$ rpki-client -vvf rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft File: xVGHsAsaczdfhFaIX2oQfuHZNc8.mft (raw, json) Hash identifier: cRGGBKEDnlCG+i4B+HsZSYAAQw5mULdijSitcJfcebY= Subject key identifier: FF:CF:47:68:5F:3D:33:1D:2C:1E:AE:24:46:CF:52:FC:92:FC:42:86 Authority key identifier: C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF Certificate issuer: /CN=A9173B29/serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft Manifest number: 0187 Signing time: Wed 15 Apr 2026 04:09:44 +0000 Manifest this update: Wed 15 Apr 2026 04:09:43 +0000 Manifest next update: Wed 22 Apr 2026 04:09:43 +0000 Files and hashes: 1: xVGHsAsaczdfhFaIX2oQfuHZNc8.crl (hash: XeLqjoKHrjeSh1mKmmpj7SSgaoUuYkMHI6RtqXemA+k=) 2: EF1E7F70E82411EE9005BA2DC4F9AE02.roa (hash: VeqArLpmDZZ//i0Flmu4xn4xSflQptlUOOEitb5IssE=) 3: C9FDEC12E82411EE81065223C4F9AE02.roa (hash: 6NTho7fCZ0RCJplWa2uFjJlS3TpkgTf4y4zdBtALNSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 04:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173B29, serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Validity Not Before: Apr 15 04:09:43 2026 GMT Not After : Apr 22 04:09:43 2026 GMT Subject: CN=69df0f88-5171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:87:8a:e0:b9:52:53:b7:7a:37:c3:0b:05:a2: f4:12:ac:14:54:64:12:4c:73:68:64:e9:4f:4c:1d: 09:dc:72:d4:9d:63:f6:06:1c:4c:b9:0f:ed:02:44: da:db:d9:68:ae:65:c9:9f:23:ee:c8:cb:dd:6c:d7: 94:a0:90:64:32:95:9d:7d:bb:6c:21:02:26:6c:9d: 40:ad:5f:01:09:c1:f3:4b:11:47:eb:65:62:f3:66: 83:94:9b:69:3a:98:e2:21:d8:ae:ca:f3:8a:54:89: 8f:aa:ec:22:1b:d1:a9:55:6c:a4:0c:91:fd:c5:97: 21:cd:02:3e:88:85:b9:2d:d1:a7:49:e2:fc:f2:e5: 63:fd:70:a9:fe:37:1b:88:dc:fe:1c:50:e2:e7:c8: 40:60:db:1e:0a:23:92:d3:95:0e:6d:89:8d:cd:a4: b3:d5:63:e6:95:d4:9d:fd:32:50:76:76:39:4e:0c: 77:cd:2d:7b:ce:6e:51:7f:20:14:fd:5f:48:43:19: bf:09:b2:ce:33:9f:5b:70:14:a9:e3:10:c2:04:ca: 23:10:a8:b8:ad:03:fd:8d:e5:da:ce:81:1d:f9:26: 67:4d:16:1f:98:42:a4:0f:28:b1:8d:2d:f8:56:c9: 70:c7:fd:2f:95:ea:68:e9:30:6c:4b:fe:9b:28:70: 39:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CF:47:68:5F:3D:33:1D:2C:1E:AE:24:46:CF:52:FC:92:FC:42:86 X509v3 Authority Key Identifier: keyid:C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:57:35:e3:96:0c:8c:bd:d1:43:22:05:96:b4:2e:dc:ca:08: 49:81:b3:ca:2e:b9:41:c4:63:32:7b:a3:01:2d:c2:54:0c:3c: e2:73:bd:12:e9:7a:be:a4:3a:27:e1:7c:86:d0:1c:6b:8a:93: c4:70:70:e4:af:03:83:6f:b0:09:db:e7:84:46:6c:be:9c:07: 48:81:0f:79:3d:ba:38:aa:a6:0b:ae:44:07:fc:05:19:9a:fd: 71:40:7d:94:28:22:50:48:73:32:b4:83:4f:6e:4b:04:7f:e9: 47:35:ed:a5:6b:fc:19:32:c0:0a:f1:7f:29:4b:f0:22:ba:b1: 4c:86:03:41:0e:ea:00:3e:f7:4d:f7:0a:e1:91:b0:6a:98:9f: 3c:d5:61:12:7d:7e:f3:10:1d:98:02:5d:2c:db:34:55:f0:6e: c0:33:d9:79:05:02:5d:d2:f5:fd:de:79:48:5e:54:67:0b:52: 11:62:37:34:bf:7b:68:0a:ab:da:25:78:ed:8f:96:2e:27:c3: 92:1d:7c:e7:cd:00:d9:31:86:e6:03:69:e2:2a:be:02:27:a3: c5:77:d7:6b:89:bf:58:7e:9b:64:5d:7a:54:b6:1c:24:65:c4: df:c0:23:ac:4b:b4:b2:43:29:86:ff:39:1a:b1:05:d0:5d:96: 04:f8:4f:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCMjkxMTAvBgNVBAUTKEM1NTE4N0IwMEIxQTczMzc1Rjg0NTY4ODVGNkExMDdF RTFEOTM1Q0YwHhcNMjYwNDE1MDQwOTQzWhcNMjYwNDIyMDQwOTQzWjAYMRYwFAYD VQQDEw02OWRmMGY4OC01MTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4eK4LlSU7d6N8MLBaL0EqwUVGQSTHNoZOlPTB0J3HLUnWP2BhxMuQ/tAkTa 29lormXJnyPuyMvdbNeUoJBkMpWdfbtsIQImbJ1ArV8BCcHzSxFH62Vi82aDlJtp OpjiIdiuyvOKVImPquwiG9GpVWykDJH9xZchzQI+iIW5LdGnSeL88uVj/XCp/jcb iNz+HFDi58hAYNseCiOS05UObYmNzaSz1WPmldSd/TJQdnY5Tgx3zS17zm5RfyAU /V9IQxm/CbLOM59bcBSp4xDCBMojEKi4rQP9jeXazoEd+SZnTRYfmEKkDyixjS34 Vslwx/0vlepo6TBsS/6bKHA5dwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP/PR2hf PTMdLB6uJEbPUvyS/EKGMB8GA1UdIwQYMBaAFMVRh7ALGnM3X4RWiF9qEH7h2TXP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0IyOS82MTdFOTQ0OEU4 MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6ZGZoRmFJWDJvUWZ1SFpO YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWR0hzQXNhY3pkZmhGYUlYMm9RZnVIWk5jOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0IyOS82MTdFOTQ0OEU4MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6 ZGZoRmFJWDJvUWZ1SFpOYzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXVc145YMjL3RQyIFlrQu3MoISYGzyi65QcRjMnujAS3CVAw84nO9Eul6vqQ6 J+F8htAca4qTxHBw5K8Dg2+wCdvnhEZsvpwHSIEPeT26OKqmC65EB/wFGZr9cUB9 lCgiUEhzMrSDT25LBH/pRzXtpWv8GTLACvF/KUvwIrqxTIYDQQ7qAD73TfcK4ZGw apifPNVhEn1+8xAdmAJdLNs0VfBuwDPZeQUCXdL1/d55SF5UZwtSEWI3NL97aAqr 2iV47Y+WLifDkh18580A2TGG5gNp4iq+AiejxXfXa4m/WH6bZF16VLYcJGXE38Aj rEu0skMphv85GrEF0F2WBPhP5A== -----END CERTIFICATE-----Generated at Fri Apr 17 05:26:55 2026 by rpki-client