$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: DzIGigzhSvu9uKiUiDDpDhEYjmbvZB4muD9SABDZBoo= Subject key identifier: 77:70:D4:33:E4:DF:14:68:1A:9A:4E:4E:C9:A5:DB:95:B0:B8:3A:90 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0BAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0BA0 Signing time: Sat 18 Apr 2026 18:57:25 +0000 Manifest this update: Sat 18 Apr 2026 18:57:25 +0000 Manifest next update: Sat 25 Apr 2026 18:57:25 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: gRQQ/nFI2HLfhgkLkZ1t2fvENvyyW7QZuEwYERa/1mk=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: Op/TZ3dOt8Yt2zdOFwj+mdajCZ3G7/THMBti/s9h/Qo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 18:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Apr 18 18:57:25 2026 GMT Not After : Apr 25 18:57:25 2026 GMT Subject: CN=69e3d415-bdcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c3:ab:3d:88:6f:c8:39:80:cb:36:99:f2:f8: 09:24:95:f0:f3:ef:82:b5:10:41:e4:d0:00:00:d0: f1:33:46:f6:37:12:10:80:df:7f:f1:79:c5:6a:8d: 46:71:fb:18:72:7b:d0:88:d0:26:1f:49:56:19:49: e9:d1:7c:6a:bf:ed:ce:f0:1d:66:5c:79:71:ca:61: 0a:84:41:68:c8:fb:96:8b:56:79:ad:e5:c3:dd:f7: 4a:9a:4b:c9:26:9c:06:16:69:57:62:24:c4:77:e8: a1:23:f1:b2:8b:8a:de:89:c2:23:61:ab:a0:b0:d4: a1:c9:07:1c:6e:ab:c4:f2:16:62:f1:13:a3:fe:72: a4:c8:22:e6:ac:17:21:aa:fe:5b:ac:e3:cc:7f:53: 55:d9:fa:f7:75:ab:38:f9:c1:7b:38:1b:16:81:66: b1:19:1f:b8:e6:ab:fa:b2:9d:18:7a:20:f2:3c:bb: 22:f3:0f:e3:22:27:fa:8e:22:f3:ad:20:c4:70:51: f6:02:4f:2a:d0:16:93:48:e2:cb:fe:bb:cb:43:ee: 63:03:23:82:22:0c:5a:b4:14:5a:98:e7:9c:bb:89: 1a:9e:5a:e4:08:ab:d5:9f:94:88:7b:71:d3:18:ab: 51:21:60:b5:1e:50:57:e9:cb:ca:11:58:90:1b:56: c0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:70:D4:33:E4:DF:14:68:1A:9A:4E:4E:C9:A5:DB:95:B0:B8:3A:90 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:9c:3e:c7:dc:99:b5:4c:f3:dc:84:b0:47:5e:16:54:e6:aa: fe:18:d5:27:3b:34:31:14:7b:2a:3e:16:48:2f:9a:b8:d5:09: ac:bc:44:44:7a:67:10:9f:81:8f:fc:b2:64:9c:cd:4e:a9:58: de:db:f6:64:33:3c:0e:a2:75:dd:f9:59:2d:e9:e9:69:40:15: 8a:7d:44:e4:d6:11:1d:39:91:d6:5b:6d:fc:17:f2:26:d9:19: ec:83:3f:6b:30:fc:2b:b0:65:e9:8a:95:41:fd:a2:84:20:78: cb:f1:28:0f:8f:15:eb:37:1b:1c:48:5e:8f:1a:a0:83:94:f2: 85:2b:d0:7c:83:ec:38:98:20:31:3b:d7:c1:1d:4c:bd:2b:72: 87:bb:95:63:43:75:ed:c1:6d:57:bd:c1:91:7f:2b:f2:db:93: 41:e9:7e:17:18:be:30:0f:33:84:3a:ce:ef:70:b6:fa:48:ae: 6d:aa:12:df:f0:75:76:9a:4a:b9:33:37:ea:7e:29:73:a8:72: 89:41:d3:28:cc:ec:e6:8f:12:65:2e:91:e3:06:94:c9:08:b2: 58:77:33:01:09:5f:64:a7:5c:48:f0:28:62:47:6d:81:cc:77: 54:1e:8c:87:19:ee:59:e4:34:81:83:f6:8e:b1:50:58:f6:b7: 21:ca:f6:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjYwNDE4MTg1NzI1WhcNMjYwNDI1MTg1NzI1WjAYMRYwFAYD VQQDEw02OWUzZDQxNS1iZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcOrPYhvyDmAyzaZ8vgJJJXw8++CtRBB5NAAANDxM0b2NxIQgN9/8XnFao1G cfsYcnvQiNAmH0lWGUnp0Xxqv+3O8B1mXHlxymEKhEFoyPuWi1Z5reXD3fdKmkvJ JpwGFmlXYiTEd+ihI/Gyi4reicIjYaugsNShyQccbqvE8hZi8ROj/nKkyCLmrBch qv5brOPMf1NV2fr3das4+cF7OBsWgWaxGR+45qv6sp0YeiDyPLsi8w/jIif6jiLz rSDEcFH2Ak8q0BaTSOLL/rvLQ+5jAyOCIgxatBRamOecu4kanlrkCKvVn5SIe3HT GKtRIWC1HlBX6cvKEViQG1bACQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHdw1DPk 3xRoGppOTsml25WwuDqQMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfZw+x9yZtUzz3ISwR14WVOaq/hjVJzs0MRR7Kj4WSC+auNUJrLxERHpnEJ+B j/yyZJzNTqlY3tv2ZDM8DqJ13flZLenpaUAVin1E5NYRHTmR1ltt/BfyJtkZ7IM/ azD8K7Bl6YqVQf2ihCB4y/EoD48V6zcbHEhejxqgg5TyhSvQfIPsOJggMTvXwR1M vStyh7uVY0N17cFtV73BkX8r8tuTQel+Fxi+MA8zhDrO73C2+kiubaoS3/B1dppK uTM36n4pc6hyiUHTKMzs5o8SZS6R4waUyQiyWHczAQlfZKdcSPAoYkdtgcx3VB6M hxnuWeQ0gYP2jrFQWPa3Icr27w== -----END CERTIFICATE-----Generated at Sun Apr 19 10:59:56 2026 by rpki-client