:27:e7:43:a9:74:9c: 6f:92:86:48:cd:f3:dc:3a:9e:75:32:23:1f:c8:34: 77:65:e7:d5:ca:4d:4d:38:2c:3e:f6:73:15:b7:05: ad:1f:2c:35:b0:38:64:5f:e2:9e:d8:bd:7c:d5:40: ed:c5:fc:0f:7d:66:56:e9:b3:c3:ac:8e:28:9c:d9: a1:f1:50:8d:7e:93:7c:42:52:dc:24:05:f4:ba:7b: d0:5c:36:ca:14:22:ec:7a:4c:02:1e:85:86:51:76: 68:19:38:37:cc:6a:6e:a8:a9:94:60:91:ef:e1:c7: 33:59:f2:08:de:3f:d9:b5:1f:2f:cf:2d:17:46:9b: 15:77:9d:49:76:58:d7:d7:72:f0:43:85:27:69:bf: 89:35:9b:d6:65:10:ea:09:38:2a:7f:e6:ac:1f:9e: 93:9b:62:15:39:08:7e:3c:64:73:2b:c8:d1:81:76: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:97:6C:7A:28:71:D8:F1:C2:D7:27:7D:AB:B3:D6:CE:12:85:0C:D3 X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:47:24:96:77:a3:e7:47:57:b2:ff:e7:84:1f:41:44:5c:12: 76:ac:08:54:a2:f3:45:13:09:47:8f:5e:b3:95:22:5d:67:29: 4c:2f:57:3d:b5:93:ae:8a:b2:7b:45:f8:5f:79:ff:50:1d:e1: 2c:fd:c7:c5:c2:3e:1c:75:8b:da:29:5f:66:b7:41:56:46:eb: 95:70:08:42:32:fe:4c:39:7b:90:24:a2:39:09:db:68:d4:fb: 22:c0:10:2d:0f:91:1a:d5:66:e4:b2:13:1e:af:82:d3:a4:3c: 9d:08:8a:1e:87:f3:64:40:af:16:4c:13:03:42:89:7b:28:78: 17:5c:12:ea:33:0e:61:d4:46:67:69:46:d6:3c:f2:5a:03:57: 21:25:39:d1:51:74:33:6d:60:0c:dd:4f:2d:69:a6:4a:f6:48: 51:59:44:c7:a1:e6:2a:49:0f:30:89:08:67:18:e2:e3:83:c5: fb:d0:96:94:15:7a:01:54:ca:11:04:15:df:de:66:3e:32:3a: 70:cb:95:7e:1f:67:a2:5c:a2:d4:60:eb:96:54:76:d5:b4:94: 92:73:60:db:85:57:5a:73:0a:f8:b4:5f:67:c4:ea:ef:0b:dc: 2c:38:ba:19:c6:2d:a8:91:cd:3e:e8:42:74:c0:b6:c8:12:37: cf:84:b0:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjYwNDE3MDIxMDM4WhcNMjYwNDI0MDIxMDM4WjAYMRYwFAYD VQQDEw02OWUxOTY5ZS1lMDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkxNYBXdV+G6uiMM4D/VLQXB2ARwjKGjQV84hhJtZpDdbG3uR4pz29aFfOHsD Na3WLq01YQDSksO/GH2CW1IzT/Un/EUeqVBErS4dmJ2aMoQn/fcn50OpdJxvkoZI zfPcOp51MiMfyDR3ZefVyk1NOCw+9nMVtwWtHyw1sDhkX+Ke2L181UDtxfwPfWZW 6bPDrI4onNmh8VCNfpN8QlLcJAX0unvQXDbKFCLsekwCHoWGUXZoGTg3zGpuqKmU YJHv4cczWfII3j/ZtR8vzy0XRpsVd51JdljX13LwQ4Unab+JNZvWZRDqCTgqf+as H56Tm2IVOQh+PGRzK8jRgXZa7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFICXbHoo cdjxwtcnfauz1s4ShQzTMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIUcklnej50dXsv/nhB9BRFwSdqwIVKLzRRMJR49es5UiXWcpTC9XPbWTroqy e0X4X3n/UB3hLP3HxcI+HHWL2ilfZrdBVkbrlXAIQjL+TDl7kCSiOQnbaNT7IsAQ LQ+RGtVm5LITHq+C06Q8nQiKHofzZECvFkwTA0KJeyh4F1wS6jMOYdRGZ2lG1jzy WgNXISU50VF0M21gDN1PLWmmSvZIUVlEx6HmKkkPMIkIZxji44PF+9CWlBV6AVTK EQQV395mPjI6cMuVfh9nolyi1GDrllR21bSUknNg24VXWnMK+LRfZ8Tq7wvcLDi6 GcYtqJHNPuhCdMC2yBI3z4SwnQ== -----END CERTIFICATE-----Generated at Fri Apr 17 09:38:55 2026 by rpki-client