$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: QcNSk1s9LH31RNCPq0U/kUAiv4CBw8SkFJ+7UIz8BdM= Subject key identifier: 83:DF:F6:5F:7C:25:A4:C6:F7:96:F8:72:CF:94:11:20:1F:27:56:C0 Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: 0162 Signing time: Fri 17 Apr 2026 04:37:14 +0000 Manifest this update: Fri 17 Apr 2026 04:37:14 +0000 Manifest next update: Fri 24 Apr 2026 04:37:14 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: 094jJUyuQAexcBo29UTqoJ8X7/hU8eMDEozQiX9gN6o=) 2: DC857BE8843111F09719836AC4F9AE02.roa (hash: O+A6fzSJr2TZ+7/KCaZLr98G06DnnuKn1Adew/Owyqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:37:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Apr 17 04:37:14 2026 GMT Not After : Apr 24 04:37:14 2026 GMT Subject: CN=69e1b8fa-01ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0f:2e:5e:44:8d:1b:dc:fb:af:8e:2e:a0:58: 72:03:c7:bd:d8:39:06:64:02:b5:4d:01:3b:b9:1d: 23:69:07:78:dc:67:d4:f6:55:76:4c:5b:45:5e:57: 01:83:71:1b:74:fb:11:cf:c8:f1:7a:b9:6d:a5:c7: 05:70:6c:87:35:d3:2e:d2:c1:e2:13:c9:e5:9c:b0: 64:73:06:df:69:3f:ba:d3:d6:c0:f2:0a:52:75:25: d7:6d:54:dc:4f:68:97:e1:a4:be:55:29:73:fb:45: 79:66:52:e3:1b:79:f4:c7:6b:df:81:c3:4c:ce:b0: 8d:e8:2e:2e:0c:00:d0:2d:f1:95:cf:fe:fd:b8:1e: 4f:62:64:aa:07:1d:84:1d:6c:b0:e7:91:8c:ea:1c: b7:65:c7:22:f5:72:0e:59:ce:b0:7c:29:71:ad:d7: 12:b2:f6:1c:3b:3d:f5:59:38:0d:be:f5:9c:25:8f: 1d:cf:06:61:c9:a2:2f:09:f8:f9:bc:c1:9c:ba:90: 21:d5:17:e3:ff:77:fb:f5:96:bf:33:51:ba:7d:eb: 21:24:f8:c9:0e:42:ce:cc:3b:d3:c0:6b:93:cb:b1: b8:7b:82:75:e3:b8:9e:fc:bb:49:f3:df:5b:ea:0c: 5d:aa:56:8f:e6:21:10:3c:56:ec:84:23:7a:7c:85: ed:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DF:F6:5F:7C:25:A4:C6:F7:96:F8:72:CF:94:11:20:1F:27:56:C0 X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:28:02:45:ec:bf:0f:36:51:29:ef:a8:b5:f9:cd:15:a8:65: 3b:7e:ea:21:ff:a6:0b:13:f2:59:54:fd:f1:ee:93:9e:69:ff: 35:05:15:ed:8e:58:33:6c:34:ba:79:0c:0f:3d:eb:b8:15:21: fc:47:0d:07:33:8e:0d:0f:8d:4c:3e:92:10:c3:2f:2f:c8:90: 59:1e:c7:3e:cb:38:27:3d:38:ca:a3:bb:d5:0e:a5:c3:5d:c3: 8d:a2:8f:66:50:57:3e:1b:1d:b2:6a:79:e1:5d:0c:43:7d:3a: 99:7b:c2:71:ba:57:57:80:50:34:20:63:70:25:21:e3:9f:8e: 44:c8:c3:ac:bf:f4:c4:6a:cb:f5:eb:16:39:8c:64:65:45:cb: 3a:d4:b1:a8:cb:48:cd:31:ea:01:7a:39:29:3c:2c:3f:57:b7: 5b:98:f9:7f:fc:69:16:2c:9b:28:6e:40:ef:56:a7:5e:67:03: 17:02:1e:98:a6:11:76:46:ec:15:31:2a:27:99:07:e3:b4:0f: 7a:0c:13:68:3c:9d:5a:e8:9e:14:14:94:11:f9:25:e2:d9:b6: 96:4d:11:75:20:7d:47:37:c7:32:e1:31:fe:66:37:62:83:b2: 50:c6:5c:7a:18:63:61:24:7e:bc:63:78:23:0d:50:af:5e:54: 9f:79:c7:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjYwNDE3MDQzNzE0WhcNMjYwNDI0MDQzNzE0WjAYMRYwFAYD VQQDEw02OWUxYjhmYS0wMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlA8uXkSNG9z7r44uoFhyA8e92DkGZAK1TQE7uR0jaQd43GfU9lV2TFtFXlcB g3EbdPsRz8jxerltpccFcGyHNdMu0sHiE8nlnLBkcwbfaT+609bA8gpSdSXXbVTc T2iX4aS+VSlz+0V5ZlLjG3n0x2vfgcNMzrCN6C4uDADQLfGVz/79uB5PYmSqBx2E HWyw55GM6hy3Zcci9XIOWc6wfClxrdcSsvYcOz31WTgNvvWcJY8dzwZhyaIvCfj5 vMGcupAh1Rfj/3f79Za/M1G6feshJPjJDkLOzDvTwGuTy7G4e4J147ie/LtJ899b 6gxdqlaP5iEQPFbshCN6fIXtFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIPf9l98 JaTG95b4cs+UESAfJ1bAMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsSgCRey/DzZRKe+otfnNFahlO37qIf+mCxPyWVT98e6Tnmn/NQUV7Y5YM2w0 unkMDz3ruBUh/EcNBzOODQ+NTD6SEMMvL8iQWR7HPss4Jz04yqO71Q6lw13DjaKP ZlBXPhsdsmp54V0MQ306mXvCcbpXV4BQNCBjcCUh45+ORMjDrL/0xGrL9esWOYxk ZUXLOtSxqMtIzTHqAXo5KTwsP1e3W5j5f/xpFiybKG5A71anXmcDFwIemKYRdkbs FTEqJ5kH47QPegwTaDydWuieFBSUEfkl4tm2lk0RdSB9RzfHMuEx/mY3YoOyUMZc ehhjYSR+vGN4Iw1Qr15Un3nHIg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:11:22 2026 by rpki-client