$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: BTCtmr19wSYTZrzDdNDzjKiH0sDN4X8/wrdG61h2oEs= Subject key identifier: 63:0D:D8:14:5C:9C:16:0A:C4:A8:91:88:6E:62:37:C7:9E:EF:3D:6F Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0CF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0CE9 Signing time: Thu 16 Apr 2026 18:10:16 +0000 Manifest this update: Thu 16 Apr 2026 18:10:16 +0000 Manifest next update: Thu 23 Apr 2026 18:10:16 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: NYtBib54lhUxJQmxB8wfT7zT6yjt3+KJWU8m7RWypsg=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: nlkFWUzq5OO+pTS3z8k8oaCv56U483SdYeWxCplbsVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3314 (0xcf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Apr 16 18:10:16 2026 GMT Not After : Apr 23 18:10:16 2026 GMT Subject: CN=69e12608-31df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c4:95:e4:a2:86:10:83:8e:a4:09:6e:85:58: b9:ee:7b:15:47:fd:e1:f7:16:0d:cc:4c:d7:cf:af: 70:f4:4a:cd:e1:ed:d2:f5:3d:e2:cc:29:60:38:d4: b8:23:2e:c5:8f:25:83:6a:19:d1:2e:4d:75:6d:b9: 83:60:19:31:d7:30:61:2b:76:f6:ac:55:38:44:d1: 2a:91:61:6d:3d:3a:30:76:14:a4:20:4a:64:00:ed: ad:95:37:5a:82:4e:76:57:45:35:1f:a8:5f:6f:2b: 27:b9:eb:b9:6a:16:38:1c:68:11:9f:3e:2a:00:ac: 1b:34:9e:a9:76:d6:04:2d:94:01:fd:bc:cd:a9:8f: 81:82:5e:c3:7c:df:d3:b5:0c:38:f2:73:46:66:75: 67:4f:ff:5e:f1:51:7e:f5:57:62:34:ea:47:d7:27: 0a:b9:ac:35:35:9e:53:90:f8:02:9d:ce:2b:37:06: 1d:3f:91:56:b9:12:f9:b8:15:e4:68:d8:c9:c5:0d: c7:b7:4d:32:6e:38:56:31:06:5f:a2:53:cb:3e:07: 75:a4:23:c5:af:0d:2d:7a:46:e3:6f:b0:80:70:bd: a0:e0:be:ef:ca:1e:74:6a:49:8f:73:4d:00:ff:bd: 66:09:d5:54:c8:69:e2:fd:0a:1c:a9:94:82:58:4d: 18:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:0D:D8:14:5C:9C:16:0A:C4:A8:91:88:6E:62:37:C7:9E:EF:3D:6F X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:72:28:5f:02:a8:7f:e4:2a:06:1d:53:98:48:90:d5:c7:b5: 04:a6:35:65:c0:46:48:7a:e2:39:17:16:3d:80:66:47:4e:52: 73:e8:e6:b7:3c:9f:6b:ac:08:1c:87:4e:64:9e:b5:61:3d:5d: 6b:f4:dc:d6:7d:27:04:c5:6d:89:59:61:75:f9:f7:9a:72:f9: 5f:cf:d8:a8:ec:90:4f:67:c1:55:96:46:64:08:1f:61:e4:af: a2:81:30:ef:05:af:4e:db:c8:ba:26:17:b1:bf:da:44:1f:96: ce:7f:60:49:cf:17:51:f9:96:fa:ee:fb:38:31:99:ff:35:9b: e4:53:a2:f0:b1:39:1f:99:27:f1:e1:74:c3:5c:22:f9:b2:c3: 53:a8:87:40:bd:66:0c:65:ca:44:01:54:61:af:57:a1:e7:fc: f4:30:07:f0:af:3e:51:92:89:ff:f8:82:ab:d8:93:63:5e:d8: 01:a3:53:3e:d7:80:66:f0:d4:50:20:69:c5:04:b3:f7:32:ee: 91:20:22:26:8f:99:54:7f:ef:dc:14:cd:42:48:5d:62:a4:ec: 42:ce:fa:4f:a6:15:65:81:52:58:c2:08:8f:80:ce:25:c5:ad: 6e:eb:97:dd:73:0c:30:5e:f8:fb:d3:55:33:c7:dc:b4:18:fd: 1a:46:da:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjYwNDE2MTgxMDE2WhcNMjYwNDIzMTgxMDE2WjAYMRYwFAYD VQQDEw02OWUxMjYwOC0zMWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcSV5KKGEIOOpAluhVi57nsVR/3h9xYNzEzXz69w9ErN4e3S9T3izClgONS4 Iy7FjyWDahnRLk11bbmDYBkx1zBhK3b2rFU4RNEqkWFtPTowdhSkIEpkAO2tlTda gk52V0U1H6hfbysnueu5ahY4HGgRnz4qAKwbNJ6pdtYELZQB/bzNqY+Bgl7DfN/T tQw48nNGZnVnT/9e8VF+9VdiNOpH1ycKuaw1NZ5TkPgCnc4rNwYdP5FWuRL5uBXk aNjJxQ3Ht00ybjhWMQZfolPLPgd1pCPFrw0tekbjb7CAcL2g4L7vyh50akmPc00A /71mCdVUyGni/QocqZSCWE0Y2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGMN2BRc nBYKxKiRiG5iN8ee7z1vMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ3IoXwKof+QqBh1TmEiQ1ce1BKY1ZcBGSHriORcWPYBmR05Sc+jmtzyfa6wI HIdOZJ61YT1da/Tc1n0nBMVtiVlhdfn3mnL5X8/YqOyQT2fBVZZGZAgfYeSvooEw 7wWvTtvIuiYXsb/aRB+Wzn9gSc8XUfmW+u77ODGZ/zWb5FOi8LE5H5kn8eF0w1wi +bLDU6iHQL1mDGXKRAFUYa9Xoef89DAH8K8+UZKJ//iCq9iTY17YAaNTPteAZvDU UCBpxQSz9zLukSAiJo+ZVH/v3BTNQkhdYqTsQs76T6YVZYFSWMIIj4DOJcWtbuuX 3XMMMF74+9NVM8fctBj9Gkbabw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:23:31 2026 by rpki-client