$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: nKNb5qujxlYrT3G9WRv5H1mYrKMP/2IYxueBh403zXI= Subject key identifier: 5B:66:7E:26:27:11:E7:E5:67:44:61:93:3E:36:86:0B:5B:7D:0C:7C Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 8C Signing time: Fri 17 Apr 2026 07:20:40 +0000 Manifest this update: Fri 17 Apr 2026 07:20:40 +0000 Manifest next update: Fri 24 Apr 2026 07:20:40 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: wcmutwZMvhnKW2EQ+hrEK16Oth31ti+GnjD4ZvRkIBI=) 2: 18DC6A2602A311F188F4114D3A3D8C67.roa (hash: t3GNpUerhP0cJPbY48i/kbcLRCBSWRa0pQ+pR8/EBR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: Apr 17 07:20:40 2026 GMT Not After : Apr 24 07:20:40 2026 GMT Subject: CN=69e1df48-9687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:79:0f:05:fb:0a:29:7e:ef:89:7e:4a:26:43: 35:9c:5a:be:ea:f5:67:3a:55:62:47:5b:ad:a5:83: 40:10:bd:73:37:1f:13:0c:06:d4:9f:a3:81:f2:fd: 57:8e:0e:21:ed:89:19:3f:91:f7:45:83:6f:ca:cf: 74:0a:ea:1d:c3:48:f7:07:72:e2:cf:62:20:d7:ff: d5:25:2f:3d:9f:89:f1:cf:f6:3b:d4:e0:5e:b6:3d: bb:f5:eb:87:fc:ba:4a:b9:89:03:07:10:f0:ea:27: e6:ea:c8:a6:b9:45:92:3f:c8:b7:8c:ca:e9:6e:4c: b7:74:3f:63:e0:da:e6:84:46:25:f1:9c:87:fa:87: 33:3c:16:4c:1d:82:69:8d:33:69:19:85:af:99:e8: 8a:f6:3b:22:3e:27:7f:4d:b1:48:f3:f0:c1:ce:35: 16:d3:c6:fc:bb:de:af:a6:dc:ae:07:6b:b4:34:47: cc:1c:11:25:6f:7b:57:20:21:e0:98:6c:77:4d:48: a9:ef:8f:d9:12:24:f0:0e:1b:28:45:cf:29:c9:fe: 96:57:cc:06:e3:8f:ca:08:d4:4e:d3:03:71:fd:6a: 75:be:39:f6:34:fc:23:4c:0e:d9:0b:9c:55:a6:92: 1c:f4:08:70:f1:bb:4d:25:78:87:f4:29:e0:e5:15: bd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:66:7E:26:27:11:E7:E5:67:44:61:93:3E:36:86:0B:5B:7D:0C:7C X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e8:74:76:fc:1b:44:9d:48:a3:e5:cb:da:29:85:51:7d:25: 76:08:ba:cd:69:1e:7e:7b:d1:41:5f:21:dc:7a:da:fb:7e:ee: 83:2d:d0:08:bf:c3:1a:73:af:a9:be:06:5f:22:c9:26:81:80: 3e:33:cc:da:63:51:42:53:75:bc:c6:c0:72:36:f1:e9:f1:1d: 70:95:9f:4f:5e:dc:49:78:f6:d5:e1:46:4c:1d:45:9f:df:1e: e9:57:3f:95:64:c3:da:16:58:80:13:b2:48:55:45:fb:07:0d: b0:fe:3f:42:a6:c9:e5:31:0d:0b:1a:bc:f1:3c:51:5a:57:d8: 0d:8b:50:8d:10:a6:69:34:58:5e:b5:bf:1c:13:2e:28:98:42: fa:45:5b:a7:63:f0:5f:41:0d:a6:21:04:62:93:4a:e1:64:41: 3d:e2:8c:45:b1:77:fe:93:93:94:95:a6:11:9d:86:1e:2d:46: 8f:85:84:4f:4a:72:49:0c:a9:7d:dc:ac:67:77:9d:03:1b:b4: 9e:a5:7a:2e:22:01:01:f0:c4:80:03:c9:52:13:1e:eb:6f:29: eb:fd:4c:81:0d:cb:c3:a8:09:8e:e6:bd:6e:75:fe:7a:20:81: 29:de:04:93:a8:f5:1a:9d:e2:18:2c:79:95:25:5c:34:03:93: b3:96:0e:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDQTgxMTAvBgNVBAUTKEREMjgwODI4RkYwOTk2QThDQkVGMjlCRjBEOTE0REYy NTJERjFDQkQwHhcNMjYwNDE3MDcyMDQwWhcNMjYwNDI0MDcyMDQwWjAYMRYwFAYD VQQDEw02OWUxZGY0OC05Njg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHkPBfsKKX7viX5KJkM1nFq+6vVnOlViR1utpYNAEL1zNx8TDAbUn6OB8v1X jg4h7YkZP5H3RYNvys90Cuodw0j3B3Liz2Ig1//VJS89n4nxz/Y71OBetj279euH /LpKuYkDBxDw6ifm6simuUWSP8i3jMrpbky3dD9j4NrmhEYl8ZyH+oczPBZMHYJp jTNpGYWvmeiK9jsiPid/TbFI8/DBzjUW08b8u96vptyuB2u0NEfMHBElb3tXICHg mGx3TUip74/ZEiTwDhsoRc8pyf6WV8wG44/KCNRO0wNx/Wp1vjn2NPwjTA7ZC5xV ppIc9Ahw8btNJXiH9Cng5RW9FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFtmfiYn EeflZ0Rhkz42hgtbfQx8MB8GA1UdIwQYMBaAFN0oCCj/CZaoy+8pvw2RTfJS3xy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NBOC82QTlFOTE1QzZF RTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxxakw3eW1fRFpGTjhsTGZI TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NBOC82QTlFOTE1QzZFRTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxx akw3eW1fRFpGTjhsTGZITDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqeh0dvwbRJ1Io+XL2imFUX0ldgi6zWkefnvRQV8h3Hra+37ugy3QCL/DGnOv qb4GXyLJJoGAPjPM2mNRQlN1vMbAcjbx6fEdcJWfT17cSXj21eFGTB1Fn98e6Vc/ lWTD2hZYgBOySFVF+wcNsP4/QqbJ5TENCxq88TxRWlfYDYtQjRCmaTRYXrW/HBMu KJhC+kVbp2PwX0ENpiEEYpNK4WRBPeKMRbF3/pOTlJWmEZ2GHi1Gj4WET0pySQyp fdysZ3edAxu0nqV6LiIBAfDEgAPJUhMe628p6/1MgQ3Lw6gJjua9bnX+eiCBKd4E k6j1Gp3iGCx5lSVcNAOTs5YOyw== -----END CERTIFICATE-----Generated at Fri Apr 17 21:16:52 2026 by rpki-client