$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: /599+5fuQCqJkd2CmmA8mVgCmw8xf7tnZfFkyKh/DZY= Subject key identifier: A3:9E:49:9E:03:DD:EC:52:72:FE:DA:42:A1:81:12:C1:E7:E1:43:BE Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0A2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0A04 Signing time: Thu 16 Apr 2026 19:46:00 +0000 Manifest this update: Thu 16 Apr 2026 19:46:00 +0000 Manifest next update: Thu 23 Apr 2026 19:46:00 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: ddB73oL9INd3TaLygRA8cNwGdxn8QVcqFw3fkP47dA8=) 2: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: goeW12JBA3cKKGwjatqM92u32XRcfD8Zb78gB6ELWSk=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: Ix/A1HAv4E1o+T96OwAx6diCaMu8Un7l8lL1cR9lZ0I=) 4: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: hAA41RG01uNOAJq/J2qFIRJdJvtjuAyTCQh8VD7YTr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2603 (0xa2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Apr 16 19:46:00 2026 GMT Not After : Apr 23 19:46:00 2026 GMT Subject: CN=69e13c78-b9e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c2:1e:1e:e1:5c:99:2b:3f:51:76:f8:b9:d9: f5:3e:be:16:66:c0:24:81:94:44:ea:56:df:d2:15: 43:e9:3d:4b:9c:ac:10:96:f6:27:ff:a7:6d:e0:2d: 6d:01:0f:c7:22:06:47:b2:52:20:5f:0c:bc:29:20: fd:e1:59:af:42:32:1c:03:1d:dd:30:62:b4:1c:5c: ee:ef:fe:19:c2:c1:ec:56:eb:ce:96:fa:f6:a3:f6: 6d:c7:37:80:71:9a:f0:e8:df:02:1b:96:47:d0:f7: 3c:60:ef:5f:40:98:22:eb:3f:4e:40:d6:1e:a2:3f: e8:d8:dd:8e:84:4c:09:d6:7e:fb:0d:29:ba:45:7a: 6d:18:53:f1:ee:33:7f:b9:ac:4f:16:7a:ac:f0:8e: a1:f9:0c:95:ec:ba:9f:b4:ad:5e:d7:df:e1:ec:63: e0:cc:ac:00:ff:24:4f:5f:f7:04:03:d3:b0:59:36: 13:c7:8d:19:66:d7:89:9d:74:5d:eb:b7:05:8c:5f: 27:69:4e:6e:dc:21:00:f9:fb:bd:38:f6:16:f5:58: 01:c3:63:3e:b9:8f:9a:f8:d1:4e:87:58:c8:d1:41: 0c:26:b1:f3:b4:85:58:10:d4:40:6b:5f:5a:ae:17: 7e:93:ea:b4:02:7e:3a:bf:44:40:a2:04:20:a5:3d: 0a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9E:49:9E:03:DD:EC:52:72:FE:DA:42:A1:81:12:C1:E7:E1:43:BE X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:bb:67:b5:29:d5:9d:5f:18:85:7a:43:e4:7d:93:83:56:ea: c9:68:0c:67:fb:cc:da:a2:7b:0a:df:67:48:84:80:24:c5:fb: 56:45:51:17:c4:e1:59:b9:3b:13:c1:60:92:fa:80:f9:9f:dd: 1e:e8:de:7b:a6:68:33:99:9d:19:70:54:d9:9d:2f:28:a3:15: a7:9d:8a:fb:89:7a:b3:05:31:86:94:48:7b:6d:44:c5:53:47: 6b:c9:33:bb:c9:17:72:40:b7:b3:ad:32:44:cd:f4:2d:06:d4: 8b:4d:cc:65:f4:b9:6e:f6:d2:f9:5c:b7:07:d3:28:b4:d5:52: d1:13:ed:10:cf:a9:69:6c:84:9f:70:7c:41:12:93:3e:42:b7: 6a:23:0d:c4:ed:02:cd:8f:ca:b4:63:a9:5e:76:28:b4:75:9f: bd:b6:68:7e:2c:76:dd:a7:10:64:a8:d0:23:d1:85:2c:ca:9d: 93:61:e1:5a:09:df:4b:42:d6:09:d3:16:cc:3e:74:c6:8e:14: cd:75:d1:6c:ca:c7:f6:ee:05:a1:aa:83:b6:53:fc:0c:bc:23: 23:2e:cd:ba:3a:97:29:55:02:cb:8d:52:22:4c:18:4a:2a:06: 22:f3:d9:75:d5:92:0d:0b:5b:ed:e1:11:17:dd:5f:e3:42:51: 91:45:71:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjYwNDE2MTk0NjAwWhcNMjYwNDIzMTk0NjAwWjAYMRYwFAYD VQQDEw02OWUxM2M3OC1iOWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sIeHuFcmSs/UXb4udn1Pr4WZsAkgZRE6lbf0hVD6T1LnKwQlvYn/6dt4C1t AQ/HIgZHslIgXwy8KSD94VmvQjIcAx3dMGK0HFzu7/4ZwsHsVuvOlvr2o/ZtxzeA cZrw6N8CG5ZH0Pc8YO9fQJgi6z9OQNYeoj/o2N2OhEwJ1n77DSm6RXptGFPx7jN/ uaxPFnqs8I6h+QyV7LqftK1e19/h7GPgzKwA/yRPX/cEA9OwWTYTx40ZZteJnXRd 67cFjF8naU5u3CEA+fu9OPYW9VgBw2M+uY+a+NFOh1jI0UEMJrHztIVYENRAa19a rhd+k+q0An46v0RAogQgpT0KEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKOeSZ4D 3exScv7aQqGBEsHn4UO+MB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH7tntSnVnV8YhXpD5H2Tg1bqyWgMZ/vM2qJ7Ct9nSISAJMX7VkVRF8ThWbk7 E8FgkvqA+Z/dHujee6ZoM5mdGXBU2Z0vKKMVp52K+4l6swUxhpRIe21ExVNHa8kz u8kXckC3s60yRM30LQbUi03MZfS5bvbS+Vy3B9MotNVS0RPtEM+paWyEn3B8QRKT PkK3aiMNxO0CzY/KtGOpXnYotHWfvbZofix23acQZKjQI9GFLMqdk2HhWgnfS0LW CdMWzD50xo4UzXXRbMrH9u4FoaqDtlP8DLwjIy7NujqXKVUCy41SIkwYSioGIvPZ ddWSDQtb7eERF91f40JRkUVxhQ== -----END CERTIFICATE-----Generated at Fri Apr 17 16:24:07 2026 by rpki-client