$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft File: aR7cVncnIjOjjzNRkaropa4q97k.mft (raw, json) Hash identifier: XPdsIwmrAyC2TFF2C+VmBJvz7ISDbqrFfeJ7j5FJugo= Subject key identifier: 43:F5:51:64:2E:2D:C3:1A:CA:C0:BC:29:F2:BC:B2:DE:24:6C:26:D0 Authority key identifier: 69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 Certificate issuer: /CN=A9155725/serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft Manifest number: CA Signing time: Fri 17 Apr 2026 06:33:17 +0000 Manifest this update: Fri 17 Apr 2026 06:33:16 +0000 Manifest next update: Fri 24 Apr 2026 06:33:16 +0000 Files and hashes: 1: aR7cVncnIjOjjzNRkaropa4q97k.crl (hash: KOoEtpa+CL1oHSmNiEdxqYCX4bWqxRyt13Q+hJpTpTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Validity Not Before: Apr 17 06:33:16 2026 GMT Not After : Apr 24 06:33:16 2026 GMT Subject: CN=69e1d42d-3f9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8e:3f:78:fc:8f:8d:72:c2:3d:3d:c9:09:d2: 09:af:3f:22:64:b7:37:04:c8:29:68:b0:84:bc:66: 04:5f:c6:b2:5e:2f:7c:cb:84:6a:e9:da:75:9f:a9: dc:65:ec:86:d7:50:97:67:9d:ef:0f:26:ae:d1:44: b9:99:f9:2e:bb:f7:e1:51:64:da:fd:c5:43:37:18: 36:ba:57:e9:1c:d1:fa:b2:14:de:c1:a6:c4:81:bb: ba:f5:f5:05:6c:9b:30:a9:3c:ec:58:c1:ee:d1:4f: 1c:43:b2:00:1f:b3:5e:3f:54:45:fc:ef:d5:55:a9: f2:f3:3a:4d:05:a6:88:57:5b:b9:10:1c:60:95:d1: 16:be:1e:ff:4f:12:4c:a6:9e:ef:22:ff:a7:90:3a: 0f:92:ae:36:42:e3:67:44:6d:b0:78:72:df:fc:ce: e2:53:03:f9:b8:8f:73:ac:6c:07:91:5c:e8:6b:d5: a6:9c:9c:53:90:97:2e:5c:76:e4:13:f5:1c:13:e4: 50:ef:5e:8a:80:1f:79:cc:d5:0f:30:f4:7c:c9:b5: a0:b6:49:73:ef:56:3f:f0:a1:8d:a0:4b:e8:0b:aa: 94:29:80:9c:ca:f2:0e:bc:c7:da:23:58:0f:95:60: 2d:bf:a3:3d:ed:30:95:14:85:0d:a0:34:dd:20:77: d1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F5:51:64:2E:2D:C3:1A:CA:C0:BC:29:F2:BC:B2:DE:24:6C:26:D0 X509v3 Authority Key Identifier: keyid:69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:d6:cb:d3:12:2c:60:74:83:38:19:03:6e:a5:54:ce:da:1c: bd:4f:02:45:f1:f8:c3:e5:53:b8:39:d3:6a:2b:7b:25:f8:e5: 48:b4:5f:53:1c:f7:6f:28:a3:6d:12:60:18:db:84:7f:4b:0e: 6b:a4:91:2b:08:65:1f:39:99:5a:1c:63:f7:6c:22:a6:14:15: 63:6d:fe:3b:ba:ef:71:8b:85:ff:c3:25:d5:58:88:f7:6c:ce: 83:6f:74:6a:31:96:69:ff:b3:91:2b:4a:62:49:0f:ce:31:6f: 84:7e:50:8b:d7:87:c1:30:0d:e8:a8:88:92:7b:b0:b1:3d:cd: 51:ab:fc:0c:69:98:6c:c6:eb:a4:69:01:d8:4b:63:5a:fd:bd: b4:7c:c4:6f:e7:2c:50:0d:48:be:fd:db:ad:e4:de:58:d9:42: ba:40:48:7a:b5:ab:fb:cc:1a:c6:9c:85:14:1e:dc:c5:18:40: d3:44:06:8f:85:f2:f3:db:cc:69:52:e0:f0:20:1e:f2:45:fc: 07:98:ca:ff:3c:dd:7d:fe:94:20:a0:51:b6:0d:7b:36:c5:42: 5b:7e:22:9d:02:c5:5d:c1:8d:02:e7:21:0b:97:c7:4d:0e:d6: 2b:7c:2a:18:e8:7b:10:8a:68:b4:40:80:d4:ee:6a:2d:8c:89: e6:14:bc:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3MjUxMTAvBgNVBAUTKDY5MUVEQzU2NzcyNzIyMzNBMzhGMzM1MTkxQUFFOEE1 QUUyQUY3QjkwHhcNMjYwNDE3MDYzMzE2WhcNMjYwNDI0MDYzMzE2WjAYMRYwFAYD VQQDEw02OWUxZDQyZC0zZjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApI4/ePyPjXLCPT3JCdIJrz8iZLc3BMgpaLCEvGYEX8ayXi98y4Rq6dp1n6nc ZeyG11CXZ53vDyau0US5mfkuu/fhUWTa/cVDNxg2ulfpHNH6shTewabEgbu69fUF bJswqTzsWMHu0U8cQ7IAH7NeP1RF/O/VVany8zpNBaaIV1u5EBxgldEWvh7/TxJM pp7vIv+nkDoPkq42QuNnRG2weHLf/M7iUwP5uI9zrGwHkVzoa9WmnJxTkJcuXHbk E/UcE+RQ716KgB95zNUPMPR8ybWgtklz71Y/8KGNoEvoC6qUKYCcyvIOvMfaI1gP lWAtv6M97TCVFIUNoDTdIHfRIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEP1UWQu LcMaysC8KfK8st4kbCbQMB8GA1UdIwQYMBaAFGke3FZ3JyIzo48zUZGq6KWuKve5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTcyNS81QTY2Q0Y2ODA4 M0ExMUYwOUZGMUQwNzRDNEY5QUUwMi9hUjdjVm5jbklqT2pqek5Sa2Fyb3BhNHE5 N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FSN2NWbmNuSWpPamp6TlJrYXJvcGE0cTk3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTcyNS81QTY2Q0Y2ODA4M0ExMUYwOUZGMUQwNzRDNEY5QUUwMi9hUjdjVm5jbklq T2pqek5Sa2Fyb3BhNHE5N2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3dbL0xIsYHSDOBkDbqVUztocvU8CRfH4w+VTuDnTait7JfjlSLRfUxz3byij bRJgGNuEf0sOa6SRKwhlHzmZWhxj92wiphQVY23+O7rvcYuF/8Ml1ViI92zOg290 ajGWaf+zkStKYkkPzjFvhH5Qi9eHwTAN6KiIknuwsT3NUav8DGmYbMbrpGkB2Etj Wv29tHzEb+csUA1Ivv3breTeWNlCukBIerWr+8waxpyFFB7cxRhA00QGj4Xy89vM aVLg8CAe8kX8B5jK/zzdff6UIKBRtg17NsVCW34inQLFXcGNAuchC5fHTQ7WK3wq GOh7EIpotECA1O5qLYyJ5hS8Og== -----END CERTIFICATE-----Generated at Fri Apr 17 20:06:55 2026 by rpki-client