$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: HfcZTZMOmgUpqOfWm/bSURiSLMV4aqzNvcoQo00mi8Y= Subject key identifier: 92:AD:55:9D:E8:CC:C3:E0:DC:AF:EC:AF:61:BC:20:59:D3:1A:1B:26 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 01B2 Signing time: Fri 17 Apr 2026 03:46:19 +0000 Manifest this update: Fri 17 Apr 2026 03:46:18 +0000 Manifest next update: Fri 24 Apr 2026 03:46:18 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: cI44r1XGNDxTfnZEdQ4aosupTF5+eBuTeYKUeTnDcKY=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: kzX0teoGqCYcrXmXpjad2Lv+QKDn7uXbylM76fvPiSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Apr 17 03:46:18 2026 GMT Not After : Apr 24 03:46:18 2026 GMT Subject: CN=69e1ad0a-817d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:31:32:07:8f:25:06:60:d0:54:f4:72:45:c5: 58:05:1e:d2:92:89:ca:66:b4:5d:49:dc:c2:c3:11: 11:27:44:47:57:f5:18:00:e6:40:b4:60:6b:eb:a2: d2:e7:09:9e:5c:2f:74:31:16:f9:f4:5c:4c:c7:d7: 64:d3:eb:77:eb:4f:1a:ba:10:45:04:93:07:1a:f8: d3:ff:f3:2f:57:6a:9d:e8:fc:45:1b:1d:c0:83:78: 11:88:71:af:cf:be:96:24:e8:cb:33:3c:37:a0:c9: 87:3e:99:00:50:2c:76:dc:b5:b2:e3:16:cd:71:58: 84:13:33:b1:7e:ff:43:4f:41:2b:63:c9:24:f7:73: d1:01:c5:82:f9:ad:d3:0a:f1:21:75:12:20:42:ee: 94:02:69:0f:7f:be:c6:5d:84:79:0b:85:72:db:e4: d6:16:e2:90:99:6b:b7:db:fe:d1:63:10:19:0e:70: 60:42:e7:50:68:2c:db:e9:d1:d2:8d:17:08:2e:e6: 2f:ff:dd:9d:01:b1:c5:d8:40:0a:91:7a:bf:10:73: 4c:bc:6d:7e:cc:d5:79:8d:50:02:3b:d9:66:ef:d1: fd:45:aa:88:73:72:57:1d:14:bb:ab:28:2b:7b:52: 9c:58:68:80:37:e2:1b:19:8b:be:e6:2a:95:83:5c: 58:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AD:55:9D:E8:CC:C3:E0:DC:AF:EC:AF:61:BC:20:59:D3:1A:1B:26 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:c3:9f:bf:2f:78:e3:3c:f3:38:83:15:c9:21:cf:c3:30:79: 46:69:b6:1b:80:dc:62:7b:08:2a:1c:6d:1c:2c:54:4a:94:00: a7:87:e8:f1:1b:a3:6b:35:38:a6:38:ae:1c:eb:10:96:95:aa: 60:33:09:bf:b3:17:28:8e:26:6b:74:86:e1:38:86:b4:fe:21: 41:40:82:5f:6c:c4:a5:00:6a:10:55:af:de:e6:82:55:26:18: 80:2f:7f:ce:ed:7c:6e:03:14:04:d3:a0:35:3e:19:a2:a0:36: 6f:bb:c5:59:09:6e:3f:dc:08:8c:90:f6:65:30:3a:94:5a:a5: 4d:6b:e4:f7:6f:31:47:28:38:1f:67:62:8c:46:8f:2c:61:c5: bf:fe:59:14:1d:5c:b0:cb:7c:9d:c6:43:e6:23:b4:a0:af:18: 92:0b:71:59:80:31:0a:0f:17:e3:2d:19:05:9f:29:bf:dc:08: 46:9e:6e:ca:f3:f0:02:45:c3:52:4a:d0:23:b8:2c:59:c5:81: f3:7f:cb:a0:6f:06:29:3f:48:7d:a4:6d:41:78:a6:0a:d8:48: 7c:c0:e5:2c:a5:4c:5c:1e:8f:b1:a0:a6:7b:60:22:03:79:96: 56:73:4a:37:43:eb:23:2b:ba:54:e0:da:98:c1:16:35:e8:dd: 78:63:ac:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjYwNDE3MDM0NjE4WhcNMjYwNDI0MDM0NjE4WjAYMRYwFAYD VQQDEw02OWUxYWQwYS04MTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zEyB48lBmDQVPRyRcVYBR7SkonKZrRdSdzCwxERJ0RHV/UYAOZAtGBr66LS 5wmeXC90MRb59FxMx9dk0+t3608auhBFBJMHGvjT//MvV2qd6PxFGx3Ag3gRiHGv z76WJOjLMzw3oMmHPpkAUCx23LWy4xbNcViEEzOxfv9DT0ErY8kk93PRAcWC+a3T CvEhdRIgQu6UAmkPf77GXYR5C4Vy2+TWFuKQmWu32/7RYxAZDnBgQudQaCzb6dHS jRcILuYv/92dAbHF2EAKkXq/EHNMvG1+zNV5jVACO9lm79H9RaqIc3JXHRS7qygr e1KcWGiAN+IbGYu+5iqVg1xYkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJKtVZ3o zMPg3K/sr2G8IFnTGhsmMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqcOfvy944zzzOIMVySHPwzB5Rmm2G4DcYnsIKhxtHCxUSpQAp4fo8RujazU4 pjiuHOsQlpWqYDMJv7MXKI4ma3SG4TiGtP4hQUCCX2zEpQBqEFWv3uaCVSYYgC9/ zu18bgMUBNOgNT4ZoqA2b7vFWQluP9wIjJD2ZTA6lFqlTWvk928xRyg4H2dijEaP LGHFv/5ZFB1csMt8ncZD5iO0oK8YkgtxWYAxCg8X4y0ZBZ8pv9wIRp5uyvPwAkXD UkrQI7gsWcWB83/LoG8GKT9IfaRtQXimCthIfMDlLKVMXB6PsaCme2AiA3mWVnNK N0PrIyu6VODamMEWNejdeGOsgw== -----END CERTIFICATE-----Generated at Fri Apr 17 10:43:43 2026 by rpki-client