$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: RP7EzmDLkAPofkc+XMXPj6RawQ2plo3ramvqNgOTbo8= Subject key identifier: 67:38:7A:F8:1F:F9:1C:B4:D3:DD:55:C1:E0:52:4A:A4:AC:54:9A:7A Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 01F9 Signing time: Fri 17 Apr 2026 02:54:57 +0000 Manifest this update: Fri 17 Apr 2026 02:54:56 +0000 Manifest next update: Fri 24 Apr 2026 02:54:56 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: EhU6hcmaF+yWnocNbpqPOb8iKnijWv9gSYS3eLtdwAs=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: usH+mk51VBx4IO/Jnd24Cx5sUXY3pfqSRJBol6HvMcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Apr 17 02:54:56 2026 GMT Not After : Apr 24 02:54:56 2026 GMT Subject: CN=69e1a100-0b6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:64:e7:17:76:55:8b:80:90:92:c5:ce:e6:d8: 1b:d9:be:39:09:86:23:fe:47:34:44:74:14:51:7c: 2f:5a:c6:98:f7:b9:c3:52:85:75:e7:d5:cd:e6:79: ec:3f:d9:dc:3a:de:c2:ac:b8:14:0b:b0:8c:18:69: 04:da:9a:bc:80:66:ff:a7:48:d0:73:a9:bd:b9:86: 82:d0:61:5e:2d:73:91:4d:b1:2f:57:ba:55:ca:a4: c1:42:01:5d:1a:fc:31:dc:7f:71:e0:4f:66:90:f1: fe:30:26:7c:95:af:ac:85:73:ee:92:e0:c5:87:92: 7f:cf:28:32:df:e7:09:c5:c7:8e:6a:31:20:63:7d: 5d:50:97:80:01:67:a5:d4:fc:76:c4:28:b3:6a:59: f9:a2:0b:e6:36:02:ad:21:db:d0:c0:6b:4f:92:14: 2e:12:01:a8:00:39:33:07:fe:6d:4b:59:df:83:75: bb:88:84:92:fb:12:45:92:b7:d0:75:c1:46:e6:52: 9e:4a:0e:3a:34:a3:1b:27:ae:3e:fb:04:93:40:5d: 73:fb:22:2d:41:4d:c1:63:7c:b9:35:6d:aa:79:2c: f0:7d:49:0d:49:9d:8f:bc:cb:a5:35:ab:d0:08:8f: b5:33:0c:be:7d:aa:b7:c6:48:d7:fc:c0:44:56:20: a5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:38:7A:F8:1F:F9:1C:B4:D3:DD:55:C1:E0:52:4A:A4:AC:54:9A:7A X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:0c:ec:44:c0:be:9c:ad:3a:fd:f4:cd:12:a9:87:98:02:6a: 1c:0e:0c:74:f0:76:e9:2c:7a:84:df:a3:be:a6:ea:9c:8b:78: 87:af:c5:9d:62:58:6d:fa:ff:27:2d:1e:b2:41:eb:b8:24:ed: 6b:33:8d:f5:62:db:4d:87:c4:54:d3:3a:34:99:a6:75:0e:cd: 3c:65:3b:7e:93:b4:28:2a:63:51:1e:08:14:c0:b9:1e:4d:7a: 4b:9e:54:27:2b:09:ba:b4:4c:7c:35:dc:ba:b2:60:37:f4:82: 87:d4:75:0f:73:a6:dd:df:e5:de:77:4f:bb:fb:f8:da:93:74: b6:51:61:6b:65:ea:a8:86:f4:f6:2d:b8:d2:ee:60:14:d5:8b: 36:d1:7d:34:4f:1e:d0:0f:7b:2f:0c:72:35:82:d6:1a:7a:28: c4:86:39:57:ec:8b:77:b9:64:12:eb:37:1e:05:df:d2:aa:c9: ff:88:6a:f4:3e:6f:01:e9:d3:e1:22:46:e0:fc:3d:df:7a:26: 2b:9c:cd:d5:29:d7:5c:f3:74:09:50:c0:dd:80:c6:b9:d9:5b: cb:54:b1:60:34:07:0e:30:bb:93:40:71:3e:f2:f8:ee:76:4d: 2f:5a:0b:e3:bf:3b:b1:d4:21:c1:70:5b:e0:8e:b1:d3:b3:05: 55:62:a2:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjYwNDE3MDI1NDU2WhcNMjYwNDI0MDI1NDU2WjAYMRYwFAYD VQQDEw02OWUxYTEwMC0wYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWTnF3ZVi4CQksXO5tgb2b45CYYj/kc0RHQUUXwvWsaY97nDUoV159XN5nns P9ncOt7CrLgUC7CMGGkE2pq8gGb/p0jQc6m9uYaC0GFeLXORTbEvV7pVyqTBQgFd Gvwx3H9x4E9mkPH+MCZ8la+shXPukuDFh5J/zygy3+cJxceOajEgY31dUJeAAWel 1Px2xCizaln5ogvmNgKtIdvQwGtPkhQuEgGoADkzB/5tS1nfg3W7iISS+xJFkrfQ dcFG5lKeSg46NKMbJ64++wSTQF1z+yItQU3BY3y5NW2qeSzwfUkNSZ2PvMulNavQ CI+1Mwy+faq3xkjX/MBEViClowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGc4evgf +Ry0091VweBSSqSsVJp6MB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANwzsRMC+nK06/fTNEqmHmAJqHA4MdPB26Sx6hN+jvqbqnIt4h6/FnWJYbfr/ Jy0eskHruCTtazON9WLbTYfEVNM6NJmmdQ7NPGU7fpO0KCpjUR4IFMC5Hk16S55U JysJurRMfDXcurJgN/SCh9R1D3Om3d/l3ndPu/v42pN0tlFha2XqqIb09i240u5g FNWLNtF9NE8e0A97LwxyNYLWGnooxIY5V+yLd7lkEus3HgXf0qrJ/4hq9D5vAenT 4SJG4Pw933omK5zN1SnXXPN0CVDA3YDGudlby1SxYDQHDjC7k0BxPvL47nZNL1oL 4787sdQhwXBb4I6x07MFVWKiZQ== -----END CERTIFICATE-----Generated at Fri Apr 17 09:34:49 2026 by rpki-client