$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: jObUzXXTIIrri+tEIeIqb0hBRaasohrzYvgt/zdo3O0= Subject key identifier: 48:F5:07:2B:59:CA:D6:44:92:4D:D7:F8:78:B6:44:55:62:83:43:0D Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 02B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 02AC Signing time: Fri 17 Apr 2026 01:22:12 +0000 Manifest this update: Fri 17 Apr 2026 01:22:11 +0000 Manifest next update: Fri 24 Apr 2026 01:22:11 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: CnyEgqHhWu1hl+8p5PfZhkHCWjQIbyqpJMiixUNU+6s=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: akPAZSOa93x2Wngs9MzKkfgLP+esBNNQavCi79ZhFO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 690 (0x2b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Apr 17 01:22:11 2026 GMT Not After : Apr 24 01:22:11 2026 GMT Subject: CN=69e18b44-48eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:51:b7:68:77:a6:01:46:f2:c4:93:e9:bd: f8:76:9e:a6:85:5c:53:e7:28:67:15:76:ee:34:64: 25:22:5e:79:31:5c:ee:da:ef:fa:de:88:38:95:46: 60:70:68:c3:d8:19:cc:11:76:e2:50:21:a4:c9:f1: d2:e4:fc:31:f9:3d:10:61:a5:fb:c3:44:52:ce:09: fe:a2:14:b6:81:76:34:3d:b2:aa:b1:c9:1c:5f:b6: 74:f5:8b:45:b9:0d:0f:ef:97:96:89:75:6b:ac:bc: c5:94:07:7c:74:d6:ba:4e:a2:31:7f:7b:eb:88:f2: f8:56:35:e7:ca:93:90:60:06:d9:c2:69:5e:64:a5: 9d:ba:05:2a:b9:b7:d6:92:5f:8f:f2:3b:57:2d:55: 6a:4d:d0:52:01:71:b4:85:21:c9:41:6c:fb:f9:26: b3:73:98:28:54:b4:9f:46:56:1f:4c:45:76:59:7e: e0:c2:5c:29:c0:12:d2:67:0a:f9:38:15:3a:0d:4c: 00:f7:c0:b2:f8:9b:f1:a1:4f:59:4c:06:ce:e8:ec: fc:e3:e8:b2:1f:0e:70:b9:33:75:e6:44:d8:ce:06: 37:23:8c:76:0b:5b:1a:25:0e:bb:b0:c5:d9:d7:66: da:d0:fa:f1:bb:b4:c8:de:19:9a:31:da:df:8d:81: 02:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:F5:07:2B:59:CA:D6:44:92:4D:D7:F8:78:B6:44:55:62:83:43:0D X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d6:57:ac:4e:14:ac:ef:07:1c:f8:28:32:b6:11:c0:9d:85: 5f:08:6d:51:ef:94:b3:31:cd:e7:c7:31:29:0c:b7:2d:e7:fd: e4:8a:09:03:5c:5f:7b:51:77:da:c3:72:44:6b:36:f1:ac:5f: 84:96:05:73:eb:f7:c1:b7:07:9e:5b:ac:6c:e8:bd:03:76:4a: e3:89:d1:04:68:0b:d4:9b:be:2f:93:ad:f5:da:45:56:4c:d2: b0:2c:80:32:8d:aa:b3:5a:4b:7c:5c:ad:46:35:7e:bb:c9:77: 32:55:7a:03:56:a9:db:e2:cd:0e:44:4b:fa:92:c0:4e:56:3b: 2c:96:a9:ce:5d:af:1e:e7:65:5a:50:7e:56:f0:9c:a0:3f:88: c0:a1:ec:da:c2:9e:66:80:80:76:11:38:58:b4:c4:ac:5c:d5: 13:2d:17:77:17:86:b5:f1:2f:86:25:fc:81:92:08:56:1f:69: e7:73:0e:47:fb:0d:d2:80:a0:93:98:4c:6e:37:5e:fb:7d:aa: 28:08:a3:f7:76:c6:be:88:53:f4:e3:30:29:b8:7f:e1:8b:cf: c0:32:6b:21:d7:c1:90:9c:c9:3d:35:98:bc:43:2e:54:f0:bc: c7:7f:b8:f1:36:1a:44:85:29:d4:dc:aa:15:c8:88:aa:65:19: 7e:29:a9:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjYwNDE3MDEyMjExWhcNMjYwNDI0MDEyMjExWjAYMRYwFAYD VQQDEw02OWUxOGI0NC00OGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArf1Rt2h3pgFG8sST6b34dp6mhVxT5yhnFXbuNGQlIl55MVzu2u/63og4lUZg cGjD2BnMEXbiUCGkyfHS5Pwx+T0QYaX7w0RSzgn+ohS2gXY0PbKqsckcX7Z09YtF uQ0P75eWiXVrrLzFlAd8dNa6TqIxf3vriPL4VjXnypOQYAbZwmleZKWdugUqubfW kl+P8jtXLVVqTdBSAXG0hSHJQWz7+Sazc5goVLSfRlYfTEV2WX7gwlwpwBLSZwr5 OBU6DUwA98Cy+JvxoU9ZTAbO6Oz84+iyHw5wuTN15kTYzgY3I4x2C1saJQ67sMXZ 12ba0Prxu7TI3hmaMdrfjYECDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEj1BytZ ytZEkk3X+Hi2RFVig0MNMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUdZXrE4UrO8HHPgoMrYRwJ2FXwhtUe+UszHN58cxKQy3Lef95IoJA1xfe1F3 2sNyRGs28axfhJYFc+v3wbcHnlusbOi9A3ZK44nRBGgL1Ju+L5Ot9dpFVkzSsCyA Mo2qs1pLfFytRjV+u8l3MlV6A1ap2+LNDkRL+pLATlY7LJapzl2vHudlWlB+VvCc oD+IwKHs2sKeZoCAdhE4WLTErFzVEy0XdxeGtfEvhiX8gZIIVh9p53MOR/sN0oCg k5hMbjde+32qKAij93bGvohT9OMwKbh/4YvPwDJrIdfBkJzJPTWYvEMuVPC8x3+4 8TYaRIUp1NyqFciIqmUZfimpOg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:31:40 2026 by rpki-client