$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft File: nOkX3Drgxboud8t3WjrZnGhcQGs.mft (raw, json) Hash identifier: DUC7j+ctXkRY+lfo3ymaZNTyNKnoIzlLYTCUuxLIopI= Subject key identifier: 34:CE:DD:52:51:5F:26:45:8C:70:75:91:1D:AE:B1:AA:D7:77:23:A8 Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft Manifest number: C4 Signing time: Fri 17 Apr 2026 06:37:31 +0000 Manifest this update: Fri 17 Apr 2026 06:37:30 +0000 Manifest next update: Fri 24 Apr 2026 06:37:30 +0000 Files and hashes: 1: nOkX3Drgxboud8t3WjrZnGhcQGs.crl (hash: YgpzpoKVflVBDbJfZrGOyQSkouoG3fsv+8qV7Kg0x54=) 2: 49DEAEDC12A711F099020A73C4F9AE02.roa (hash: 73STUG9MRsTj+UMDTuA4X0z5fGUTYqhKS5W5S7xFgxs=) 3: 4A3C802012A711F099020A73C4F9AE02.roa (hash: iEuV0+5znqF8f5T5Ps6WIUoKRiKa2jw2dHDVVLuYtWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Apr 17 06:37:30 2026 GMT Not After : Apr 24 06:37:30 2026 GMT Subject: CN=69e1d52a-ac23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:52:e7:17:bb:2b:e7:7c:a8:a2:91:35:32:e1: 52:7a:f0:f7:85:55:a4:0e:67:32:42:83:72:da:32: 33:ab:35:69:98:58:f9:30:7a:03:37:7c:d8:ba:42: 2b:1a:fc:76:ea:53:e6:10:de:67:b0:de:ab:ba:d9: 3d:dd:79:15:f2:90:38:2a:c0:39:82:62:07:df:6c: b3:35:67:2a:5e:fc:0c:5b:fe:76:49:a1:29:b3:c3: 96:62:af:ff:5c:1e:97:a9:4d:a5:fd:12:f9:57:bc: 18:13:d1:68:e1:5a:66:ba:55:79:c8:b1:47:7c:19: af:09:7c:f9:6c:5e:d8:d2:a4:1c:4c:7c:46:88:73: d9:f2:ec:aa:ca:50:ad:5a:38:c1:24:e1:20:b2:9f: 04:08:c1:20:c4:f6:a8:96:0b:7c:fe:2d:48:7f:c8: 03:d2:c7:5d:df:42:16:06:b5:13:17:b6:08:75:24: e1:21:66:75:fb:d7:e7:30:db:ea:67:36:5c:9a:b1: 92:a4:7d:7c:4f:5e:ff:54:2b:82:a2:a3:c1:8d:18: 70:e9:1f:bb:cc:36:5e:39:85:73:be:6d:a9:80:f8: 72:92:9a:bd:59:75:a1:09:12:85:1b:95:37:ca:be: 12:31:ca:1f:c2:71:82:2f:b1:5e:85:0c:60:8a:94: a7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:CE:DD:52:51:5F:26:45:8C:70:75:91:1D:AE:B1:AA:D7:77:23:A8 X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:43:89:93:5e:86:2a:6b:17:12:78:68:46:2d:24:3a:d3:c2: 31:b7:70:49:73:1e:4f:cf:1f:22:51:92:f3:8f:2c:4d:9e:a3: f2:74:5d:29:1e:53:c1:f5:b0:c6:b7:6c:ec:15:8f:c5:5b:07: 10:f4:b6:0c:fa:bc:76:00:8b:2c:22:ad:db:8a:fa:b6:67:a6: b7:76:15:d7:f0:4a:9c:73:32:96:4a:a2:0e:11:32:d9:34:ad: 23:63:87:a1:f8:bd:0d:d7:5c:02:9e:35:da:08:f5:2c:ff:7d: 2c:a3:17:74:e7:2d:51:41:0b:98:ff:56:ff:a4:63:97:ad:22: ea:83:22:c3:fa:6d:c7:32:1d:37:6e:ba:85:d2:22:81:ce:68: d4:e2:d9:b7:57:30:f7:33:bb:53:1b:93:0a:e5:99:ad:bc:48: 51:33:73:f8:3f:fa:88:e6:43:ee:28:44:2a:35:09:97:2a:bc: 0a:85:28:d6:2d:be:1c:a0:d4:f6:b6:cb:c9:04:ec:70:29:9f: 01:c0:20:4e:a4:8e:15:2d:2d:69:4d:50:b2:67:01:3f:bc:ba: a6:32:8b:f6:8f:fe:e8:50:24:51:c6:b4:42:78:94:07:63:1c: b8:83:79:78:c0:31:32:38:87:0d:59:f5:b0:74:f8:34:7e:9e: f0:8c:67:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGM0UxMTAvBgNVBAUTKDlDRTkxN0RDM0FFMEM1QkEyRTc3Q0I3NzVBM0FEOTlD Njg1QzQwNkIwHhcNMjYwNDE3MDYzNzMwWhcNMjYwNDI0MDYzNzMwWjAYMRYwFAYD VQQDEw02OWUxZDUyYS1hYzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslLnF7sr53yoopE1MuFSevD3hVWkDmcyQoNy2jIzqzVpmFj5MHoDN3zYukIr Gvx26lPmEN5nsN6rutk93XkV8pA4KsA5gmIH32yzNWcqXvwMW/52SaEps8OWYq// XB6XqU2l/RL5V7wYE9Fo4VpmulV5yLFHfBmvCXz5bF7Y0qQcTHxGiHPZ8uyqylCt WjjBJOEgsp8ECMEgxPaolgt8/i1If8gD0sdd30IWBrUTF7YIdSThIWZ1+9fnMNvq ZzZcmrGSpH18T17/VCuCoqPBjRhw6R+7zDZeOYVzvm2pgPhykpq9WXWhCRKFG5U3 yr4SMcofwnGCL7FehQxgipSniQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDTO3VJR XyZFjHB1kR2usarXdyOoMB8GA1UdIwQYMBaAFJzpF9w64MW6LnfLd1o62ZxoXEBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUYzRS8zMzlFREU2ODEw RTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hib3VkOHQzV2pyWm5HaGNR R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUYzRS8zMzlFREU2ODEwRTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hi b3VkOHQzV2pyWm5HaGNRR3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhUOJk16GKmsXEnhoRi0kOtPCMbdwSXMeT88fIlGS848sTZ6j8nRdKR5TwfWw xrds7BWPxVsHEPS2DPq8dgCLLCKt24r6tmemt3YV1/BKnHMylkqiDhEy2TStI2OH ofi9DddcAp412gj1LP99LKMXdOctUUELmP9W/6Rjl60i6oMiw/ptxzIdN266hdIi gc5o1OLZt1cw9zO7UxuTCuWZrbxIUTNz+D/6iOZD7ihEKjUJlyq8CoUo1i2+HKDU 9rbLyQTscCmfAcAgTqSOFS0taU1QsmcBP7y6pjKL9o/+6FAkUca0QniUB2McuIN5 eMAxMjiHDVn1sHT4NH6e8Ixncw== -----END CERTIFICATE-----Generated at Fri Apr 17 23:03:08 2026 by rpki-client