$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: 5m2xkCKjIs53dma55K8FfHRhmu19iAVNn/uEiVWXsIU= Subject key identifier: C5:7A:11:AE:B3:67:D4:4D:89:FF:07:EB:79:6F:61:FC:9A:3D:14:DE Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1C52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1C3D Signing time: Thu 16 Apr 2026 16:10:00 +0000 Manifest this update: Thu 16 Apr 2026 16:09:59 +0000 Manifest next update: Thu 23 Apr 2026 16:09:59 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: KYgky3zRpMX5/7aADexcXZWh+WQ++QR1IprarXaNqAU=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: fv4oRIQ4Gxh8CoHiTKL/BcGQRnYE0nj0QiSPtWSrjAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7250 (0x1c52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Apr 16 16:09:59 2026 GMT Not After : Apr 23 16:09:59 2026 GMT Subject: CN=69e109d8-bb26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f7:ac:19:51:10:9b:dc:a7:1e:2b:71:6d:c4: d6:90:94:c9:08:9f:7f:8a:70:cb:20:b8:cf:7a:e3: f9:a5:61:15:6f:15:74:c4:66:ff:7f:ed:67:b1:1c: 03:73:2e:4b:ef:d3:01:c9:53:f0:a5:bd:f9:22:5b: ae:b3:9a:d9:a2:2e:5f:cc:cb:e7:d6:c7:48:ba:18: 08:7d:c6:98:80:96:7b:62:e1:fd:06:23:7b:d2:e3: b6:8e:e2:85:2d:db:ac:0d:14:62:0e:8b:54:7c:f2: 87:d8:dd:fc:84:db:53:15:f3:16:af:1e:18:35:59: 76:e5:1a:aa:40:d7:d1:01:af:f2:0f:ee:47:da:90: 5d:6c:bb:e1:57:18:c8:9e:ee:65:19:8c:ea:dd:54: 86:7c:34:e2:e9:7c:93:38:9d:ea:bc:e9:4a:3d:ff: 46:02:74:f2:83:a9:a0:79:6e:a9:4e:0c:68:94:c6: 43:e6:c7:5b:ad:f4:e8:b4:ce:c8:ec:a2:6f:c4:f9: 7b:4f:f3:75:28:de:e1:34:97:17:3e:dc:56:6c:05: 0a:3a:62:a7:da:a4:27:49:c3:90:a7:eb:82:f2:9b: 11:92:67:e1:a7:af:cf:72:9d:ac:6e:00:67:d7:b7: d2:c3:e0:5b:2f:09:aa:91:96:dd:65:18:2e:0c:f5: 4c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:7A:11:AE:B3:67:D4:4D:89:FF:07:EB:79:6F:61:FC:9A:3D:14:DE X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:d8:91:2d:8b:59:72:e8:94:1b:9a:67:06:19:03:ca:86:b7: 69:67:ed:12:88:75:29:f2:8d:ac:ae:2d:7c:fe:8b:f2:ea:eb: c3:30:cd:46:91:18:53:9a:6f:ba:0d:e5:37:b0:fc:50:cb:fa: 36:e3:26:90:56:d4:9f:42:b5:9c:29:dc:45:be:3f:fb:b2:77: 5e:c4:fa:04:72:c4:dc:d0:6c:cf:dd:e3:6e:33:e7:73:c2:ca: f3:7a:de:91:24:85:90:40:4a:0e:aa:92:f1:8a:77:b7:81:07: 0e:9b:88:bb:2a:c3:4a:fd:92:71:6a:96:5f:9c:25:51:8b:af: 88:3b:4d:da:8a:cb:5f:ed:ad:52:22:fd:55:d9:f6:d6:b4:4a: e0:90:40:23:b0:f3:29:79:6d:10:41:c4:d1:df:ca:f7:68:e6: 0b:b7:0b:cc:09:9f:62:5f:9f:7d:af:33:83:b8:0b:ac:57:ae: 3d:14:3b:cc:7d:98:10:28:cc:a4:9a:5b:7c:72:db:95:c3:bc: a8:7f:df:66:1b:db:e9:ce:32:92:08:4c:cc:0f:7e:37:54:e9: 47:3b:86:5b:a9:28:de:33:96:29:44:62:98:a2:b7:ea:44:b4: e8:41:88:fe:ce:4f:bc:4e:c4:19:d4:84:c6:04:3d:2c:47:23: db:91:45:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjYwNDE2MTYwOTU5WhcNMjYwNDIzMTYwOTU5WjAYMRYwFAYD VQQDEw02OWUxMDlkOC1iYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfesGVEQm9ynHitxbcTWkJTJCJ9/inDLILjPeuP5pWEVbxV0xGb/f+1nsRwD cy5L79MByVPwpb35Iluus5rZoi5fzMvn1sdIuhgIfcaYgJZ7YuH9BiN70uO2juKF LdusDRRiDotUfPKH2N38hNtTFfMWrx4YNVl25RqqQNfRAa/yD+5H2pBdbLvhVxjI nu5lGYzq3VSGfDTi6XyTOJ3qvOlKPf9GAnTyg6mgeW6pTgxolMZD5sdbrfTotM7I 7KJvxPl7T/N1KN7hNJcXPtxWbAUKOmKn2qQnScOQp+uC8psRkmfhp6/Pcp2sbgBn 17fSw+BbLwmqkZbdZRguDPVMVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMV6Ea6z Z9RNif8H63lvYfyaPRTeMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABdiRLYtZcuiUG5pnBhkDyoa3aWftEoh1KfKNrK4tfP6L8urrwzDNRpEYU5pv ug3lN7D8UMv6NuMmkFbUn0K1nCncRb4/+7J3XsT6BHLE3NBsz93jbjPnc8LK83re kSSFkEBKDqqS8Yp3t4EHDpuIuyrDSv2ScWqWX5wlUYuviDtN2orLX+2tUiL9Vdn2 1rRK4JBAI7DzKXltEEHE0d/K92jmC7cLzAmfYl+ffa8zg7gLrFeuPRQ7zH2YECjM pJpbfHLblcO8qH/fZhvb6c4ykghMzA9+N1TpRzuGW6ko3jOWKURimKK36kS06EGI /s5PvE7EGdSExgQ9LEcj25FFxA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:34:03 2026 by rpki-client