$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: aBMai9WmyLhRUYCje5I8jbry0soeaoXmJYPS1uw/Zno= Subject key identifier: 0C:FA:8A:D7:28:5B:78:9B:DA:6F:9B:70:62:8C:EE:EA:C7:1A:AE:80 Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 357C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 3549 Signing time: Thu 16 Apr 2026 14:19:41 +0000 Manifest this update: Thu 16 Apr 2026 14:19:41 +0000 Manifest next update: Thu 23 Apr 2026 14:19:41 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: 4BCFrOLo/s4qFOdF5WhkWdqrqHm2Xizur4cJOPJ6t9A=) 2: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: htjWNsJYRCHi02awtSfLaI7Ni5BaFwbvL87PQ+0VPg4=) 3: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: t1FUONQlvo1z1vAcNEflgs9l4NJNKngDzGvyUzZvKfw=) 4: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: 2V0xaBVMH3qwSFGGeVHjMLvkAdaeXJP/NN3OOPBpG2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13692 (0x357c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Apr 16 14:19:41 2026 GMT Not After : Apr 23 14:19:41 2026 GMT Subject: CN=69e0effd-365d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c5:3f:16:a4:de:fd:52:65:04:27:d2:9d:54: 74:32:62:67:57:5f:16:3d:36:d3:e6:f4:bb:0a:6c: f6:2c:63:7e:6e:c9:18:37:26:3c:2c:d6:cc:98:b5: 14:61:c0:fa:19:2c:6b:4a:6b:45:12:23:b4:71:d6: ae:65:b2:89:d8:2a:8e:30:45:4f:b4:59:dc:ff:93: b0:c9:a9:9d:f5:8a:09:ec:af:af:5e:b8:73:4b:43: 6a:d3:8f:17:ad:54:9e:2d:50:f5:15:8a:8f:07:61: 0b:00:1a:e7:85:d6:80:10:75:3b:70:b8:ed:f7:95: 46:e7:6f:31:e8:cb:66:fb:e6:c6:75:bf:ac:8e:23: c1:13:03:da:9b:d7:df:28:ad:db:95:ff:52:61:9d: b7:1a:b0:83:ce:a0:3c:b9:29:b0:43:fa:09:bc:45: b8:56:4d:c2:7f:af:72:75:aa:dc:fd:f3:34:39:9c: 4f:98:5a:4d:d3:cc:7a:a5:8c:d9:ba:a5:b8:27:3d: 11:f3:2e:75:b7:a7:56:0d:93:4f:76:63:df:26:f3: da:de:99:69:16:8f:03:11:ff:d3:a7:c7:47:32:33: 4d:d9:0a:24:a2:f9:0a:08:49:25:43:0d:7b:9d:2c: d6:d6:e9:df:da:f4:a5:2a:f2:59:88:96:4c:cd:b8: 82:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FA:8A:D7:28:5B:78:9B:DA:6F:9B:70:62:8C:EE:EA:C7:1A:AE:80 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:b6:38:ca:02:03:8d:37:d6:0e:9a:a9:4b:6d:a9:17:42:b4: 19:9a:0d:0e:c3:f1:c3:92:21:4a:be:92:f5:0c:af:97:b5:9e: dd:d6:fd:5b:63:6e:90:71:40:42:b9:18:3d:cd:21:26:21:f4: 86:7b:c8:15:ea:a1:ad:a8:ff:78:15:39:b7:66:ea:1e:9b:9f: 19:8e:50:1b:6d:7a:a0:96:ef:99:b1:40:7d:9c:8d:a1:19:ed: 36:0e:de:00:c7:26:30:8d:02:f4:44:e5:f4:12:6a:bb:23:d4: 30:26:be:f9:97:6b:aa:69:77:1c:83:4e:f9:68:5b:be:0d:a0: 21:71:b0:49:59:5c:b7:4b:b9:b7:bc:ec:07:7f:d5:2f:c5:9f: 12:45:e1:34:b8:a2:76:9e:3a:ee:1c:5c:0f:60:08:51:68:3f: f6:51:09:bb:7c:65:f0:6f:ec:07:ae:e4:7c:9b:a3:4c:58:fd: 71:1c:3e:d6:20:37:2d:92:43:f9:3c:2d:77:7e:95:9f:f5:8b: 9c:c4:97:2c:b5:1a:f9:a3:84:27:26:d7:b5:c1:b6:c1:d9:9b: e2:4f:1e:c2:df:39:8f:04:09:60:e7:9d:09:97:dd:f5:f9:48: ff:f5:8a:f4:af:a5:07:49:92:4a:6d:11:83:5f:c4:cf:d9:5f: 49:bb:63:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjYwNDE2MTQxOTQxWhcNMjYwNDIzMTQxOTQxWjAYMRYwFAYD VQQDEw02OWUwZWZmZC0zNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8U/FqTe/VJlBCfSnVR0MmJnV18WPTbT5vS7Cmz2LGN+bskYNyY8LNbMmLUU YcD6GSxrSmtFEiO0cdauZbKJ2CqOMEVPtFnc/5Owyamd9YoJ7K+vXrhzS0Nq048X rVSeLVD1FYqPB2ELABrnhdaAEHU7cLjt95VG528x6Mtm++bGdb+sjiPBEwPam9ff KK3blf9SYZ23GrCDzqA8uSmwQ/oJvEW4Vk3Cf69ydarc/fM0OZxPmFpN08x6pYzZ uqW4Jz0R8y51t6dWDZNPdmPfJvPa3plpFo8DEf/Tp8dHMjNN2QokovkKCEklQw17 nSzW1unf2vSlKvJZiJZMzbiC3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAz6itco W3ib2m+bcGKM7urHGq6AMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHrY4ygIDjTfWDpqpS22pF0K0GZoNDsPxw5IhSr6S9Qyvl7We3db9W2NukHFA QrkYPc0hJiH0hnvIFeqhraj/eBU5t2bqHpufGY5QG216oJbvmbFAfZyNoRntNg7e AMcmMI0C9ETl9BJquyPUMCa++Zdrqml3HINO+Whbvg2gIXGwSVlct0u5t7zsB3/V L8WfEkXhNLiidp467hxcD2AIUWg/9lEJu3xl8G/sB67kfJujTFj9cRw+1iA3LZJD +Twtd36Vn/WLnMSXLLUa+aOEJybXtcG2wdmb4k8ewt85jwQJYOedCZfd9flI//WK 9K+lB0mSSm0Rg1/Ez9lfSbtjyQ== -----END CERTIFICATE-----Generated at Fri Apr 17 15:13:27 2026 by rpki-client