$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: rOElETv82jRy9HF1CSqWs8ph5TWLZDMQR+8h9SQM5IA= Subject key identifier: C3:02:C9:5A:7D:79:9A:AB:47:BF:48:E7:A0:F9:4B:F9:97:B1:BC:B4 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 0128 Signing time: Fri 17 Apr 2026 05:25:26 +0000 Manifest this update: Fri 17 Apr 2026 05:25:25 +0000 Manifest next update: Fri 24 Apr 2026 05:25:25 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: ctMNKLuKlK4GQKujh+SjLnIjoPocmpvu7cQq5gjka4g=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: /vNUIQMQmo/+bpr7T8qr5NTsbD+Gg65QmwR+l9u79do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Apr 17 05:25:25 2026 GMT Not After : Apr 24 05:25:25 2026 GMT Subject: CN=69e1c446-aef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:00:8c:81:b4:c3:d9:97:81:1a:d1:fd:58:e8: 05:0c:8a:03:05:56:9b:41:99:f4:42:a2:6c:df:f8: 00:cf:70:f5:52:6c:87:35:18:8f:be:b5:c6:aa:71: ec:95:11:b7:31:9d:4c:ed:e6:12:7a:58:cb:ed:33: 75:cb:8b:42:4f:40:5c:62:9d:f8:cb:91:3e:fe:c8: 4c:e4:8c:8e:50:8e:2a:38:14:e6:f2:ff:24:31:11: 77:ae:ff:7f:8d:a5:31:0e:c5:5c:01:21:6e:29:26: be:6a:f8:de:e5:84:13:9b:90:16:c4:bf:d8:9e:3f: 38:26:af:6c:25:0f:ca:db:30:b7:57:0c:08:c5:85: e2:1f:25:4d:74:e6:8f:19:9c:e4:01:9c:96:b3:82: 37:f8:88:94:41:02:39:89:0e:02:b9:14:80:79:d8: 5b:55:69:b7:24:0d:1f:4e:38:bd:8b:f5:ea:56:9f: 5e:f6:af:d0:e3:af:c6:83:b0:80:7e:17:f7:65:cf: d3:3f:07:7c:8e:ee:a2:23:7d:a0:5e:bd:41:7d:bc: 2d:50:4e:15:34:44:bc:c8:84:3e:6b:16:48:fa:87: 7d:37:6e:23:57:5b:e0:9d:7f:b4:ec:5f:4c:8c:e9: f8:72:d0:aa:53:bf:78:17:fb:1f:53:c1:49:e4:01: 7c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:02:C9:5A:7D:79:9A:AB:47:BF:48:E7:A0:F9:4B:F9:97:B1:BC:B4 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:f5:7a:53:29:53:1d:94:ae:70:42:2f:f2:f2:df:1b:90:a1: f7:ff:43:6a:a9:80:fb:e3:d6:fc:fe:ac:dc:d3:cd:f5:b5:d0: 5d:20:78:bd:67:e3:33:81:06:38:2e:29:47:c5:0f:84:5d:94: 2e:58:cf:d0:03:41:2a:e8:c6:82:28:a6:6c:14:c1:45:eb:2e: 24:76:b2:c8:07:5e:e0:c4:54:46:b9:78:d8:a3:7f:77:77:e7: 02:9a:fc:d6:85:c2:f6:74:29:72:73:f4:98:a3:a2:a2:6d:5d: b2:c7:02:75:9a:a8:e0:85:9b:82:be:92:53:ff:7d:5b:14:66: 23:f1:e2:aa:56:5b:b4:fb:a8:ef:59:70:47:82:fd:38:69:9c: ab:bf:35:2f:8d:d7:76:95:a2:96:3f:8d:bc:41:65:a8:a1:c5: 9b:41:57:ca:e4:da:86:d0:ad:2b:5e:dc:d7:63:2f:2d:64:7a: 59:d7:9d:4a:21:85:d0:fc:73:43:4b:5a:99:92:18:9a:0f:f1: a0:7a:6b:c3:9d:9b:dc:a6:43:04:5b:c2:b6:d3:fc:91:d9:d2: 8a:86:5a:33:22:93:15:01:49:f8:64:62:5b:db:62:73:2c:18: 09:89:f0:2a:0b:8b:45:74:d3:cb:7a:95:9e:6b:46:20:ca:6e: f8:04:f8:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjYwNDE3MDUyNTI1WhcNMjYwNDI0MDUyNTI1WjAYMRYwFAYD VQQDEw02OWUxYzQ0Ni1hZWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwCMgbTD2ZeBGtH9WOgFDIoDBVabQZn0QqJs3/gAz3D1UmyHNRiPvrXGqnHs lRG3MZ1M7eYSeljL7TN1y4tCT0BcYp34y5E+/shM5IyOUI4qOBTm8v8kMRF3rv9/ jaUxDsVcASFuKSa+avje5YQTm5AWxL/Ynj84Jq9sJQ/K2zC3VwwIxYXiHyVNdOaP GZzkAZyWs4I3+IiUQQI5iQ4CuRSAedhbVWm3JA0fTji9i/XqVp9e9q/Q46/Gg7CA fhf3Zc/TPwd8ju6iI32gXr1BfbwtUE4VNES8yIQ+axZI+od9N24jV1vgnX+07F9M jOn4ctCqU794F/sfU8FJ5AF86QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMMCyVp9 eZqrR79I56D5S/mXsby0MB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGPV6UylTHZSucEIv8vLfG5Ch9/9DaqmA++PW/P6s3NPN9bXQXSB4vWfjM4EG OC4pR8UPhF2ULljP0ANBKujGgiimbBTBResuJHayyAde4MRURrl42KN/d3fnApr8 1oXC9nQpcnP0mKOiom1dsscCdZqo4IWbgr6SU/99WxRmI/HiqlZbtPuo71lwR4L9 OGmcq781L43XdpWilj+NvEFlqKHFm0FXyuTahtCtK17c12MvLWR6WdedSiGF0Pxz Q0tamZIYmg/xoHprw52b3KZDBFvCttP8kdnSioZaMyKTFQFJ+GRiW9ticywYCYnw KguLRXTTy3qVnmtGIMpu+AT4Vw== -----END CERTIFICATE-----Generated at Fri Apr 17 15:38:32 2026 by rpki-client