$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json) Hash identifier: KRpKNo4XlFiKJ0G0My47+s7QCs4gIzjFMRm4sJ42Gls= Subject key identifier: 0F:07:A8:7F:FF:86:F5:91:34:FF:29:11:06:C5:EE:BF:DB:6E:49:77 Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft Manifest number: 97 Signing time: Fri 17 Apr 2026 07:07:47 +0000 Manifest this update: Fri 17 Apr 2026 07:07:47 +0000 Manifest next update: Fri 24 Apr 2026 07:07:47 +0000 Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: +ltZoE3O4HzsBxQfzIs1jQlAN6L9awJMwcz9M8BVCTg=) 2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: GVEpvnEFQk1r8mTWmBDvESje+/1MN9Uk5AtUa2pXkUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Validity Not Before: Apr 17 07:07:47 2026 GMT Not After : Apr 24 07:07:47 2026 GMT Subject: CN=69e1dc43-32c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ec:5b:0b:05:be:89:ab:28:b8:0e:d7:ba:9e: 61:68:4e:1b:dc:dc:11:a2:fc:da:8e:63:ab:a6:24: fe:68:22:e3:d6:aa:04:13:ea:6e:6d:e8:57:bd:23: e8:d6:e8:70:5c:3e:9d:e0:f4:fb:c2:83:f9:96:13: 9a:ec:12:08:b5:fd:e4:04:62:0b:9c:c2:52:bd:88: 0a:c6:6e:e2:a6:35:9c:77:f1:8a:e8:a8:19:ab:d5: dd:2b:98:46:46:55:1c:76:49:4a:b0:dd:2a:1a:30: e4:a0:78:72:e9:24:5a:5c:f0:0e:d2:1b:ac:ac:07: 2f:18:01:d7:cb:48:bf:e9:e7:60:db:ba:33:43:d2: 53:b8:18:46:71:41:72:23:95:35:2e:eb:43:6f:79: d7:82:d9:74:12:84:ff:61:e7:97:db:34:d8:7e:1c: f2:e3:a7:7e:c2:ce:de:5e:e0:5e:98:74:c7:f0:08: dd:d8:b4:61:61:80:1d:2a:51:c4:42:c3:e0:35:fb: 67:a0:67:4d:5b:32:b8:dd:88:ae:c5:c8:e2:9f:a5: 8d:a2:8c:28:04:1b:03:84:84:d1:3a:23:99:dd:25: 10:51:de:31:ca:13:cd:28:41:28:6d:f1:a3:30:9e: 8b:a9:9c:2b:8b:40:5a:7b:c7:74:86:33:c1:fb:34: cc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:07:A8:7F:FF:86:F5:91:34:FF:29:11:06:C5:EE:BF:DB:6E:49:77 X509v3 Authority Key Identifier: keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ed:b8:96:2f:71:03:cf:8d:84:6b:4c:34:ea:3a:5f:72:20: 58:48:59:0d:02:17:e0:0e:62:7c:8d:ed:70:e7:af:76:12:99: 5c:db:30:c9:48:e8:dc:30:6f:4d:47:d6:01:68:e2:4e:54:df: 9a:e5:12:39:e8:ad:26:c2:b8:9e:09:17:ce:7f:c7:45:bf:32: 98:44:1e:62:22:92:75:4e:84:cd:6f:b9:c5:66:8a:86:59:24: cb:a6:cd:21:0e:4f:8e:18:ab:0f:c5:c9:00:65:a2:52:db:6b: 1e:58:97:76:2b:3d:b9:29:fc:ba:a7:20:a6:db:8e:76:44:4c: 46:89:17:ea:f0:8b:be:73:2c:c8:51:75:c1:b4:a1:b7:6b:f3: 75:80:42:7e:a0:0a:ca:07:1b:82:19:04:d5:20:ce:9b:04:bd: 6c:80:b8:6b:e7:64:13:cd:11:3b:d7:3a:b0:8c:4d:94:01:e2: da:f5:e1:60:d4:e0:d9:64:5f:97:46:de:0e:4f:8d:3b:82:8e: 3f:3a:a8:0f:78:68:6c:e5:27:c8:6d:a4:51:d8:03:b4:9a:29: 9e:7e:97:3f:af:d3:79:0c:85:12:51:5c:5d:59:a2:9c:15:ea: be:3f:54:cd:06:c1:84:b6:fe:6c:cc:ca:99:1d:c1:be:ee:77: c9:1a:99:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEQTUxMTAvBgNVBAUTKDNFQzdCMUE2REEyMUExQTc3NTgxNUQxQ0JGRTcyMzE0 QjhBOTVERDkwHhcNMjYwNDE3MDcwNzQ3WhcNMjYwNDI0MDcwNzQ3WjAYMRYwFAYD VQQDEw02OWUxZGM0My0zMmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuxbCwW+iasouA7Xup5haE4b3NwRovzajmOrpiT+aCLj1qoEE+pubehXvSPo 1uhwXD6d4PT7woP5lhOa7BIItf3kBGILnMJSvYgKxm7ipjWcd/GK6KgZq9XdK5hG RlUcdklKsN0qGjDkoHhy6SRaXPAO0husrAcvGAHXy0i/6edg27ozQ9JTuBhGcUFy I5U1LutDb3nXgtl0EoT/YeeX2zTYfhzy46d+ws7eXuBemHTH8Ajd2LRhYYAdKlHE QsPgNftnoGdNWzK43Yiuxcjin6WNoowoBBsDhITROiOZ3SUQUd4xyhPNKEEobfGj MJ6LqZwri0Bae8d0hjPB+zTMOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA8HqH// hvWRNP8pEQbF7r/bbkl3MB8GA1UdIwQYMBaAFD7HsabaIaGndYFdHL/nIxS4qV3Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERBNS9DRTBFREEyNjU3 MUExMUYwQjg1MDczNDFDNEY5QUUwMi9Qc2V4cHRvaG9hZDFnVjBjdi1jakZMaXBY ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BzZXhwdG9ob2FkMWdWMGN2LWNqRkxpcFhkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERBNS9DRTBFREEyNjU3MUExMUYwQjg1MDczNDFDNEY5QUUwMi9Qc2V4cHRvaG9h ZDFnVjBjdi1jakZMaXBYZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA+24li9xA8+NhGtMNOo6X3IgWEhZDQIX4A5ifI3tcOevdhKZXNswyUjo3DBv TUfWAWjiTlTfmuUSOeitJsK4ngkXzn/HRb8ymEQeYiKSdU6EzW+5xWaKhlkky6bN IQ5PjhirD8XJAGWiUttrHliXdis9uSn8uqcgptuOdkRMRokX6vCLvnMsyFF1wbSh t2vzdYBCfqAKygcbghkE1SDOmwS9bIC4a+dkE80RO9c6sIxNlAHi2vXhYNTg2WRf l0beDk+NO4KOPzqoD3hobOUnyG2kUdgDtJopnn6XP6/TeQyFElFcXVminBXqvj9U zQbBhLb+bMzKmR3Bvu53yRqZgA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:57:35 2026 by rpki-client