$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: GB7Eu6FebwAt36jZHmaBjH8BDI3e+bz3x4QbobkoqSQ= Subject key identifier: D1:B3:F8:10:5B:7A:78:4D:6B:D1:03:77:08:61:00:10:BF:11:7A:92 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 0686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 067A Signing time: Thu 16 Apr 2026 22:27:08 +0000 Manifest this update: Thu 16 Apr 2026 22:27:07 +0000 Manifest next update: Thu 23 Apr 2026 22:27:07 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: 12qel1xu1ELtcpSWAH3IrRnwj2c8s8p0lsAATDXepGM=) 2: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: hmAGFwidME91Z2OtLaYKm7U/7KLzuVveNkUXIAOlTec=) 3: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: MfEMtWr//IKbjBbDvwQq3pr8MLGlDee0A9/222366Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Apr 16 22:27:07 2026 GMT Not After : Apr 23 22:27:07 2026 GMT Subject: CN=69e1623b-8650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dc:3a:96:54:02:7d:10:0c:f1:d4:00:b6:ce: 58:2e:2c:8f:1f:e6:ab:48:63:e0:1d:93:ec:13:ee: 63:f8:04:c7:6e:3d:bf:bd:4d:21:3b:cf:05:cd:1a: ef:08:ce:5a:69:3d:90:2f:1a:b9:1f:68:9f:f1:65: b6:cc:79:58:78:c6:27:e3:92:28:d5:c0:7a:67:d1: 02:9f:94:bc:b5:72:a0:67:93:14:e4:a5:5d:9c:ea: 35:a1:b3:55:c1:57:ae:b6:92:80:ee:76:49:cd:db: 90:f8:e2:d5:9a:c6:73:c7:fc:f7:8f:de:fc:17:70: ff:95:47:c9:3d:3a:49:cf:73:b9:8f:6d:c0:57:5d: 34:30:5f:29:a5:6c:da:ff:79:3e:41:de:a4:df:39: aa:fc:e2:b6:8b:aa:6f:ab:9a:a7:b8:8a:ff:64:3d: f5:55:1d:18:f4:2f:70:1e:d3:30:c1:5a:0e:c8:13: 97:22:0d:83:63:7f:7f:b6:a5:5c:0c:8d:03:87:6c: b6:eb:93:12:04:08:a3:59:da:b2:9d:db:71:66:36: 04:fe:08:79:6d:51:0a:d6:ee:c8:37:e8:99:c7:1c: 41:da:17:15:f2:c7:c3:d1:27:a9:9d:db:d7:63:8c: 06:a4:51:11:dd:db:66:26:61:5c:e8:d7:3f:c9:0f: 82:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B3:F8:10:5B:7A:78:4D:6B:D1:03:77:08:61:00:10:BF:11:7A:92 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:c0:fd:3b:fb:bc:b3:ad:22:f0:8a:24:a1:55:08:9c:3a:29: 7d:8c:e9:80:b9:05:68:bc:97:c2:59:60:97:e1:23:42:1b:70: 1e:cd:72:b9:7c:db:09:f8:76:a9:fc:95:03:21:9b:49:63:76: 76:37:32:f1:ac:6b:c7:a7:64:ce:c9:1e:3f:2f:0f:0c:df:c7: 1d:30:90:0d:38:5d:05:9d:2a:8d:1b:c4:cc:63:8d:56:2a:9a: 6f:d8:78:fd:e2:bd:0a:48:94:2d:69:3b:aa:d7:03:31:ae:34: 3f:62:45:58:ac:52:fc:45:c8:9d:5b:eb:56:da:89:f3:21:dd: 21:a9:45:17:83:0d:12:cf:5b:14:8a:9f:ed:1e:ad:7d:c9:97: 07:04:e8:7c:8e:88:8c:1e:7f:11:67:74:e9:24:d3:15:48:64: ba:a7:5f:1f:e3:fc:fa:d3:ef:cb:87:19:79:d6:3a:5e:c8:62: 8e:e2:f3:c2:2d:3e:aa:5b:f6:0c:77:df:52:6a:e6:e1:87:05: 15:5f:74:13:02:d5:9c:58:25:e5:80:ee:75:4a:b9:97:2f:3e: 6b:fe:90:b9:d0:b4:5c:8a:03:49:64:3c:c1:1d:59:d1:1b:47: e5:67:73:a1:86:2e:aa:ca:c9:40:16:85:29:c8:f9:c5:8a:6d: b8:24:f3:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjYwNDE2MjIyNzA3WhcNMjYwNDIzMjIyNzA3WjAYMRYwFAYD VQQDEw02OWUxNjIzYi04NjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttw6llQCfRAM8dQAts5YLiyPH+arSGPgHZPsE+5j+ATHbj2/vU0hO88FzRrv CM5aaT2QLxq5H2if8WW2zHlYeMYn45Io1cB6Z9ECn5S8tXKgZ5MU5KVdnOo1obNV wVeutpKA7nZJzduQ+OLVmsZzx/z3j978F3D/lUfJPTpJz3O5j23AV100MF8ppWza /3k+Qd6k3zmq/OK2i6pvq5qnuIr/ZD31VR0Y9C9wHtMwwVoOyBOXIg2DY39/tqVc DI0Dh2y265MSBAijWdqyndtxZjYE/gh5bVEK1u7IN+iZxxxB2hcV8sfD0SepndvX Y4wGpFER3dtmJmFc6Nc/yQ+C5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNGz+BBb enhNa9EDdwhhABC/EXqSMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiMD9O/u8s60i8IokoVUInDopfYzpgLkFaLyXwllgl+EjQhtwHs1yuXzbCfh2 qfyVAyGbSWN2djcy8axrx6dkzskePy8PDN/HHTCQDThdBZ0qjRvEzGONViqab9h4 /eK9CkiULWk7qtcDMa40P2JFWKxS/EXInVvrVtqJ8yHdIalFF4MNEs9bFIqf7R6t fcmXBwTofI6IjB5/EWd06STTFUhkuqdfH+P8+tPvy4cZedY6XshijuLzwi0+qlv2 DHffUmrm4YcFFV90EwLVnFgl5YDudUq5ly8+a/6QudC0XIoDSWQ8wR1Z0RtH5Wdz oYYuqsrJQBaFKcj5xYptuCTzEQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:00:19 2026 by rpki-client