$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: UCoVYNMb/3pGen0cRTTjd1+t7cp0rUmh+i9soFTrmZw= Subject key identifier: 43:52:5E:8A:0D:22:87:89:3C:00:33:E7:17:10:6F:4D:7A:80:9C:FA Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 04B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 04A4 Signing time: Thu 16 Apr 2026 23:52:17 +0000 Manifest this update: Thu 16 Apr 2026 23:52:16 +0000 Manifest next update: Thu 23 Apr 2026 23:52:16 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: pJgkq74fwkxUzxxDaZK4fdcM+M/+OE1Fi2GTXYmTrsw=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: BfgbyrDUSPaDFbvmIvU+wE2M70H25WXoCbwhEXrv7bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:52:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Apr 16 23:52:16 2026 GMT Not After : Apr 23 23:52:16 2026 GMT Subject: CN=69e17630-1242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6b:90:f6:09:bb:70:42:b0:16:b6:f5:f6:63: 7a:64:be:21:57:1d:ee:27:3b:73:db:b8:29:c1:cb: b9:82:fb:90:78:19:bc:57:80:4f:f0:a0:be:a0:9f: c5:5c:cf:1d:bd:54:4b:62:38:5f:56:91:46:44:89: cd:c8:e4:f7:3c:82:cc:9d:e4:d3:58:93:ee:50:19: ca:17:f3:a5:b8:6d:9c:ae:49:48:cc:f6:6c:02:dc: 30:54:cf:04:f4:eb:96:77:e1:05:db:73:31:c8:ff: 58:57:c6:0b:74:68:d5:10:1e:e3:90:80:8b:50:50: 3b:0c:e8:0f:bd:de:ac:4f:07:dc:8e:0d:30:2b:9c: 3d:4e:52:c6:aa:59:f3:19:5f:25:4d:b8:13:59:8a: d4:1d:66:9f:67:c2:e1:aa:d7:9b:de:fa:48:0b:6b: 54:0b:ad:2b:b3:26:aa:83:03:99:ce:cb:82:ca:e3: aa:c1:6d:e7:ed:95:c7:e3:b5:de:e2:b1:80:dc:6f: c2:78:f3:07:72:34:52:d5:9c:6d:0d:5a:ab:ed:23: 3f:f5:0e:d8:3b:97:a1:47:bb:7e:d4:3c:a8:41:74: b5:41:52:2c:41:a0:22:e4:76:f8:84:71:81:c1:4a: 16:1e:60:32:0b:d5:d7:66:a1:1e:83:a9:5c:45:1d: 9e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:52:5E:8A:0D:22:87:89:3C:00:33:E7:17:10:6F:4D:7A:80:9C:FA X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:9c:70:a0:4e:23:2a:f8:d1:96:79:ad:35:da:0d:e3:a9:6b: 07:ff:b4:48:00:21:4e:49:8e:73:c7:c0:9a:06:fa:83:bc:24: 2c:59:73:7b:52:df:ce:ad:58:a9:83:8e:53:e3:fd:13:01:46: df:78:ed:aa:63:f7:6c:34:1c:be:a5:39:64:81:0f:6e:a8:4c: d4:b7:b0:74:a1:9f:5c:37:46:d6:ed:1c:91:31:8a:04:1e:89: 2e:f7:17:58:73:07:fd:ab:57:a8:bc:54:2f:17:20:75:1b:c6: e7:8b:41:87:1d:14:ca:6d:e2:cc:d0:81:79:54:16:10:1b:f3: a9:7a:e8:42:34:4d:f8:92:42:22:6f:4e:4a:a9:6f:aa:7d:d1: af:26:88:55:53:56:60:2d:a9:f1:d4:aa:42:d1:20:01:80:1c: c2:dc:18:a9:7f:f6:2b:c8:c3:b6:da:e2:e5:66:80:f9:d2:1a: 5f:e8:4c:f0:71:a0:64:17:8e:39:73:d4:29:5a:70:7f:a4:b6: 84:31:a2:b8:f2:8a:80:89:e1:5e:3d:b0:be:56:e2:fc:56:b6: c6:99:ce:34:ed:f6:99:71:a7:2c:8b:c4:0d:68:0b:6f:5d:ee: 45:61:70:45:de:15:f1:94:9f:4c:fa:b4:56:6d:27:b8:53:b6: 4a:19:c5:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjYwNDE2MjM1MjE2WhcNMjYwNDIzMjM1MjE2WjAYMRYwFAYD VQQDEw02OWUxNzYzMC0xMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WuQ9gm7cEKwFrb19mN6ZL4hVx3uJztz27gpwcu5gvuQeBm8V4BP8KC+oJ/F XM8dvVRLYjhfVpFGRInNyOT3PILMneTTWJPuUBnKF/OluG2crklIzPZsAtwwVM8E 9OuWd+EF23MxyP9YV8YLdGjVEB7jkICLUFA7DOgPvd6sTwfcjg0wK5w9TlLGqlnz GV8lTbgTWYrUHWafZ8Lhqteb3vpIC2tUC60rsyaqgwOZzsuCyuOqwW3n7ZXH47Xe 4rGA3G/CePMHcjRS1ZxtDVqr7SM/9Q7YO5ehR7t+1DyoQXS1QVIsQaAi5Hb4hHGB wUoWHmAyC9XXZqEeg6lcRR2erQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFENSXooN IoeJPAAz5xcQb016gJz6MB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAz5xwoE4jKvjRlnmtNdoN46lrB/+0SAAhTkmOc8fAmgb6g7wkLFlze1Lfzq1Y qYOOU+P9EwFG33jtqmP3bDQcvqU5ZIEPbqhM1LewdKGfXDdG1u0ckTGKBB6JLvcX WHMH/atXqLxULxcgdRvG54tBhx0Uym3izNCBeVQWEBvzqXroQjRN+JJCIm9OSqlv qn3RryaIVVNWYC2p8dSqQtEgAYAcwtwYqX/2K8jDttri5WaA+dIaX+hM8HGgZBeO OXPUKVpwf6S2hDGiuPKKgInhXj2wvlbi/Fa2xpnONO32mXGnLIvEDWgLb13uRWFw Rd4V8ZSfTPq0Vm0nuFO2ShnFVg== -----END CERTIFICATE-----Generated at Fri Apr 17 05:31:29 2026 by rpki-client