$ rpki-client -vvf rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft File: IPxzgnJ0AC605K7oniD9DRc_soU.mft (raw, json) Hash identifier: UzKkyg4dEItSzSNLHIvoeDH1LfbNv4/GVHLOSEobpQw= Subject key identifier: 1D:2C:AF:DC:20:ED:B7:52:0F:E4:DD:38:6F:D6:7A:8D:20:E5:8F:EB Authority key identifier: 20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 Certificate issuer: /CN=A91578DF/serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft Manifest number: 71 Signing time: Wed 15 Apr 2026 07:26:37 +0000 Manifest this update: Wed 15 Apr 2026 07:26:36 +0000 Manifest next update: Wed 22 Apr 2026 07:26:36 +0000 Files and hashes: 1: IPxzgnJ0AC605K7oniD9DRc_soU.crl (hash: GuP+5lf76c/WayVCpCRhEa0Pv0n+mDG017PKCOUPe7s=) 2: 067CE6C895C811F09500A713C4F9AE02.roa (hash: JhdOJ9Lykz/GZq5gbRC19nNJ2o6yyUCB0MKG5PSJxsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 07:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91578DF, serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Validity Not Before: Apr 15 07:26:36 2026 GMT Not After : Apr 22 07:26:36 2026 GMT Subject: CN=69df3dac-9d0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:95:b0:5e:e8:4b:f5:ba:24:21:02:a7:88: d4:d5:33:96:aa:f0:19:c0:dd:a9:7f:d7:a6:4e:7d: 55:7e:ea:56:12:ff:5e:41:76:5d:8d:bb:64:59:bf: af:51:e2:be:b3:b6:8c:75:43:3a:9f:30:4b:22:42: 96:8c:2d:87:21:f0:a9:72:d3:f2:28:56:02:9e:a7: 9c:a5:c0:78:13:be:62:0c:a3:88:6b:4e:e2:1d:d6: b6:cf:18:42:f9:0d:43:c9:a0:82:29:f7:2b:2d:b8: 70:c1:8b:07:7d:a4:6e:73:e7:e5:29:da:90:e1:d0: fd:26:60:0d:e6:78:9d:bd:11:1a:c0:ae:b6:d0:45: 40:ab:7b:09:0d:2f:1e:74:89:f8:73:64:07:aa:c6: 75:08:0a:91:f0:46:55:2c:96:c7:fa:23:0f:cb:39: 33:56:48:fb:f6:9d:30:c1:4f:38:ac:86:a3:ce:a3: a4:41:a2:d1:85:82:53:cc:05:b6:27:a5:51:a0:99: 0f:2c:31:df:81:13:50:f0:2b:be:3f:e4:76:d4:6a: e6:85:41:64:db:e3:6d:f7:8c:8f:e2:3f:9b:79:8a: ec:98:04:c3:65:60:88:0f:e2:f7:f0:29:04:02:17: 17:7a:75:93:27:40:cc:1a:47:69:02:dd:77:e4:8c: 2a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:2C:AF:DC:20:ED:B7:52:0F:E4:DD:38:6F:D6:7A:8D:20:E5:8F:EB X509v3 Authority Key Identifier: keyid:20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:9d:9d:b0:27:c9:65:d1:71:4d:e1:7c:0a:7e:41:dc:3c:a0: 33:fb:c8:24:9c:3f:86:32:4f:01:84:69:c2:e3:64:8c:c4:da: 49:e7:01:db:58:a7:d7:be:0d:50:2f:15:bf:85:99:3b:d6:5c: 6a:81:c8:1e:00:13:71:c3:42:28:e1:9b:91:02:37:02:5b:ee: 4d:fc:81:55:ef:f5:47:f7:7a:6a:94:8c:50:41:95:fd:15:a7: 3b:20:2e:54:e4:ff:88:4d:98:de:b5:2d:89:73:f8:00:2f:6a: 93:11:c4:67:0b:84:fe:2f:10:f8:df:a6:f1:a8:3f:5a:3f:cf: 6e:1b:74:d2:e9:3d:31:3d:89:d3:11:c4:63:c8:0b:70:a6:10: 7f:9c:5d:3d:f5:ca:82:5e:85:4d:84:3e:ec:29:d2:df:47:c3: 44:12:00:4d:b3:b1:57:bc:04:29:85:9d:06:c9:25:a6:fc:f8: 60:eb:f8:0a:3c:22:90:c8:e3:d1:34:17:2c:21:8c:60:70:c4: 57:91:ce:91:30:5c:75:10:55:fc:70:98:02:19:7f:4d:5e:4a: 7b:f3:b8:7d:48:db:eb:a5:1b:ac:ea:80:6f:ab:a3:92:5c:18: ef:58:30:da:d5:d3:8c:24:f4:fd:8b:4e:36:8a:6c:c6:6c:d3: 38:0c:c9:ed -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NzhERjExMC8GA1UEBRMoMjBGQzczODI3Mjc0MDAyRUI0RTRBRUU4OUUyMEZEMEQx NzNGQjI4NTAeFw0yNjA0MTUwNzI2MzZaFw0yNjA0MjIwNzI2MzZaMBgxFjAUBgNV BAMTDTY5ZGYzZGFjLTlkMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxeJWwXuhL9bokIQKniNTVM5aq8BnA3al/16ZOfVV+6lYS/15Bdl2Nu2RZv69R 4r6ztox1QzqfMEsiQpaMLYch8Kly0/IoVgKep5ylwHgTvmIMo4hrTuId1rbPGEL5 DUPJoIIp9ystuHDBiwd9pG5z5+Up2pDh0P0mYA3meJ29ERrArrbQRUCrewkNLx50 ifhzZAeqxnUICpHwRlUslsf6Iw/LOTNWSPv2nTDBTzishqPOo6RBotGFglPMBbYn pVGgmQ8sMd+BE1DwK74/5HbUauaFQWTb4233jI/iP5t5iuyYBMNlYIgP4vfwKQQC Fxd6dZMnQMwaR2kC3XfkjCpBAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUHSyv3CDt t1IP5N04b9Z6jSDlj+swHwYDVR0jBBgwFoAUIPxzgnJ0AC605K7oniD9DRc/soUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3OERGLzA1MUNGMUQ0OTVD NzExRjBBQkUyRkQ1RkM0RjlBRTAyL0lQeHpnbkowQUM2MDVLN29uaUQ5RFJjX3Nv VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVB4emduSjBBQzYwNUs3b25pRDlEUmNfc29VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 OERGLzA1MUNGMUQ0OTVDNzExRjBBQkUyRkQ1RkM0RjlBRTAyL0lQeHpnbkowQUM2 MDVLN29uaUQ5RFJjX3NvVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAUnZ2wJ8ll0XFN4XwKfkHcPKAz+8gknD+GMk8BhGnC42SMxNpJ5wHbWKfXvg1Q LxW/hZk71lxqgcgeABNxw0Io4ZuRAjcCW+5N/IFV7/VH93pqlIxQQZX9Fac7IC5U 5P+ITZjetS2Jc/gAL2qTEcRnC4T+LxD436bxqD9aP89uG3TS6T0xPYnTEcRjyAtw phB/nF099cqCXoVNhD7sKdLfR8NEEgBNs7FXvAQphZ0GySWm/Phg6/gKPCKQyOPR NBcsIYxgcMRXkc6RMFx1EFX8cJgCGX9NXkp787h9SNvrpRus6oBvq6OSXBjvWDDa 1dOMJPT9i042imzGbNM4DMnt -----END CERTIFICATE-----Generated at Fri Apr 17 05:23:54 2026 by rpki-client