$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: 5ViZisPqjBV2fEFo5piI0AemrGnmtLxit3wT+4fuPSA= Subject key identifier: FF:61:5C:FF:82:B7:89:07:33:BD:0B:BD:FA:C7:21:CF:B7:46:CF:5B Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CCF Signing time: Thu 16 Apr 2026 18:20:46 +0000 Manifest this update: Thu 16 Apr 2026 18:20:45 +0000 Manifest next update: Thu 23 Apr 2026 18:20:45 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: SFSxTIH9eNlWDabf9BZPAPNoeuVrogU7vwYjcHqIAjY=) 2: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: svlh2+vPV9FFZwbhD1Wgc1v2nG2kP+knUxNtCuCVjZk=) 3: 2BA0624C078511ED87041524C4F9AE02.roa (hash: ZcdBlD0cGDsdpulCv2fc2yReHhNwViqaBn++RZ5qJME=) 4: 2D0509BC078511ED87041524C4F9AE02.roa (hash: FLx8pb39u5dZ14LSQha4djjm7m8zVtkJpA9CuWtbNEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3308 (0xcec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Apr 16 18:20:45 2026 GMT Not After : Apr 23 18:20:45 2026 GMT Subject: CN=69e1287e-26cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d8:9a:7d:35:ca:52:01:ff:8d:68:95:2f:ba: 02:ee:91:b9:54:12:9a:d8:05:05:e5:5a:61:99:30: 64:4c:27:06:af:45:58:7a:0c:70:76:df:ed:b1:0c: bd:69:4b:f2:dd:43:1b:0c:bf:98:d4:9d:15:28:a0: 52:a5:7b:7d:06:5f:3c:1c:7b:9a:c1:e0:54:bc:85: 26:c3:b4:ea:05:4c:08:d3:29:54:96:5e:5c:12:13: 32:61:87:28:cc:fa:a5:ad:1c:ee:43:03:75:85:e3: 96:2a:58:23:27:a4:e1:0a:63:3f:55:24:9a:f8:46: 1c:b5:1f:2a:5b:86:3d:09:77:ca:58:e3:f5:01:45: 96:94:e3:2e:4c:44:8d:a1:23:95:ff:87:52:0e:87: ed:d9:dd:3e:f9:17:82:e8:ad:da:10:3c:30:54:41: f6:80:77:81:26:ad:72:5a:51:da:bf:80:56:a2:81: ae:f1:30:d0:5b:cb:d0:dd:59:cb:35:6f:37:05:46: 6b:6b:2a:cd:93:8d:22:64:96:ac:ea:82:83:d9:4b: 37:e9:4d:83:7c:02:74:f5:47:ef:bc:b7:de:12:2b: ff:33:09:26:0e:03:73:b0:b3:5c:00:54:48:bc:92: 4d:6e:ad:a1:f8:be:12:df:9f:12:f6:18:39:84:42: 97:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:61:5C:FF:82:B7:89:07:33:BD:0B:BD:FA:C7:21:CF:B7:46:CF:5B X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6f:ea:84:b4:20:47:51:b3:68:a2:4a:ba:7f:9f:5e:91:89: b6:ba:20:98:ec:69:15:cb:c0:a7:d1:aa:d4:40:f5:7c:7d:9b: 34:b7:6f:dd:3c:2d:09:fd:44:9e:d3:91:8a:83:a2:59:d2:0e: a8:00:e6:d1:26:cb:ae:46:34:bf:13:9a:5e:69:d0:1b:c4:c6: 3a:28:b4:da:f6:0a:3d:ca:5a:ea:f3:ec:f8:22:57:ef:1d:aa: 5c:36:34:69:90:80:52:85:8e:71:68:2f:df:30:85:e7:f9:0c: 3e:8a:48:31:1a:58:09:09:47:da:26:b5:d8:b4:91:98:6c:ba: 30:a1:a2:2d:10:48:f1:a4:36:b1:d5:ff:fb:4e:92:ed:11:38: 3c:89:06:91:6f:78:3b:00:36:cb:83:dc:a8:0b:e4:c4:93:7f: 59:50:9b:99:c0:aa:c0:b0:1e:62:e7:38:3e:c7:df:5c:93:43: 0e:1b:55:d8:7f:f4:ca:7a:00:f4:5d:44:f1:d7:f0:e2:82:52: 95:8e:e2:f4:5c:72:65:a0:07:4a:bb:91:1c:d6:5b:17:fb:ed: 3d:61:9e:70:18:29:db:3a:7f:cb:b3:59:b8:ea:61:e7:1d:bd: b8:fe:c4:9a:79:c0:02:ac:c6:f0:1a:3f:3a:75:49:a6:5d:86: ec:27:49:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwNDE2MTgyMDQ1WhcNMjYwNDIzMTgyMDQ1WjAYMRYwFAYD VQQDEw02OWUxMjg3ZS0yNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8diafTXKUgH/jWiVL7oC7pG5VBKa2AUF5VphmTBkTCcGr0VYegxwdt/tsQy9 aUvy3UMbDL+Y1J0VKKBSpXt9Bl88HHuaweBUvIUmw7TqBUwI0ylUll5cEhMyYYco zPqlrRzuQwN1heOWKlgjJ6ThCmM/VSSa+EYctR8qW4Y9CXfKWOP1AUWWlOMuTESN oSOV/4dSDoft2d0++ReC6K3aEDwwVEH2gHeBJq1yWlHav4BWooGu8TDQW8vQ3VnL NW83BUZrayrNk40iZJas6oKD2Us36U2DfAJ09UfvvLfeEiv/MwkmDgNzsLNcAFRI vJJNbq2h+L4S358S9hg5hEKXyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP9hXP+C t4kHM70LvfrHIc+3Rs9bMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhm/qhLQgR1GzaKJKun+fXpGJtrogmOxpFcvAp9Gq1ED1fH2bNLdv3TwtCf1E ntORioOiWdIOqADm0SbLrkY0vxOaXmnQG8TGOii02vYKPcpa6vPs+CJX7x2qXDY0 aZCAUoWOcWgv3zCF5/kMPopIMRpYCQlH2ia12LSRmGy6MKGiLRBI8aQ2sdX/+06S 7RE4PIkGkW94OwA2y4PcqAvkxJN/WVCbmcCqwLAeYuc4PsffXJNDDhtV2H/0ynoA 9F1E8dfw4oJSlY7i9FxyZaAHSruRHNZbF/vtPWGecBgp2zp/y7NZuOph5x29uP7E mnnAAqzG8Bo/OnVJpl2G7CdJVg== -----END CERTIFICATE-----Generated at Fri Apr 17 12:31:45 2026 by rpki-client