$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: r78cBmD+HlJkxkZ96Hh7jSy8fh46l4VPCJHbvN5XpkU= Subject key identifier: 57:1F:F8:03:27:ED:EF:3D:C7:1B:9C:81:E8:4A:97:72:6D:26:7B:6E Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 17EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 17D4 Signing time: Thu 16 Apr 2026 16:30:09 +0000 Manifest this update: Thu 16 Apr 2026 16:30:09 +0000 Manifest next update: Thu 23 Apr 2026 16:30:09 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: BZSwtGxIM62xxZgvrj2YGpFHaJo2ZRPn21LPXXMYgEc=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: uUcprOeIeycDQ3Jf3Ku14FN2jhUWJP1tQvvTnmQc7Vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6122 (0x17ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Apr 16 16:30:09 2026 GMT Not After : Apr 23 16:30:09 2026 GMT Subject: CN=69e10e91-32d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5d:06:e6:d4:99:e5:b7:b8:1b:c6:90:e6:0b: 47:1c:86:8e:37:99:f4:15:99:60:65:7a:cd:51:6d: e2:ed:46:61:ec:ea:e0:14:10:ff:91:5b:1a:45:76: 6d:3a:16:8e:12:62:ca:55:9c:7e:b2:a4:1e:f4:b5: b2:5b:14:89:73:87:d8:cf:26:44:94:e8:79:cd:3e: 9d:4f:2b:a5:06:e0:82:0d:b4:9c:8b:dd:69:ea:ff: 0f:74:ec:7f:7a:6a:34:6f:a0:15:26:ee:1e:f6:85: 1d:37:22:c5:29:83:cf:29:e5:0b:85:39:7a:8f:4f: e1:a0:ae:39:6e:09:9d:86:a3:65:a4:a9:c3:e6:ae: f2:95:5e:e0:37:ab:05:dd:9c:d6:85:4a:6e:32:f0: ab:f5:1f:6f:de:e6:bc:88:63:1c:be:b8:0a:65:fb: 86:2a:11:eb:78:c8:7c:61:05:3d:4b:dd:ef:33:94: 7a:78:c1:0d:13:d1:11:80:1c:8c:49:a9:45:86:dd: 12:40:e4:b0:91:57:b4:82:7f:75:cc:5b:ba:62:fd: 55:bb:a2:e0:c1:7e:0d:79:fc:f6:43:85:24:4d:9d: 21:5e:4e:90:94:62:f7:bd:63:9c:c1:08:f4:4c:cc: f9:61:0e:d8:c3:4f:01:40:05:c0:0f:fa:07:90:21: a3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1F:F8:03:27:ED:EF:3D:C7:1B:9C:81:E8:4A:97:72:6D:26:7B:6E X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:05:d6:9e:01:aa:40:ce:75:af:a1:71:85:ad:bc:e3:5a:54: 60:e3:81:65:9b:f3:bb:c8:91:77:e6:9a:11:ad:74:a6:f3:64: 9b:d2:60:4f:04:96:4e:65:13:62:e5:f5:49:37:db:7d:58:66: 1f:51:be:4e:7e:10:a1:98:41:4d:25:e2:4d:3d:52:7a:39:86: 4e:1b:db:e8:a4:b9:eb:ad:75:48:6c:10:78:54:c2:fd:b8:f5: 65:b9:8e:3d:bb:3b:3f:20:ed:45:7d:a1:ba:97:61:64:a3:81: 00:43:52:4a:c1:f8:8e:1b:4b:0e:51:da:d1:e4:a2:3f:e9:d3: 07:66:ef:12:7a:97:a8:c4:de:cf:95:e9:c3:12:80:19:e6:70: 75:dc:ba:7e:9c:f0:57:bd:78:52:1c:a9:c7:79:14:a5:6d:86: e1:c2:b9:d6:49:ee:9b:c2:0f:a7:e2:5e:c4:13:cf:37:34:0f: 5d:4f:08:36:2e:d2:be:ea:f3:b3:0d:e8:fd:5f:a4:de:45:50: af:f0:61:00:f8:1b:d9:06:40:3a:dd:72:b2:2b:fe:c5:1c:15: fa:85:2f:dd:38:18:b1:fe:34:ce:e6:21:d1:92:7e:85:11:b5: 5f:c6:63:ba:3d:24:a6:ea:b6:b2:ab:54:e1:57:59:77:98:c8: 72:b3:5f:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjYwNDE2MTYzMDA5WhcNMjYwNDIzMTYzMDA5WjAYMRYwFAYD VQQDEw02OWUxMGU5MS0zMmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq10G5tSZ5be4G8aQ5gtHHIaON5n0FZlgZXrNUW3i7UZh7OrgFBD/kVsaRXZt OhaOEmLKVZx+sqQe9LWyWxSJc4fYzyZElOh5zT6dTyulBuCCDbSci91p6v8PdOx/ emo0b6AVJu4e9oUdNyLFKYPPKeULhTl6j0/hoK45bgmdhqNlpKnD5q7ylV7gN6sF 3ZzWhUpuMvCr9R9v3ua8iGMcvrgKZfuGKhHreMh8YQU9S93vM5R6eMENE9ERgByM SalFht0SQOSwkVe0gn91zFu6Yv1Vu6LgwX4Nefz2Q4UkTZ0hXk6QlGL3vWOcwQj0 TMz5YQ7Yw08BQAXAD/oHkCGjsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFcf+AMn 7e89xxucgehKl3JtJntuMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgwXWngGqQM51r6Fxha2841pUYOOBZZvzu8iRd+aaEa10pvNkm9JgTwSWTmUT YuX1STfbfVhmH1G+Tn4QoZhBTSXiTT1SejmGThvb6KS56611SGwQeFTC/bj1ZbmO Pbs7PyDtRX2hupdhZKOBAENSSsH4jhtLDlHa0eSiP+nTB2bvEnqXqMTez5XpwxKA GeZwddy6fpzwV714Uhypx3kUpW2G4cK51knum8IPp+JexBPPNzQPXU8INi7Svurz sw3o/V+k3kVQr/BhAPgb2QZAOt1ysiv+xRwV+oUv3TgYsf40zuYh0ZJ+hRG1X8Zj uj0kpuq2sqtU4VdZd5jIcrNfiA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:57:25 2026 by rpki-client