$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: L2plHWl/nKbzZCnMZlLf0Gxu3LgX7v7EVuWoArYjoU4= Subject key identifier: 33:58:DD:83:1C:ED:AF:84:0B:47:2C:CB:B8:88:F0:F9:1E:4A:1B:82 Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 0565 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 0555 Signing time: Thu 16 Apr 2026 23:20:20 +0000 Manifest this update: Thu 16 Apr 2026 23:20:19 +0000 Manifest next update: Thu 23 Apr 2026 23:20:19 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: K81MbaTCnPgdwBXl5GF0nKgeBM2UJzSjh+zjZXqcl/8=) 2: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: IekuGWz95qJq1RkERKwpFfkq5YP338H+OPjlC3vFHYE=) 3: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: mMzlkdBS5l7zH1NqOtcSGsyrLWVpyJgkzBlaJ0LOo5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1381 (0x565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Apr 16 23:20:19 2026 GMT Not After : Apr 23 23:20:19 2026 GMT Subject: CN=69e16eb4-492f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:40:6b:06:0d:3f:32:0a:40:83:5d:f4:30:b2: d3:04:ab:fb:8f:fe:ed:4c:46:e6:9b:70:37:17:3c: 05:91:ad:2c:16:f6:89:7e:3f:d5:07:45:16:65:21: 75:d2:35:a7:67:3c:be:7a:be:9d:e3:35:4b:f3:0e: f4:29:dc:f1:c6:02:e6:1b:b3:c9:01:33:b3:89:fe: 61:f4:05:67:a5:60:16:59:47:f2:5f:ad:88:c7:db: 85:56:43:1c:55:6c:4f:d3:c7:52:24:c5:e5:b1:67: 7f:c8:50:04:c4:c3:73:21:4b:9a:3f:5a:e4:5d:00: 95:24:87:66:83:ed:c8:65:70:30:cb:16:e9:e1:2c: b0:25:21:07:6e:6a:4e:c7:2b:de:8a:15:73:35:aa: 57:3e:8b:3b:d1:af:19:ed:6e:19:10:74:4f:69:10: 7d:34:8d:c2:9d:8f:b1:ce:d2:80:3d:22:2b:3e:6d: 25:4d:b9:b6:63:35:2a:dd:39:a2:90:4d:63:a4:50: dd:33:4b:0f:da:e9:c7:66:b1:98:55:fc:d6:b4:29: 01:9d:9f:ef:c1:80:01:cd:1c:b3:a3:e2:eb:1f:64: 42:63:72:b0:d1:24:c0:89:fd:bd:9c:0d:9e:1a:42: 8a:ca:51:6c:f1:fb:19:64:a3:6e:dc:4a:fe:9a:7d: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:58:DD:83:1C:ED:AF:84:0B:47:2C:CB:B8:88:F0:F9:1E:4A:1B:82 X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ca:87:76:72:fb:7e:c2:39:c9:91:57:90:73:5a:5e:5c:da: ec:db:1d:b1:5c:d1:ae:6f:f0:e6:6d:00:1b:2f:9f:3f:f4:40: 9c:cf:cd:49:0c:7d:e5:e9:60:38:b4:a5:63:81:87:e4:75:94: 5b:9b:bc:59:27:20:d8:ac:6c:6e:76:8e:84:95:86:ee:78:24: 0b:dd:68:ca:7a:8b:8b:d1:70:d2:17:8f:ff:eb:48:c7:74:47: 70:f0:05:48:44:cc:44:06:4a:62:f6:0c:b9:33:ad:a5:b2:f1: f9:86:5f:fc:05:8e:d5:41:b6:d5:24:6b:ab:6e:70:a8:65:4f: ba:b5:7e:a5:39:a8:9c:d3:61:fd:92:aa:de:b7:1a:4b:c8:b2: 91:b0:88:5b:a0:64:20:65:dd:5b:68:35:89:80:48:dc:fb:3b: a5:bb:cd:2c:24:d1:29:31:b7:6c:64:bd:1b:44:01:6b:4a:68: 0f:59:06:0f:2f:99:0e:0b:a0:ce:7d:5f:07:9a:0b:e2:31:fb: 89:61:74:1a:d8:76:f9:6e:17:f4:00:62:81:d1:e0:36:c0:53: 12:db:74:ca:f6:84:17:c2:50:47:68:c7:05:52:e2:4e:b4:f7: 81:47:79:0e:a9:61:9d:d5:32:bd:1f:4d:a6:b5:fb:cf:95:c7: 35:e4:08:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjYwNDE2MjMyMDE5WhcNMjYwNDIzMjMyMDE5WjAYMRYwFAYD VQQDEw02OWUxNmViNC00OTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00BrBg0/MgpAg130MLLTBKv7j/7tTEbmm3A3FzwFka0sFvaJfj/VB0UWZSF1 0jWnZzy+er6d4zVL8w70KdzxxgLmG7PJATOzif5h9AVnpWAWWUfyX62Ix9uFVkMc VWxP08dSJMXlsWd/yFAExMNzIUuaP1rkXQCVJIdmg+3IZXAwyxbp4SywJSEHbmpO xyveihVzNapXPos70a8Z7W4ZEHRPaRB9NI3CnY+xztKAPSIrPm0lTbm2YzUq3Tmi kE1jpFDdM0sP2unHZrGYVfzWtCkBnZ/vwYABzRyzo+LrH2RCY3Kw0STAif29nA2e GkKKylFs8fsZZKNu3Er+mn0I+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDNY3YMc 7a+EC0csy7iI8PkeShuCMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANMqHdnL7fsI5yZFXkHNaXlza7NsdsVzRrm/w5m0AGy+fP/RAnM/NSQx95elg OLSlY4GH5HWUW5u8WScg2KxsbnaOhJWG7ngkC91oynqLi9Fw0heP/+tIx3RHcPAF SETMRAZKYvYMuTOtpbLx+YZf/AWO1UG21SRrq25wqGVPurV+pTmonNNh/ZKq3rca S8iykbCIW6BkIGXdW2g1iYBI3Ps7pbvNLCTRKTG3bGS9G0QBa0poD1kGDy+ZDgug zn1fB5oL4jH7iWF0Gth2+W4X9ABigdHgNsBTEtt0yvaEF8JQR2jHBVLiTrT3gUd5 DqlhndUyvR9NprX7z5XHNeQI/g== -----END CERTIFICATE-----Generated at Fri Apr 17 22:50:29 2026 by rpki-client