$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: Dpxk+6hYFk7HvMtZmtV5gGcbAcKXd4a8y80T68nTxyg= Subject key identifier: 7D:BD:CF:48:4B:27:1B:EE:BC:74:47:67:21:42:8A:9A:01:66:1F:90 Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: D2 Signing time: Wed 15 Apr 2026 06:18:12 +0000 Manifest this update: Wed 15 Apr 2026 06:18:12 +0000 Manifest next update: Wed 22 Apr 2026 06:18:12 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: 3QNywNOxVM9wHSVqkKPI+tdXLJWrzFq2zjYoiJdH4a8=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: uWicuk6Gc+hgqGUV0vTWtU1zH20MB0DreaH9IEfkBWg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Apr 15 06:18:12 2026 GMT Not After : Apr 22 06:18:12 2026 GMT Subject: CN=69df2da4-5acc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:88:91:c6:c2:9f:07:b1:e0:4a:c1:9f:d5:b7: bf:25:fa:f1:70:46:f1:62:b3:05:d7:62:4f:c5:aa: 6c:0c:0f:08:4b:77:d5:58:e3:e0:a8:de:e6:b1:48: cd:55:7b:d5:4d:fb:a6:1e:e5:37:c8:57:ed:a1:fa: 74:1b:45:41:a3:dd:f5:35:5c:0e:90:db:43:ac:a1: ea:57:3a:7a:19:2b:ca:36:15:38:ff:66:66:df:fb: c9:24:b5:eb:a4:70:f9:79:ab:f1:bf:f5:da:b9:26: 59:ea:1c:29:81:ab:96:e3:8b:e4:be:f3:67:9c:7e: 54:53:5f:e5:34:a3:f0:b4:45:88:f4:e1:ff:ad:42: 5b:fe:15:70:60:bb:81:2c:02:d7:e4:66:07:b7:3d: 4b:b6:e0:de:38:7b:f0:dc:ad:8b:c7:ad:ac:8a:9a: 3a:b9:3f:f0:56:60:60:cb:09:4b:cc:ba:90:6c:4d: 41:3c:0d:7c:19:9c:ac:dd:ca:46:30:91:07:8a:54: 06:80:cf:a5:e7:18:90:28:71:a5:ad:99:4a:0f:d6: 4e:0b:12:20:19:08:58:21:f2:f1:3d:8a:fe:cf:01: 68:a5:d4:74:a3:d5:53:ac:42:f7:07:1a:55:d1:ca: e8:eb:8b:0c:ce:84:8d:04:62:47:34:d1:23:6c:1c: d5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:BD:CF:48:4B:27:1B:EE:BC:74:47:67:21:42:8A:9A:01:66:1F:90 X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:92:86:bc:f9:23:05:3f:9a:3d:0b:bf:e1:72:17:e0:92:cb: 61:9d:f8:76:c1:4e:cb:7a:e9:0f:01:18:47:b0:3f:92:5e:02: 2e:dc:4f:76:50:42:43:4b:bf:92:5a:9a:ab:01:e5:a2:b2:75: 1c:57:4c:f2:9c:fc:7f:49:80:65:55:63:50:53:a6:2e:48:ea: 0d:41:50:ec:ba:74:e6:73:78:d3:0b:f5:1a:f6:1a:c7:59:c3: 7b:c6:38:d2:02:82:80:65:9d:46:56:a0:85:74:36:de:70:ff: e8:01:88:da:81:68:df:7c:34:72:35:c3:ce:4a:51:a9:58:34: b2:88:bc:98:c4:1a:84:c8:b4:cb:3b:93:e0:10:31:75:03:4b: 5d:f4:da:c3:49:ad:87:b4:e8:d7:e3:ee:09:58:74:e5:60:2e: e6:f9:aa:cb:60:02:20:e8:20:c1:a0:e6:09:f0:0d:21:ff:90: e2:b5:c5:ef:89:c0:23:0d:bd:37:ce:07:08:dd:c7:50:87:59: 81:20:23:4a:3d:88:26:3d:40:72:b6:78:ac:1e:35:8f:be:6d: ef:99:10:68:0b:74:5b:61:b8:fa:89:71:47:5a:44:a6:ce:77: 37:80:d2:15:e4:6e:46:28:86:01:f2:8b:34:0f:90:b2:32:18: 18:25:21:04 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlGNDkxMTAvBgNVBAUTKDcxNzE5OENEMUE0Njc5QUQ5RDQ1MkVFMURCMDJEMDAx MkE0Mzc0RUMwHhcNMjYwNDE1MDYxODEyWhcNMjYwNDIyMDYxODEyWjAYMRYwFAYD VQQDEw02OWRmMmRhNC01YWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04iRxsKfB7HgSsGf1be/JfrxcEbxYrMF12JPxapsDA8IS3fVWOPgqN7msUjN VXvVTfumHuU3yFftofp0G0VBo931NVwOkNtDrKHqVzp6GSvKNhU4/2Zm3/vJJLXr pHD5eavxv/XauSZZ6hwpgauW44vkvvNnnH5UU1/lNKPwtEWI9OH/rUJb/hVwYLuB LALX5GYHtz1LtuDeOHvw3K2Lx62sipo6uT/wVmBgywlLzLqQbE1BPA18GZys3cpG MJEHilQGgM+l5xiQKHGlrZlKD9ZOCxIgGQhYIfLxPYr+zwFopdR0o9VTrEL3BxpV 0cro64sMzoSNBGJHNNEjbBzVSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH29z0hL JxvuvHRHZyFCipoBZh+QMB8GA1UdIwQYMBaAFHFxmM0aRnmtnUUu4dsC0AEqQ3Ts MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUY0OS9CMkM1RkI5QUY5 QjUxMUVGQTVENzNDNDdDNEY5QUUwMi9jWEdZelJwR2VhMmRSUzdoMndMUUFTcERk T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUY0OS9CMkM1RkI5QUY5QjUxMUVGQTVENzNDNDdDNEY5QUUwMi9jWEdZelJwR2Vh MmRSUzdoMndMUUFTcERkT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH5KGvPkjBT+aPQu/4XIX4JLLYZ34dsFOy3rpDwEYR7A/kl4CLtxPdlBCQ0u/ klqaqwHlorJ1HFdM8pz8f0mAZVVjUFOmLkjqDUFQ7Lp05nN40wv1GvYax1nDe8Y4 0gKCgGWdRlaghXQ23nD/6AGI2oFo33w0cjXDzkpRqVg0soi8mMQahMi0yzuT4BAx dQNLXfTaw0mth7To1+PuCVh05WAu5vmqy2ACIOggwaDmCfANIf+Q4rXF74nAIw29 N84HCN3HUIdZgSAjSj2IJj1AcrZ4rB41j75t75kQaAt0W2G4+olxR1pEps53N4DS FeRuRiiGAfKLNA+QsjIYGCUhBA== -----END CERTIFICATE-----Generated at Fri Apr 17 06:13:14 2026 by rpki-client