$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: I2NxdGlz9UmRqVJY88UzlvWCYfhti2Z9drdmuh7Beuw= Subject key identifier: F7:E4:A5:17:DE:B6:1A:26:AC:26:CE:18:09:D1:2E:1B:3A:0C:23:1B Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 07C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2E52 Signing time: Thu 16 Apr 2026 15:39:07 +0000 Manifest this update: Thu 16 Apr 2026 15:39:06 +0000 Manifest next update: Thu 23 Apr 2026 15:39:06 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: iTBZPM3Yllx4kFxMvT7+Nlq6fu6LQmuDTWWbmn8wLqU=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: V2s04hpKMBAVv/lJnUKiNjyWl7KXuZCsoHa55XAdO8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1987 (0x7c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Apr 16 15:39:06 2026 GMT Not After : Apr 23 15:39:06 2026 GMT Subject: CN=69e1029b-2e9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c7:58:69:0e:35:cb:18:e8:71:ac:f2:9c:25: af:7c:1e:06:64:20:cb:ca:b2:ea:8d:1a:15:14:2c: 79:51:7d:bc:19:98:a2:10:5d:bd:4f:45:de:44:93: 24:d6:28:89:10:89:00:69:a0:d9:3d:85:55:ef:40: 5d:95:39:4c:ab:7d:11:98:f4:87:b9:a8:d9:1b:74: e2:e0:c2:ab:9b:24:3a:32:30:d7:69:3e:9f:de:36: 34:3f:7b:dd:a5:e5:f0:45:da:87:c0:b6:3b:01:b4: 38:3e:d0:68:56:5f:bb:8a:1c:97:85:07:01:ed:bb: 16:09:16:74:6a:c1:11:ad:e3:9f:86:91:98:b9:71: cb:d3:6f:be:60:9a:8b:b9:8c:4e:f1:e9:b2:33:ff: 49:0f:01:a0:60:4a:61:52:7e:7f:0a:af:3d:8c:56: 11:b2:17:cd:41:ba:72:f5:10:c4:ac:6a:90:41:f1: 3c:71:aa:2b:88:8d:c8:63:25:f7:9a:5a:77:29:a1: 6d:f9:69:9f:b8:09:cb:54:9d:fe:56:d0:b8:84:46: 06:0c:d3:43:74:74:b3:51:67:61:07:db:54:33:38: 71:20:43:13:c7:82:f8:4c:f9:e2:a0:3c:c7:7e:8f: 5f:fc:bf:83:8d:66:dc:35:24:b9:bf:e8:a8:a1:b1: a5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E4:A5:17:DE:B6:1A:26:AC:26:CE:18:09:D1:2E:1B:3A:0C:23:1B X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f2:84:a1:d3:73:62:be:fe:75:7a:97:65:f8:f5:08:c1:3a:56: 9b:4e:54:89:09:9b:5a:e5:6e:d1:90:f4:e6:fe:8b:86:8a:57: ad:32:f4:66:ed:25:12:eb:58:bc:cd:68:ed:3a:1e:dd:93:50: e4:66:39:81:73:a8:e0:6b:e3:c3:6d:e1:ef:53:0a:f0:f3:76: 97:f4:ed:c8:b8:b9:47:1d:5f:ae:e7:3a:a4:75:31:91:11:64: 3c:46:0f:8f:12:67:82:1b:44:cc:2b:2d:85:fc:26:13:7d:df: 73:f6:e5:84:49:00:f8:0f:71:71:8a:88:ba:16:62:10:8e:7b: bc:ad:fa:49:85:6f:fa:45:6c:da:a4:b0:30:59:6b:d2:45:da: 9a:20:de:d5:fa:55:5d:15:4f:16:85:e7:4e:73:5d:d5:29:50: 07:6d:82:15:62:e8:d0:57:a3:22:9d:8c:3f:32:8d:f6:c4:0e: 49:8c:3a:60:3b:58:10:d6:58:b9:9e:7a:93:36:2d:62:b3:f6: 2b:1e:a2:b3:31:97:90:e2:b6:9b:f1:00:b7:38:b1:46:93:c9: fc:3f:64:dc:6d:a6:ef:79:ce:d1:ec:69:b3:90:c2:91:4f:9c: a2:92:6a:7b:e1:22:48:f7:84:4c:eb:55:3d:d7:bc:cd:ca:e0: 2e:67:60:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjYwNDE2MTUzOTA2WhcNMjYwNDIzMTUzOTA2WjAYMRYwFAYD VQQDEw02OWUxMDI5Yi0yZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMdYaQ41yxjocazynCWvfB4GZCDLyrLqjRoVFCx5UX28GZiiEF29T0XeRJMk 1iiJEIkAaaDZPYVV70BdlTlMq30RmPSHuajZG3Ti4MKrmyQ6MjDXaT6f3jY0P3vd peXwRdqHwLY7AbQ4PtBoVl+7ihyXhQcB7bsWCRZ0asERreOfhpGYuXHL02++YJqL uYxO8emyM/9JDwGgYEphUn5/Cq89jFYRshfNQbpy9RDErGqQQfE8caoriI3IYyX3 mlp3KaFt+WmfuAnLVJ3+VtC4hEYGDNNDdHSzUWdhB9tUMzhxIEMTx4L4TPnioDzH fo9f/L+DjWbcNSS5v+ioobGl1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPfkpRfe thomrCbOGAnRLhs6DCMbMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA8oSh03Nivv51epdl+PUIwTpWm05UiQmbWuVu0ZD05v6LhopXrTL0Zu0lEutY vM1o7Toe3ZNQ5GY5gXOo4Gvjw23h71MK8PN2l/TtyLi5Rx1fruc6pHUxkRFkPEYP jxJnghtEzCsthfwmE33fc/blhEkA+A9xcYqIuhZiEI57vK36SYVv+kVs2qSwMFlr 0kXamiDe1fpVXRVPFoXnTnNd1SlQB22CFWLo0FejIp2MPzKN9sQOSYw6YDtYENZY uZ56kzYtYrP2Kx6iszGXkOK2m/EAtzixRpPJ/D9k3G2m73nO0exps5DCkU+copJq e+EiSPeETOtVPde8zcrgLmdgdQ== -----END CERTIFICATE-----Generated at Fri Apr 17 16:24:30 2026 by rpki-client